advanced system security
play

Advanced System Security CSE544 - Spring 2007 Introduction Computer - PowerPoint PPT Presentation

Dec 05, 2022 •363 likes •561 views

  1. �������฀฀���฀฀�������� ��������������฀�������� � � �������฀���฀��������฀��������฀������ ����������฀��฀��������฀�������฀���฀����������� ������������฀�����฀�����������฀����������฀����฀฀�� Advanced System Security CSE544 - Spring 2007 Introduction Computer and Network Security Professor McDaniel Systems and Internet Infrastructure Security Laboratory (SIIS) Page 1

  2. What is in a list? The tale of Jonnie Thomas ... Systems and Internet Infrastructure Security Laboratory (SIIS) Page 2

  3. This course … • This course is a systems course covering general topics in computer and network security. We will investigate the tools and problems of contemporary security. Topics will include: – network security, authentication, security protocol design and analysis, key management, program safety, intrusion detection, DDOS detection and mitigation, architecture/operating systems security, security policy, group systems, biometrics, web security, language-based security, and other emerging topics (as time permits) Systems and Internet Infrastructure Security Laboratory (SIIS) Page 3

  4. You need a basic understanding of … • IP Networks • Modern Operating Systems • Security, cryptography, ... • Discrete Mathematics • Basics of systems theory and implementation ‣ E.g., File systems, distributed systems, networking, operating systems, .... Systems and Internet Infrastructure Security Laboratory (SIIS) Page 4

  5. Why are we here? -- Goals • My goal: to provide you with the tools to execute and evaluate research in computer security . ‣ Basic technologies ‣ Engineering/research trade-offs ‣ How to read/create/teach security research. • This is going to be a hard course . The key to success is sustained effort. Failure to keep up with readings and project will likely result in poor grades, and ultimately little understanding of the course material. • Pay-off: security competence is a rare, valuable skill Systems and Internet Infrastructure Security Laboratory (SIIS) Page 5

  6. Course Materials • Website - I am maintaining the course website at http://www.cse.psu.edu/~mcdaniel/cse544 ‣ Course assignments, slides, and other artifacts will be made available on the course website. • Course reading materials – A lot of papers . Systems and Internet Infrastructure Security Laboratory (SIIS) Page 6

  7. Course Calendar • The course calendar as all the relevant readings, assignments and test dates • The calendar page contains electronic links to online papers assigned for course readings. • Please check the website frequently for announcements and changes to the schedule. Students are responsible for any change on the schedule (I will try to make announcements in class). Systems and Internet Infrastructure Security Laboratory (SIIS) Page 7

  8. Grades • Grading policy – 30% Presentations – 20% Class Participation – 50% Course Project • Lateness policy - Assignments and project milestones are assessed a 10% per-day late penalty, up to a maximum of 4 days. Unless the problem is apocalyptic, don't give me excuses. Students with legitimate reasons who contact the professor before the deadline may apply for an extension. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 8

  9. Skills Building • One of the objectives of this course is to develop skills in public presentation, including what and how to tell a technology story. ‣ Papers: How and why to write a paper, the different parts, how they get evaluated .... ‣ Presentation: This is the whole course, and your performance will determine you grade to a great extent. • We will start learning to do this today . Systems and Internet Infrastructure Security Laboratory (SIIS) Page 9

  10. Presentations • Everyone in the class is going to give one or two lectures covering a paper assignment. ‣ Ranging from 30 minutes to 1.25 hours, depending on the topic and the student’s public speaking experience ‣ You are to develop the entire lecture from scratch , which means all figures, diagrams, and words should be generated by you • Divergence from this rule will be deemed plagiarism ‣ I and the other students will “grade” each other on the presentation completenes, organization, content, and delivery • NOTE: the in class presentation SHOULD NOT be the first time you give the talk! Systems and Internet Infrastructure Security Laboratory (SIIS) Page 10

  11. Projects • This is the standard security course project, which will cover the structure of next week. This should be some novel work in security research. Groups are allowed, but the expectations of the maturity and results increase linearly with the number of students. ‣ Ongoing work in OK. ‣ Work with other professors must be cleared with both Prof. McDaniel and the advising Prof. (discouraged) ‣ Often leads to MS thesis or other PhD leading work. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 11

  12. Ethics Statement This course considers topics involving personal and public privacy and security. As part of this investigation we will cover technologies whose abuse may infringe on the rights of others. As an instructor, I rely on the ethical use of these technologies. Unethical use may include circumvention of existing security or privacy measurements for any purpose, or the dissemination, promotion, or exploitation of vulnerabilities of these services. Exceptions to these guidelines may occur in the process of reporting vulnerabilities through public and authoritative channels. Any activity outside the letter or spirit of these guidelines will be reported to the proper authorities and may result in dismissal from the class. When in doubt, please contact the instructor for advice. Do not undertake any action which could be perceived as technology misuse anywhere and/or under any circumstances unless you have received explicit permission from Professor McDaniel . Systems and Internet Infrastructure Security Laboratory (SIIS) Page 12

  13. How to create a lecture? • Here, we are talking about the presentation of a conference or journal paper. ‣ What are the objectives of a talk? ‣ What are the objectives of a lecture? Systems and Internet Infrastructure Security Laboratory (SIIS) Page 13

  14. A talk ... • Your objectives in a talk are to ... ‣ Introduce the the topic area ‣ Identify the theme* of the work ‣ Establish your bona fides (credentials) ‣ Convince the listener the work is correct ‣ Convince the listener to read the paper • Q: What does a talk not do? Systems and Internet Infrastructure Security Laboratory (SIIS) Page 14

  15. A lecture ... • Your objectives in a lecture are to ... ‣ Introduce the the topic area ‣ Identify the theme* of the work ‣ Establish your bona fides (credentials) ‣ Convince the listener the work is correct ‣ Convince the listener to read the paper that is was worth reading ‣ Introduce/educate on topic, technology, methodology, and style ‣ Show how the work fits into the larger body of research • Q: What does a lecture not do? Systems and Internet Infrastructure Security Laboratory (SIIS) Page 15

  16. Grains of SANs • Rethinking storage : what if storage was a fixed physical substance like grains of sand ‣ Mobile, ‣ Flexible (reorganization), ‣ Cheap, ‣ Resilient, .... • What applications and behaviors would this enable? ‣ The “split” filesystem operation -- suppose Alice and Bob each have access to a filesystem that contains their data concerning project “ Goosefood ”, then Alice gets on an Airplane? ‣ Vehicle maps in a car of information devices Systems and Internet Infrastructure Security Laboratory (SIIS) Page 16

  17. Designing Granular Storage • Designing such a system requires us to rethink the way storage systems are constructed. ‣ Organization - how do we allocate data to the memory spots to ensure that the data can be access quickly and correctly? ‣ Security - how do we ensure the confidentiality, integrity, and authenticity of the data is preserved? ‣ Reliability - how do we ensure replicate/encode data to ensure it is survivable after separation events, and embraces new data as it join events occur? • This body of work will embrace the lessons of pass storage systems research, but extends it in unusual ways. ‣ RFID protocols, highly separable storage, frequent “failures” Systems and Internet Infrastructure Security Laboratory (SIIS) Page 17

  18. Mapping • Q: What were the elements of the lecture? • Q: How were the elements of the lecture handled? ‣ area ‣ theme ‣ topic ‣ methodology ‣ style ‣ placement in literature • You should be answering these questions in considerably more depth than show in the previous example. Systems and Internet Infrastructure Security Laboratory (SIIS) Page 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems

Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems

Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems Definitions Obfuscation: T o be evasive, unclear, or confusing* In context, this means making a system difficult to understand and

665 views • 38 slides
Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables http://outflux.net/slides/2013/drupal/tunables.pdf R0Ng DrupalCon Portland 2013 Kees Cook <keescook@google.com> (pronounced Case) Who is

474 views • 33 slides
Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos

Cyber-Physical System Security Alia Long Advanced Research in Cyber Systems (ARCS) Los Alamos National Laboratory LA-UR-17-27644 Operated by Los Alamos National Security, LLC for the U.S. Department of Energy's NNSA A Cyber-Physical Model

837 views • 7 slides
Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Advanced Systems Security: Introduction to OS Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Introduction to OS Security Trent

770 views • 28 slides
Security Data Science Joshua Neil Security Analytics Leader Advanced Security Center EY

Security Data Science Joshua Neil Security Analytics Leader Advanced Security Center EY

Security Data Science Joshua Neil Security Analytics Leader Advanced Security Center EY Powered by Agenda A Background, LANL and the EY/LANL Alliance Traditional Security and Operational Security Data B Science Advanced Analytics:

558 views • 24 slides
Advanced Community Energy ACE A Smart & Secure Energy System for California Todays

Advanced Community Energy ACE A Smart & Secure Energy System for California Todays

Advanced Community Energy ACE A Smart & Secure Energy System for California Todays Grid Was Not Built for the 21st Century Decarbonization, security, and resilience are now urgent priorities for our electrical system.

138 views • 11 slides
System Intrusions Professor Adam Bates Fall 2018 Security & Privacy Research at Illinois

System Intrusions Professor Adam Bates Fall 2018 Security & Privacy Research at Illinois

CS 563 - Advanced Computer Security: System Intrusions Professor Adam Bates Fall 2018 Security & Privacy Research at Illinois (SPRAI) Administrative Learning Objectives : Survey broad topics in the system intrusions area

730 views • 34 slides
Advanced Systems Security: Security-Enhanced Linux Trent Jaeger Systems and Internet

Advanced Systems Security: Security-Enhanced Linux Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Security-Enhanced Linux Trent

474 views • 26 slides
Advanced Systems Security: Linux Security Modules Trent Jaeger Systems and Internet

Advanced Systems Security: Linux Security Modules Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Linux Security Modules Trent

872 views • 30 slides
Advanced Energy for Homeland CONVERGE S T R A T E G I E S Defense and Security Michael Wu and

Advanced Energy for Homeland CONVERGE S T R A T E G I E S Defense and Security Michael Wu and

Advanced Energy for Homeland CONVERGE S T R A T E G I E S Defense and Security Michael Wu and Wilson Rickerson AGENDA 1.Defense Energy and National Security 2.State Support for DoD Missions 3.Advanced Energy Security for the Home Front

697 views • 16 slides
Advanced Systems Security: Hardware Security Trent Jaeger Systems and Internet

Advanced Systems Security: Hardware Security Trent Jaeger Systems and Internet

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Hardware Security Trent Jaeger

703 views • 46 slides
CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois

CS 563 Mobile OS & Device Security Advanced Computer Security CS 563 University of Illinois at Urbana-Champaign Presentation by: Gliz Seray Tuncay Administrative Announcements : Reaction paper was due today (and all classes)

807 views • 52 slides
Advanced Systems Security: Security Kernels Trent Jaeger Systems and Internet Infrastructure

Advanced Systems Security: Security Kernels Trent Jaeger Systems and Internet Infrastructure

Systems and Internet Infrastructure Security Network and Security Research Center Department of Computer Science and Engineering Pennsylvania State University, University Park PA Advanced Systems Security: Security Kernels Trent Jaeger

555 views • 35 slides
System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn Department of Computer and Information Science Linkping University System Security 2 Security in computer systems Hardware (System)

838 views • 56 slides
INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT

ADVANCED COMPUTER SECURITY INTRODUCTION cf. Schneider, Chapter 1 INTRODUCTION THEY ARE OUT TO GET YOU INTRODUCTION WHAT IS SECURITY? A systems security policies describe What the system is supposed to do Store and provide access

479 views • 16 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
ECE 697J Advanced Topics Advanced Topics ECE 697J in Computer Networks in Computer

ECE 697J Advanced Topics Advanced Topics ECE 697J in Computer Networks in Computer

ECE 697J Advanced Topics Advanced Topics ECE 697J in Computer Networks in Computer Networks A Course on Network System Design Fall 2003 Tilman Wolf 1 Welcome Welcome Who am I? Tilman Wolf, Assistant Professor in ECE

601 views • 17 slides
CSSE280: Introduction to Web Programming Introductions, Internet, WWW, HTML Intro Rose-Hulman

CSSE280: Introduction to Web Programming Introductions, Internet, WWW, HTML Intro Rose-Hulman

CSSE280: Introduction to Web Programming Introductions, Internet, WWW, HTML Intro Rose-Hulman Institute of Technology Intro to Course Front-end development Back-end development Node.js Data-driven application MongoDB REST API 2 Agenda

721 views • 30 slides
Assignments for Networking and Operating Systems Classes Using GENI Zongming Fei University of

Assignments for Networking and Operating Systems Classes Using GENI Zongming Fei University of

Assignments for Networking and Operating Systems Classes Using GENI Zongming Fei University of Kentucky NSF Workshop at GEC14 1 Outline Introduction A List of Possible Projects Three Assignments Path Characteristics of

651 views • 23 slides
Intelligent Optical Control Plane Ying ( Em ily) Hu Bell Labs-NPS, Advanced Netw ork

Intelligent Optical Control Plane Ying ( Em ily) Hu Bell Labs-NPS, Advanced Netw ork

Intelligent Optical Control Plane Ying ( Em ily) Hu Bell Labs-NPS, Advanced Netw ork Modeling&Optim ization Lucent Technologies Holm del, New Jersey, USA 1 Outline Optical Control Plane What is it Operator Drivers for Optical

415 views • 16 slides
CS244 Advanced Topics in Networking Lecture 7: Programmable Forwarding Nick McKeown Processing

CS244 Advanced Topics in Networking Lecture 7: Programmable Forwarding Nick McKeown Processing

CS244 Advanced Topics in Networking Lecture 7: Programmable Forwarding Nick McKeown Processing in Hardware for SDN Forwarding Metamorphosis: Fast Programmable Match-Action [Pat Bosshart et al. 2013] Spring 2020 Context + Others from TI

907 views • 38 slides
6.888 Advanced Topics in Networking Lecture 1: Introduc<on Mohammad Alizadeh Spring 2016

6.888 Advanced Topics in Networking Lecture 1: Introduc<on Mohammad Alizadeh Spring 2016

6.888 Advanced Topics in Networking Lecture 1: Introduc<on Mohammad Alizadeh Spring 2016 Includes material from lectures by Nick McKeown (Stanford), Jennifer Rexford (Princeton), and George Porter (UCSD) The Internet: An Exciting Time

1.08k views • 52 slides
CIS 6930 - Cellular and Mobile Network Security Introduction Professor Patrick Traynor 8/23/2018

CIS 6930 - Cellular and Mobile Network Security Introduction Professor Patrick Traynor 8/23/2018

CIS 6930 - Cellular and Mobile Network Security Introduction Professor Patrick Traynor 8/23/2018 Florida Institute for Cybersecurity (FICS) Research Rapid Communication Over Distance Florida Institute for Cybersecurity (FICS) Research 2

827 views • 19 slides
Introduction to Systems Engineering Mark Austin E-mail: austin@isr.umd.edu Institute for

Introduction to Systems Engineering Mark Austin E-mail: austin@isr.umd.edu Institute for

ENES 489P Hands-On Systems Engineering Projects Introduction to Systems Engineering Mark Austin E-mail: austin@isr.umd.edu Institute for Systems Research, University of Maryland, College Park p. 1/33 Administrative Issues Class Web Page

907 views • 33 slides

More recommend