BSDCan2011 - Final (with audio).5

BSDCan 2011
The Technical BSD Conference

Jonathan Anderson
Day Talks - 1 - 2011-05-13
Room DMS 1150
Start time 10:00
Duration 01:00
ID 240
Event type Lecture
Track Public FreeBSD Devsummit
Language used for presentation English


Practical Capabilities for UNIX

Capsicum is a lightweight operating system capability and sandbox framework planned for inclusion in FreeBSD 9. Capsicum extends, rather than replaces, UNIX APIs, providing new kernel primitives (sandboxed capability mode and capabilities) and a userspace sandbox API.

These tools support compartmentalisation of monolithic UNIX applications into logical applications, an increasingly common goal supported poorly by discretionary and mandatory access control. We demonstrate our approach by adapting core FreeBSD utilities and Google's Chromium web browser to use Capsicum primitives, and compare the complexity and robustness of Capsicum with other sandboxing techniques.