ACM Queue has an interview with Dr Robert Watson, a researcher at Cambridge. He and his team do work on the hardware/software interface and how it defines (and limits) application security. The interview is worth checking out, as is the Slashdot thread for those who like such things. (A few times Robert refers to Capsicum, which you might want to check out first to help the whole thing make sense.)
How is this relevant to Derby? I have known Robert for a few years and can forward questions his way if anybody has some. He might be a guest speaker here some time in the future.