Presentation is loading. Please wait.

Presentation is loading. Please wait.

CS overview - Fall 2006 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "CS overview - Fall 2006 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University."— Presentation transcript:

1 CS overview - Fall 2006 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University 2006

2 CS overview - Fall 2006 Computer/Network Security 4 Faculty (Bellovin, Keromytis, Stolfo, Yung), and 4 affiliated faculty (Kaiser, Nieh, Misra, Schulzrinne) ~15 GRA’s Spanning a range of security research issues: Network security … host-based security … insider attacks Applied security research Build system, test against real data, deploy to other organizations for validation Sponsors include NSF, DARPA, ARO, DTO (formerly ARDA)

3 CS overview - Fall 2006 Columbia Intrusion Detection Lab (Sal Stolfo) Attackers continue to improve techniques undeterred – Present COTS security defenses are porous and suffer from the false negative proble Attackers are clever, evading detection using many forms of stealth There is no one monolithic security solution; security is a design criteria at all layers of the stack and across multiple sites Behavior-based computer security will substantially raise the bar Columbia conducts a broad spectrum of research related to securing critical infrastructure in close collaboration with industry and government with attention to practical and deployable results Eg., Financial Systems Technology Consortium (fstc.org) Security Standing Committee (SSCOM) is hosted at Columbia CS Visit: http://www.cs.columbia.edu/facultyhttp://www.cs.columbia.edu/faculty http://www.cs.columbia.edu/ids

4 CS overview - Fall 2006 Columbia Intrusion Detection Lab: Anomaly Detection for Zero-Day Attack AEOLOS Privacy-preserving Cross Domain Content Alert Sharing infrastructure Detection of targeted attacks against critical domains Anagram – Content-based Anomaly Detection Behavior-based detection of “abnormal” data Zero-day exploits detected on host EMT – Email Mining Toolkit Forensic analysis of email logs for profile and model generation Social Network Analysis

5 CS overview - Fall 2006 New Security Projects Joint with Steve Bellovin, Angelos Keromytis, Gail Kaiser, Moti Yung, … FSTC cooperative project: “Authenticating Financial Institution to Customer” on the web Collaborative Security and Self-healing Systems (new NSF Cybertrust grant) Application communities Large-Scale System Defense (new DTO grant) BARTER: Behavior-based Access Control (new DARPA grant) Insider Attack and Masquerader Detection (new ARO grant) Counter Evasion Techniques

6 CS overview - Fall 2006 Network Security Lab Prof. Angelos D. Keromytis Applied research in security, networking, operating systems Emphasis on systems and on building stuff Main research projects Self-healing software and software security Application on countering network viruses/worms Network denial of service Currently 6 Ph.D. students (Cook, Locasto, Burnside, Stavrou, Sidiroglou, Androulaki) Closely affiliated faculty: Stolfo, Bellovin, Kaiser, Yung http://nsl.cs.columbia.edu/

7 CS overview - Fall 2006 NSL Projects Self-healing software Enable legacy software to learn from its failures and improve itself over time, without human intervention! Network Worm Vaccine Limit worm infection rate via anomaly detection engine and automatic patching of vulnerable software, based on self-healing concepts Resilience Against Denial of Service Attacks Use network overlays as a mechanism for separating good and “bad” traffic High-speed I/O: The Operating System As a Signaling Mechanism New OS architecture - remove memory and CPU from data path Efficient Cryptography Design and implementation of ciphers for specific environments - use of graphics cards, variable size block ciphers, IXP processor Collaborative Distributed Intrusion Detection Identifying global attack activity as well as “low and slow” scans via shared intrusion alerts across administrative domains

8 CS overview - Fall 2006 Self-healing Software Systems Novel techniques for software that repairs its failures based on Observe-Orient-Decide-Act (OODA) loop Demonstrated concept with two experimental prototypes One aimed at the problem of worms One aimed at software survivability in general Application Communities: enable large numbers of identical applications to collaboratively monitor their health and share alerts Software monocultures are useful!

9 CS overview - Fall 2006 Self-patching Architecture Systems approach to creating software that: Detects new attacks/failures Automatically generates and applies appropriate fixes Developed error virtualization as a generic “band-aid” technique Prototypes for open-source and binary-only environments Efficient security and high availability mechanism with little performance penalty Spin-off: Revive Systems Inc.

10 CS overview - Fall 2006 Network Worm Vaccine

11 CS overview - Fall 2006 Network Worm Vaccine

12 CS overview - Fall 2006 Network Worm Vaccine

13 CS overview - Fall 2006 IRT real-time laboratory (IRT) http://www.cs.columbia.edu/IRT Internet multimedia protocols and systems Internet telephony signaling and services application sharing, 911 systems Ubiquitous communication Peer-to-peer IP telephony Wireless and ad-hoc networks VoIP hand-off acceleration Quality of service multicast, scalable signaling, … Service discovery and location-based services DOS prevention and traceback

14 CS overview - Fall 2006 Distributed Network Analysis (DNA) Prof. Vishal Misra, Dan Rubenstein Expertise in mathematical modeling of communication/network systems Also do prototyping/experimentation to validate theory Topics: Resilient and Secure Networking Wireless (802.11, Mesh) Sensor Networks Overlay and P2P Networking Server Farms Analytical Techniques Stochastics Algorithms Control Theory, Queueing Theory, Information Theory Whatever else might be needed…

Download ppt "CS overview - Fall 2006 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University."

Similar presentations

Intrusion Detection Systems (I) CS 6262 Fall 02. Definitions Intrusion Intrusion A set of actions aimed to compromise the security goals, namely A set.

Intrusion Detection Systems (I) CS 6262 Fall 02. Definitions Intrusion Intrusion A set of actions aimed to compromise the security goals, namely A set.
1 Objective Develop self-regenerative enterprise networks that recover and re-constitute themselves after attacks and failures Develop a transaction-based.

1 Objective Develop self-regenerative enterprise networks that recover and re-constitute themselves after attacks and failures Develop a transaction-based.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
Cyber Education Project Accreditation Committee November 2014.

Cyber Education Project Accreditation Committee November 2014.
1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.

1 Intrusion Tolerance for NEST Bruno Dutertre, Steven Cheung SRI International NEST 2 Kickoff Meeting November 4, 2002.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.

1 Cryptography and Network Security Third Edition by William Stallings Lecturer: Dr. Saleem Al_Zoubi.
CS overview - Fall 2005 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University.

CS overview - Fall 2005 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University.
Cooperation Between Stations in Wireless Networks Andrea G. Forte and Henning Schulzrinne Department of Computer Science Columbia University, New York.

Cooperation Between Stations in Wireless Networks Andrea G. Forte and Henning Schulzrinne Department of Computer Science Columbia University, New York.
5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.

5/1/2006Sireesha/IDS1 Intrusion Detection Systems (A preliminary study) Sireesha Dasaraju CS526 - Advanced Internet Systems UCCS.
Columbia’s Vision for Tomorrow’s Global Intelligent Systems Henning Schulzrinne, Chair Department of Computer Science October 13, 2005 Bill Gates/CS Faculty.

Columbia’s Vision for Tomorrow’s Global Intelligent Systems Henning Schulzrinne, Chair Department of Computer Science October 13, 2005 Bill Gates/CS Faculty.
Columbia’s Vision for Tomorrow’s Global Intelligent Systems Henning Schulzrinne, Chair Department of Computer Science October 13, 2005 Bill Gates/CS Faculty.

Columbia’s Vision for Tomorrow’s Global Intelligent Systems Henning Schulzrinne, Chair Department of Computer Science October 13, 2005 Bill Gates/CS Faculty.
Secure Overlay Services Adam Hathcock Information Assurance Lab Auburn University.

Secure Overlay Services Adam Hathcock Information Assurance Lab Auburn University.
Applied Cryptography for Network Security

Applied Cryptography for Network Security
CS overview - Fall 2005 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University.

CS overview - Fall 2005 The Department of Computer Science at Columbia University Henning Schulzrinne, Chair Dept. of Computer Science Columbia University.
The Socket Handoff Defense to DoS Attacks Katia Sycara, PI Overview Key Benefits of Socket Handoff Discovery Features.

The Socket Handoff Defense to DoS Attacks Katia Sycara, PI Overview Key Benefits of Socket Handoff Discovery Features.
3/30/2005 Auburn University Information Assurance Lab 1 Simulating Secure Overlay Services.

3/30/2005 Auburn University Information Assurance Lab 1 Simulating Secure Overlay Services.
Bandwidth DoS Attacks and Defenses Robert Morris Frans Kaashoek, Hari Balakrishnan, Students MIT LCS.

Bandwidth DoS Attacks and Defenses Robert Morris Frans Kaashoek, Hari Balakrishnan, Students MIT LCS.
Lecture 11 Intrusion Detection (cont)

Lecture 11 Intrusion Detection (cont)
Department Of Computer Engineering

Department Of Computer Engineering

Similar presentations

Ads by Google