BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Security informed safety - Robin Bloomfield
DTSTART:20130621T150000Z
DTEND:20130621T153000Z
UID:TALK45531@talks.cam.ac.uk
CONTACT:Ross Anderson
DESCRIPTION:n Adelard we have been assessing the safety of computer based 
 systems for many years. Recently we have been researching an approach to s
 ecurity informed safety\, trying to identify what the similarities and dif
 ferences are and what should be done about it\, particularly how safety ca
 ses need to change. Broadly speaking\, we see safety as concerned with pro
 tecting the environment from the system whereas security is concerned with
  protecting the system from the environment.  \n\nThis brief talk will int
 roduce the range of work we do and our applied research to give an idea of
  my background and then review some overlaps and tension between safety an
 d security principles. From a safety system perspective\, security princip
 les such as economy of mechanism\, least privilege\, and psychological acc
 eptability are probably all readily acceptable. Other principles\, such as
  complete mediation and end-to-end arguments\, could have a significant im
 pact on the architecture and performance of systems. But perhaps the most 
 radical security principles from a safety perspective are those based on K
 erchoffs’ principle\, ease of recovery and open design.\n\nI would like 
 to discuss how we might take a principled approach to open design that has
  technical underpinning and would also welcome exchanges on any of the iss
 ues raised by security informed safety.
LOCATION:Computer Laboratory\, William Gates Building\, Room FW11
END:VEVENT
END:VCALENDAR