Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Science of Cyber Security Laurie Williams 1 Figure from IEEE Security and Privacy, May-June 2011 issue.

Published byGary Bates Modified over 9 years ago

Similar presentations

Presentation on theme: "The Science of Cyber Security Laurie Williams 1 Figure from IEEE Security and Privacy, May-June 2011 issue."— Presentation transcript:

1 The Science of Cyber Security Laurie Williams williams@csc.ncsu.edu 1 Figure from IEEE Security and Privacy, May-June 2011 issue

2 NSA Science of Security Lablet (SoSL) NSA SOSL lablets: –North Carolina State University (Analytics) –Carnegie Mellon (Scalability, Usability) –University of Illinois (Resiliency) Projected $2.0-$2.5M funding per year per lablet NCSU: Based out of Computer Science –14 supported NCSU faculty; 18 supported NCSU students –Multi-disciplinary: 3 NCSU colleges and institutes –5 collaborating university partners

3 Hard Problem 1: Scalability and Composability Challenge Develop methods to enable the construction of secure systems with known security properties. http://itnewscast.com/book/export/html/62241

4 Hard Problem 2: Policy-Governed Secure Collaboration Challenge Develop methods to express and enforce normative requirements and policies for handling data with differing usage needs and among users in different authority domains

5 Hard Problem 3: Predictive Security Metrics Challenge Develop security metrics and models capable of predicting whether or confirming that a given cyber system preserves a given set of security properties (deterministically or probabilistically), in a given context.

6 Hard Problem 4: Resilient Architectures Challenge Develop means to design and analyze system architectures that deliver required service in the face of compromised components http://thecybersaviours.com/intrusion-detection-system-ids

7 Hard Problem 5: Human Behavior Develop models of human behavior (of both users and adversaries) that enable the design, modeling, and analysis of systems with specified security properties http://1000awesomethings.com/2011/02/23/302-grandma-hair/ and http://garysreflections.blogspot.com/2011/02/chinese-hackers-now-hitting-major.html http://www.my-programming.com/2011/10/how-to-become-a-programmer/ http://www.govconexecutive.com/2011/02/executive-spotlight-joseph-cormier-of-gtec/ 7

8 My SOSL Projects Security Metrics: Non-repudiation metrics Human Behavior: Security Requirements Security Metrics/Resilient Architectures: Software Security Engineering

9 Non-repudiation analysis

10 Extracting Security Requirements

11 Software Security Engineering Attack Profile Vulnerability Intensity Objective Choose vulnerability prevention & removal practices Vulnerability prediction models

12 NCSU Science of Security Community Meeting Local: October 22, 2013 National: April 8-9, 2013 Let me know if you want to be on the mailing list … williams@csc.ncsu.edu

Download ppt "The Science of Cyber Security Laurie Williams 1 Figure from IEEE Security and Privacy, May-June 2011 issue."

Similar presentations

Operating System Security

Operating System Security
Jacques Bus, Head of Unit DG Information Society and Media EU-US Cooperation in Network and Information Security 17 Mar, 2008 – Yale, US.

Jacques Bus, Head of Unit DG Information Society and Media EU-US Cooperation in Network and Information Security 17 Mar, 2008 – Yale, US.
Designed-in Security Some Major Challenges Security Group Department of Computer Science University of California, Santa Barbara Trustworthy.

Designed-in Security Some Major Challenges Security Group Department of Computer Science University of California, Santa Barbara Trustworthy.
Sponsored by the U.S. Department of Defense © 2005 by Carnegie Mellon University 1 Pittsburgh, PA 15213-3890 Dennis Smith, David Carney and Ed Morris DEAS.

Sponsored by the U.S. Department of Defense © 2005 by Carnegie Mellon University 1 Pittsburgh, PA Dennis Smith, David Carney and Ed Morris DEAS.
Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL 6788 11.

Security and Privacy Issues in Wireless Communication By: Michael Glus, MSEE EEL
1 SANS Technology Institute - Candidate for Master of Science Degree 1 A Preamble into Aligning Systems Engineering and Information Security Risk Dr. Craig.

1 SANS Technology Institute - Candidate for Master of Science Degree 1 A Preamble into Aligning Systems Engineering and Information Security Risk Dr. Craig.
Secure and Trustworthy Cyberspace (SaTC) Program Sam Weber Program Director March 2012.

Secure and Trustworthy Cyberspace (SaTC) Program Sam Weber Program Director March 2012.
The FI-WARE Project – Base Platform for Future Service Infrastructures NOVEMBER, 16th 2011Thierry Nagellen Workshop AAL Community.

The FI-WARE Project – Base Platform for Future Service Infrastructures NOVEMBER, 16th 2011Thierry Nagellen Workshop AAL Community.
Evaluating COTS Software June 15 - 1 Software Engineering Institute Carnegie Mellon Evaluating COTS Software © 1999 Carnegie Mellon University Fred Hansen.

Evaluating COTS Software June Software Engineering Institute Carnegie Mellon Evaluating COTS Software © 1999 Carnegie Mellon University Fred Hansen.
CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.

CSCE 515: Computer Network Programming Chin-Tser Huang University of South Carolina.
1 MIT-Harvard Conference Explorations in Cyber International Relations (ECIR) Closing Remarks – Next Steps Nazli Choucri Professor of Political Science.

1 MIT-Harvard Conference Explorations in Cyber International Relations (ECIR) Closing Remarks – Next Steps Nazli Choucri Professor of Political Science.
Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.

Introduction and Overview “the grid” – a proposed distributed computing infrastructure for advanced science and engineering. Purpose: grid concept is motivated.
27 September 1999 Crisis Management William L. Scherlis Carnegie Mellon University School of Computer Science.

27 September 1999 Crisis Management William L. Scherlis Carnegie Mellon University School of Computer Science.
Design considerations for P2P Stefan Saroiu, Krishna Gummadi, Steve Gribble Department of Computer Science and Engineering University of Washington

Design considerations for P2P Stefan Saroiu, Krishna Gummadi, Steve Gribble Department of Computer Science and Engineering University of Washington
SERC Security Systems Engineering Initiative Dr. Clifford Neuman, Director USC Center for Computer Systems Security Information Sciences Institute University.

SERC Security Systems Engineering Initiative Dr. Clifford Neuman, Director USC Center for Computer Systems Security Information Sciences Institute University.
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Search Engines.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Search Engines.
Security Issues on Campus: Government Initiatives Rodney J. Petersen University of Maryland Educause/Internet2 Security Task Force Copyright Rodney J.

Security Issues on Campus: Government Initiatives Rodney J. Petersen University of Maryland Educause/Internet2 Security Task Force Copyright Rodney J.
Secure Information and Resource Sharing in CloudSecure Information and Resource Sharing in Cloud References OSAC-SID Model [1]K. Harrison and G. White.

Secure Information and Resource Sharing in CloudSecure Information and Resource Sharing in Cloud References OSAC-SID Model [1]K. Harrison and G. White.
10 Colleges / 282 Fields of Study / >34,000 students Among the most productive research universities: >$400M annually in research activities Patents (>800.

10 Colleges / 282 Fields of Study / >34,000 students Among the most productive research universities: >$400M annually in research activities Patents (>800.
A Robust Health Data Infrastructure P. Jon White, MD Director, Health IT Agency for Healthcare Research and Quality 2014-06-10.

A Robust Health Data Infrastructure P. Jon White, MD Director, Health IT Agency for Healthcare Research and Quality

Similar presentations

Ads by Google