#32 Software Fault Isolation | Information Security 5 Secure Systems Engineering

Welcome to 'Information Security 5 Secure Systems Engineering' course !

This lecture explores fine-grained confinement, specifically focusing on Software Fault Isolation (SFI) as a technique for isolating different components within a single process. Using web browsers as a starting point, the lecture explains the need for executing code from potentially untrusted sources within a confined environment. It then introduces SFI, a technique that partitions the process space into logical domains called fault domains. The lecture details the mechanisms for restricting a module's capabilities within its fault domain, including preventing cross-domain function calls and data access. It examines techniques like Segment Matching, which uses runtime checks to enforce these restrictions. By understanding SFI, viewers will learn how to create secure compartments within a process, limiting the impact of vulnerabilities and enhancing the security of applications like web browsers.
NPTEL Courses permit certifications that can be used for Course Credits in Indian Universities as per the UGC and AICTE notifications.

To understand various certification options for this course, please visit https://nptel.ac.in/courses/106106199

#SoftwareFaultIsolation #FineGrainedConfinement #WebBrowsers #ProcessIsolation #FaultDomains #SegmentMatching #RuntimeChecks #NativeClient