Presentation is loading. Please wait.

Presentation is loading. Please wait.

Wenjing Lou Complex Networks and Security Research (CNSR) Lab

Published byAshley Blake Modified over 6 years ago

Similar presentations

Presentation on theme: "Wenjing Lou Complex Networks and Security Research (CNSR) Lab"— Presentation transcript:

1 Vision: Create proactive and adaptive techniques and methodology in networked systems
Wenjing Lou Complex Networks and Security Research (CNSR) Lab Virginia Polytechnic Institute and State University Panelist Presentation @ Invitational Workshop on Foundations and Challenges for Proactive and Dynamic Network Defense Tampa, FL, November 30-December 1, 2017

2 Cybersecurity is a shared responsibility of multiple lines of defense
Authentication, access control, firewalls, cryptographic mechanisms to data integrity, malware detection, intrusion detection, detection of other malicious activities Federal Cybersecurity Research and Development Strategic Plan, Feb 2016

3 Cybersecurity is a shared responsibility of multiple lines of defense
The ability to efficiently discourage malicious cyber activities by measuring and increasing costs to adversaries carrying out such activities, diminishing the spoils, and increasing risks and uncertainty for potential adversaries. Federal Cybersecurity Research and Development Strategic Plan, Feb 2016

4 Cybersecurity is a shared responsibility of multiple lines of defense
The ability of defenders, defenses, and infrastructure to dynamically adapt to malicious cyber activities, by efficiently reacting to disruption, recovering from damage, maintaining operations while completing restoration, and adjusting to thwart similar future activity Federal Cybersecurity Research and Development Strategic Plan, Feb 2016

5 Proactive Defense Programs
Moving target defense (MTD) Instead of having a static system, MTD makes the attack surface dynamic by controlling changes across multiple system dimensions Increase uncertainty, complexity and cost for attackers Active cyber defense (ACD) “an approach to achieving cyber security predicated upon the deployment of measures to detect, analyze, identify and mitigate threats to and from communications systems and networks in real- time, combined with the capability and resources to take proactive or offensive action against threats and threat entities including action in those entities’ home networks. ” Legal issues of ”hack-back” Enhanced attribution identifying the origins of malicious actions Discourage potential offenders

6 Proactive Defense Programs (Cont.)
Cyber-deception Deploy decoys, i.e. honeypots and honeynets Harnessing Autonomy for Countering Cyberadversary Systems (HACCS) fingerprint Botnet infrastructure Insert autonomous agent into the gray networks (Exploit n-day vulnerabilities) Identify and Neutralize Botnet Implants E.g. Mirai-based whiteworm Advanced persistent threats (APT) Transparent Computing (TC) make opaque computing systems more transparent. 

7 Challenges & Opportunities (Wish List)
Accurate attribution collaboration with ISPs, federated coordination across organizational boundaries, large-scale research infrastructure support Measurements, metrics, formal models Network data analytics, behavioral biometrics techniques Dynamic assessment Real-time continuous monitoring, robust situational awareness Real-time digital forensic analysis methods Activity prediction, real-time assessment of changes, behaviors, and anomalies, reliably detect malicious cyber activities AI-based monitoring and detection, security mechanisms capable of learning Trustworthy information sharing Privacy, privacy-preserving data analytics Data provenance, information flow, information usage tracking Security by design

8 THANK YOU

Download ppt "Wenjing Lou Complex Networks and Security Research (CNSR) Lab"

Similar presentations

1© Copyright 2011 EMC Corporation. All rights reserved. The Future of the Advance Soc 3rd Annual Privacy, Access and Security Congress, Ottawa, 2012 Mike.

1© Copyright 2011 EMC Corporation. All rights reserved. The Future of the Advance Soc 3rd Annual Privacy, Access and Security Congress, Ottawa, 2012 Mike.
 Cyber Ecosystem & Data Security Subhro Kar CSCE 824, Spring 2013 University of South Carolina, Columbia.

 Cyber Ecosystem & Data Security Subhro Kar CSCE 824, Spring 2013 University of South Carolina, Columbia.
Trusted Internet Connections. Background Pervasive and sustained cyber attacks against the United States continue to pose a potentially devastating impact.

Trusted Internet Connections. Background Pervasive and sustained cyber attacks against the United States continue to pose a potentially devastating impact.
Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.

Critical Infrastructure Protection (and Policy) H. Scott Matthews March 25, 2004.
National Institute of Standards and Technology Computer Security Division Information Technology Laboratory Threat Information Sharing; Perspectives, Strategies,

National Institute of Standards and Technology Computer Security Division Information Technology Laboratory Threat Information Sharing; Perspectives, Strategies,
IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.

IT Security Readings A summary of Management's Role in Information Security in a Cyber Economy and The Myth of Secure Computing.
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.
SEC835 Database and Web application security Information Security Architecture.

SEC835 Database and Web application security Information Security Architecture.
Presentation title SUB TITLE HERE Intelligent 21st Century Strategies for Broadband and Cyber Infrastructures Security By Dr. Emmanuel Hooper, PhD, PhD,

Presentation title SUB TITLE HERE Intelligent 21st Century Strategies for Broadband and Cyber Infrastructures Security By Dr. Emmanuel Hooper, PhD, PhD,
Thursday, January 23, 2014 10:00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.

Thursday, January 23, :00 am – 11:30 am. Agenda  Cyber Security Center of Excellence  Project Phase  Implementation  Next Steps 2.
HONEYPOT.  Introduction to Honeypot  Honeytoken  Types of Honeypots  Honeypot Implementation  Advantages and Disadvantages  Role of Honeypot in.

HONEYPOT.  Introduction to Honeypot  Honeytoken  Types of Honeypots  Honeypot Implementation  Advantages and Disadvantages  Role of Honeypot in.
Computer Science Open Research Questions Adversary models –Define/Formalize adversary models Need to incorporate characteristics of new technologies and.

Computer Science Open Research Questions Adversary models –Define/Formalize adversary models Need to incorporate characteristics of new technologies and.
STRATEGIC INTELLIGENCE MANAGEMENT Chapter by Paul de Souza Chapter 18 - National Cyber Defense Strategy, Pg. 224.

STRATEGIC INTELLIGENCE MANAGEMENT Chapter by Paul de Souza Chapter 18 - National Cyber Defense Strategy, Pg. 224.
Managing Threats in Changing World John DeGroot Lead Architect – Security, RBC Federation of Security Professionals – October 26, 2012.

Managing Threats in Changing World John DeGroot Lead Architect – Security, RBC Federation of Security Professionals – October 26, 2012.
Security Innovation & Startup. OPEN THREAT EXCHANGE (OTX): THE HISTORY AND FUTURE OF OPEN THREAT INTELLIGENCE COMMUNITY ALIENVAULT OTX.

Security Innovation & Startup. OPEN THREAT EXCHANGE (OTX): THE HISTORY AND FUTURE OF OPEN THREAT INTELLIGENCE COMMUNITY ALIENVAULT OTX.
FLTC Perspective Focused Long Term Challenges (FLTCs) are an innovative approach to match user requirements with relevant technology development, while.

FLTC Perspective Focused Long Term Challenges (FLTCs) are an innovative approach to match user requirements with relevant technology development, while.
Understanding the Human Network Martin Kruger LCDR Jodie Gooby November 2008.

Understanding the Human Network Martin Kruger LCDR Jodie Gooby November 2008.
Ali Alhamdan, PhD National Information Center Ministry of Interior

Ali Alhamdan, PhD National Information Center Ministry of Interior
Federal Cybersecurity Research Agenda June 2010 Dawn Meyerriecks

Federal Cybersecurity Research Agenda June 2010 Dawn Meyerriecks
WELCOME CyberSecurity and Global Affairs Workshop Enhancing Situational Awareness Through Cyber Intelligence Henry Horton, CISM Partner, CyberSecurity.

WELCOME CyberSecurity and Global Affairs Workshop Enhancing Situational Awareness Through Cyber Intelligence Henry Horton, CISM Partner, CyberSecurity.

Similar presentations

Ads by Google