Bromium vSentry A d r i a n Ta y l o r Director, Mobile Paid 3644-2276-1234-5678 Zero-day price list Zero-day Adobe Reader $5,000-$30,000 Flash, Java $40,000-$100,000 Word $50,000-$100,000 Internet Explorer $80,000-$200,000 iOS $100,000-$250,000 Source: http://www.forbes.com/sites/andygreenberg/2012/03/23/shopping-for-zero-days-an-price-list-for-hackers-secret-software-exploits/ Bromium Confidential DEMO Hardware-isolates each untrusted Windows task Based on Xen with a tiny, secure code base Hardware Virtualization (VT-x) Lightweight, fast, hidden, with an unchanged native UX Microvisor Fully integrated into the desktop user experience Uses I/O Virtualization VT-d, TXT & TPM if available DEMO Hardware Kernel OS Libs / Utils Applications Desktop Mutually isolates untrustworthy tasks from the Desktop, & each other Untrusted Tasks http://www.facebook.com Micro-VMs have “need to know” access to files, networks, and the user’s desktop Micro-VMs execute “Copy on Write” Malware is automatically discarded LIVE ATTACK VISUALIZATION AND ANALYSIS : LAVA DEMO Desktop, Laptop, Tablet and Smartphone 2012 Bromium Confidential 2013 Future Thank you