{"id":21256,"date":"2020-11-18T08:00:00","date_gmt":"2020-11-18T13:00:00","guid":{"rendered":"https:\/\/michigan.it.umich.edu\/news\/?p=21256"},"modified":"2024-07-08T06:04:42","modified_gmt":"2024-07-08T10:04:42","slug":"new-tool-automates-popular-system-security-technique","status":"publish","type":"post","link":"https:\/\/michigan.it.umich.edu\/news\/2020\/11\/18\/new-tool-automates-popular-system-security-technique\/","title":{"rendered":"New tool automates popular system security technique"},"content":{"rendered":"\n<div class=\"wp-block-image\"><figure class=\"aligncenter size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"700\" height=\"315\" src=\"https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-700x315.jpg\" alt=\"illustration of sandbox with shovel over computer code background\" class=\"wp-image-21258\"\/><figcaption>(The Michigan Engineer)<\/figcaption><\/figure><\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Working with researchers from the University of Texas at Austin, <strong>Xinyu Wang<\/strong>, assistant professor of electrical engineering and computer science, <a href=\"https:\/\/news.engin.umich.edu\/2020\/11\/tool-to-automate-popular-security-technique-earns-distinguished-paper\/\">co-authored an award-winning paper that demonstrates how to automatically build sandboxing policies to keep a computer system safe<\/a>. Sandboxing is a software management strategy that isolates applications from critical system resources and other programs. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">One common sandbox approach is to restrict which system calls different applications can make. Different operating systems have built-in tools to define policies for system calls, specifying which access patterns are allowed.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">However, manually constructing policies is time-consuming and prone to errors. To make these security practices more accessible, Wang and collaborators developed a technique to automatically construct system call policies for an application.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Working with researchers from the University of Texas at Austin, Xinyu Wang, assistant professor of electrical engineering and computer science, co-authored an award-winning paper that demonstrates how to automatically build sandboxing policies to keep a computer system safe. Sandboxing is a software management strategy that isolates applications from critical system resources and other programs. One common sandbox approach\u2026 <span class=\"read-more\"><a href=\"https:\/\/michigan.it.umich.edu\/news\/2020\/11\/18\/new-tool-automates-popular-system-security-technique\/\">Read More &raquo;<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":21258,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_uag_custom_page_level_css":"","_umich_oidc_access":"","_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_ef_editorial_meta_date_first-draft-date":"","_ef_editorial_meta_paragraph_assignment":"","_ef_editorial_meta_checkbox_needs-photo":"","_ef_editorial_meta_number_word-count":"","footnotes":""},"categories":[5,27],"tags":[290,23,127],"class_list":["post-21256","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-campus-news","category-safe-computing","tag-coe","tag-security","tag-software"],"uagb_featured_image_src":{"full":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-e1605643313147.jpg",933,420,false],"thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-200x90.jpg",200,90,true],"medium":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-300x135.jpg",300,135,true],"medium_large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-768x346.jpg",665,300,true],"large":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-700x315.jpg",600,270,true],"1536x1536":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-1536x691.jpg",1536,691,true],"2048x2048":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-2048x922.jpg",2048,922,true],"excerpt-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-200x140.jpg",200,140,true],"themonic-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-60x42.jpg",60,42,true],"ioslider-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-658x300.jpg",658,300,true],"post-thumbnail":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-665x299.jpg",665,299,true],"400x250-crop":["https:\/\/michigan.it.umich.edu\/news\/wp-content\/uploads\/2020\/11\/sandbox-featured-scaled-1-e1605643313147.jpg",400,180,false]},"uagb_author_info":{"display_name":"News Staff","author_link":"https:\/\/michigan.it.umich.edu\/news\/author\/mitnewsadm\/"},"uagb_comment_info":0,"uagb_excerpt":"Working with researchers from the University of Texas at Austin, Xinyu Wang, assistant professor of electrical engineering and computer science, co-authored an award-winning paper that demonstrates how to automatically build sandboxing policies to keep a computer system safe. Sandboxing is a software management strategy that isolates applications from critical system resources and other programs. One&hellip;","_links":{"self":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/21256","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/comments?post=21256"}],"version-history":[{"count":3,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/21256\/revisions"}],"predecessor-version":[{"id":21261,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/posts\/21256\/revisions\/21261"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media\/21258"}],"wp:attachment":[{"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/media?parent=21256"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/categories?post=21256"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/michigan.it.umich.edu\/news\/wp-json\/wp\/v2\/tags?post=21256"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}