Security/Automation/Winter Of Security 2015/MIG Agent Sandboxing: Difference between revisions
Jump to navigation
Jump to search
Gdestuynder (talk | contribs) (Created page with " right|500px == Team == === Introduction === TODO === Members === * Teodora Băluță * Vladimir Diaconescu * Constantin-...") |
(→Roadmap: Fixed typo) |
||
| Line 32: | Line 32: | ||
#* Decide on sandbox applying flow for MIG agent; what is the flow for a MIG agent to run inside the sandbox (fork, exec, scripts, wrapper calls etc.) | #* Decide on sandbox applying flow for MIG agent; what is the flow for a MIG agent to run inside the sandbox (fork, exec, scripts, wrapper calls etc.) | ||
# Implementation: | # Implementation: | ||
#* | #* Implement minimal sandbox for Linux seccomp using Go | ||
#* (optional) Port/implement sandbox for Mac OS X, Windows | #* (optional) Port/implement sandbox for Mac OS X, Windows | ||
# Testing and Evaluation: | # Testing and Evaluation: | ||
Revision as of 13:12, 6 October 2015
Team
Introduction
TODO
Members
- Teodora Băluță
- Vladimir Diaconescu
- Constantin-Alexandru Tudorică
- University Advisor: Răzvan Deaconescu
- Mozilla Advisors: Aaron Meihm, Guillaume Destuynder
Project
Mozilla InvestiGator (MIG) is a digital forensics platform used by Mozilla to monitor the security of servers. MIG deploys an agent on systems that is used to maintain the security of the infrastructure. The agent currently runs as root in order to run investigation modules that have low-level access to the system. The goal of this project is to sandbox the MIG Agent on Linux in a way that allows each part to perform investigative work while having as little privileges as possible. The team will have to use the Linux Seccomp mechanism, and the existing Go library, to implement a sandbox in the Agent. If possible, the team will also evaluate sandboxing on MacOS and Windows.
Success Criteria
- TODO
Roadmap
- Investigation:
- Go language beyond the basics
- Building, deploying and running MIG
- Digging into MIG; MIG internals, architecture
- Use cases/user scenarios of MIG
- Investigate Windows and Mac OS X sandboxing solutions
- Design:
- Aim for generic sandboxing solution (portable, working on multiple sandboxing "back-ends")
- Create generic sandbox requirements for MIG agent: filesystem access, network
- Create a whitelist approach for creating a sandbox profile
- Decide on sandbox applying flow for MIG agent; what is the flow for a MIG agent to run inside the sandbox (fork, exec, scripts, wrapper calls etc.)
- Implementation:
- Implement minimal sandbox for Linux seccomp using Go
- (optional) Port/implement sandbox for Mac OS X, Windows
- Testing and Evaluation:
- Measure resource consumption and overhead
- Validate implementation using existing unit tests
- Investigate ways of validating sandboxed apps: is an app running correctly when compared to a sandboxed app