What kind of thesis is this for? I suspect that any thesis type project
would have to mix both elements to make an effective thesis.


On Mon, Oct 24, 2011 at 11:45 AM, Jorge Bo <jorgebo10 / gmail.com> wrote:

> Actually, i had an idea about building security on-demand...sounds a little
> weird, but i was thinking about building security in an application in an
> spiral way. Lets say starting with minimum security and based on the
> attacks
> patterns allow the application to modify its own code to apply security
> contermeasures, relying on Ruby metaprogramming...
> I guess it could be of more theoretical value than practical one, however
> its something which has been revolving my mind for a long time...
>
> 2011/10/23 Carter Cheng <cartercheng / gmail.com>
>
> > I have actually recently become quite interested in these sorts of
> topics.
> > Since it does seem that these topics are of some interest at the moment
> to
> > the community. I notice that most pieces in this area are rather on the
> end
> > of being more application oriented. Have their been much in terms of
> > theoretical developments outside of cryptography?
> >
> > On Mon, Oct 24, 2011 at 9:23 AM, Michal Suchanek <hramrach / centrum.cz
> > >wrote:
> >
> > > Hello,
> > >
> > > On 22 October 2011 23:55, Jorge Bo <jorgebo10 / gmail.com> wrote:
> > > > Hi,
> > > >
> > > > I'm a student at the University and currently searching for a
> > > > topic for my diploma thesis. I would really like to do something
> > > > Ruby-security related. However, i dont have much knowledge about ruby
> > > > security i think pehhaps those much involve in Ruby could give me an
> > > advice.
> > >
> > > One thing where Ruby is lacking compared to PHP is user isolation on
> > > shared web hosting.
> > >
> > > This is less of an issue with full machine virtualization becoming
> > > commonplace but still poses barrier to entry in implementing Ruby as
> > > an alternative to PHP.
> > >
> > > A good security topic might be evaluating security of shared PHP
> > > hosting and either refute there is any security at all or implement
> > > comparably secure Ruby plugin suitable for shared hosting in
> > > Apache/nginx/other web server.
> > >
> > > Thanks
> > >
> > > Michal
> > >
> > >
> >
>
>
>
> --
> "To follow the path:
>    look to the master,
>    follow the master,
>    walk with the master,
>    see through the master,
>    become the master"
>