Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Management & Strategy

Facebook Announces 2019 Internet Defense Prize Winners

Facebook has announced the 2019 winners of the Internet Defense Prize, an award offered in partnership with USENIX.

Created in 2014, the award is meant to recognize and reward research that meaningfully makes the Internet more secure. The goal is to reward ideas that go beyond theory and which can be adopted to protect people in practice.

Facebook has announced the 2019 winners of the Internet Defense Prize, an award offered in partnership with USENIX.

Created in 2014, the award is meant to recognize and reward research that meaningfully makes the Internet more secure. The goal is to reward ideas that go beyond theory and which can be adopted to protect people in practice.

The 2019 great prize of $100,000, Facebook has announced, was awarded to Anjo Vahldiek-Oberwagner, Eslam Elnikety, Nuno O. Duarte, Michael Sammler, Peter Druschel, and Deepak Garg at the Max Planck Institute for Software Systems, Saarland Informatics Campus.

The researchers received the award for work titled ERIM: Secure, Efficient In-process Isolation with Protection Keys (MPK).

The paper presents a new technique to provide hardware-enforced isolation with low overhead on x86 CPUs. The idea combines protection keys, a feature that allows protection domain switches in userspace, with binary inspection, thus preventing circumvention.

The researchers demonstrate how ERIM can be applied to new and existing applications and say that it doesn’t require compiler changes. ERIM can run on a stock Linux kernel and, even at high domain switching rates, has low runtime overhead.

“Traditionally, software isolation has come with significant performance costs. The authors’ approach stands out because it achieves much better runtime efficiency due to lower overhead, which makes it practical for real-world use in production environments. If this type of defense finds widespread use, it will help eliminate an entire class of security exploits,” Facebook noted.

Related: Facebook Announces 2018 Internet Defense Prize Winners

Advertisement. Scroll to continue reading.

Related: Facebook Awards $100,000 Prize for Spear-Phishing Detection Method

Related: Facebook Awards $100,000 for Post-Quantum TLS Security Research

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Malware & Threats

The NSA and FBI warn that a Chinese state-sponsored APT called BlackTech is hacking into network edge devices and using firmware implants to silently...