cse598d topics in applied system security security
play

CSE598d - Topics in Applied System Security: Security Research - PowerPoint PPT Presentation

Mar 23, 2023 •488 likes •743 views

  1. ������� ��� �������� �������������� �������� � � ������� ��� �������� �������� ������ ���������� �� �������� ������� ��� ����������� ������������ ����� ��������������������� ���� �� CSE598d - Topics in Applied System Security: Security Research Methods Professor Patrick McDaniel Fall 2010 CSE543 - Introduction to Computer and Network Security Page 1

  2. Reading papers … • What is the purpose of reading papers? • How do you read papers? CSE543 - Introduction to Computer and Network Security Page 2

  3. Understanding what you read • Things you should be getting out of a paper ‣ What is the central idea proposed/explored in the paper? • Abstract These are the best areas to find • Introduction an overview of the contribution • Conclusions ‣ How does this work fit into others in the area? • Related work - often a separate section, sometimes not, every paper should detail the relevant literature. Papers that do not do this or do a superficial job are almost sure to be bad ones. • An informed reader should be able to read the related work and understand the basic approaches in the area, and how they differ from the present work. CSE543 - Introduction to Computer and Network Security Page 3

  4. Understanding what you read (cont.) • What scientific devices are the authors using to communicate their point? ‣ Methodology - this is how they evaluate their solution. • Theoretical papers typically validate a model using mathematical arguments (e.g., proofs) • Experimental papers evaluate results based on test apparatus (e.g., measurements, data mining, synthetic workload simulation, trace-based simulation). ‣ Empirical research evaluates by measurement. • Some papers have no evaluation at all, but argue the merits of the solution in prose (e.g., paper design papers) CSE543 - Introduction to Computer and Network Security Page 4

  5. Understanding what you read (cont.) • What do the authors claim? ‣ Results - statement of new scientific discovery. • Typically some abbreviated form of the results will be present in the abstract, introduction, and/or conclusions. • Note: just because a result was accepted into a conference or journal does necessarily not mean that it is true. Always be circumspect. • What should you remember about this paper? ‣ Take away - what general lesson or fact should you take away from the paper. ‣ Note that really good papers will have take-aways that are more general than the paper topic. CSE543 - Introduction to Computer and Network Security Page 5

  6. Summarize Thompson Article • Contribution • Motivation • Related work • Methodology • Results • Take away CSE543 - Introduction to Computer and Network Security Page 6

  7. A Sample Summary • Contribution: Ken Thompson shows how hard it is to trust the security of software in this paper. He describes an approach whereby he can embed a Trojan horse in a compiler that can insert malicious code on a trigger (e.g., recognizing a login program). • Motivation: People need to recognize the security limitations of programming. • Related Work: This approach is an example of a Trojan horse program. A Trojan horse is a program that serves a legitimate purpose on the surface, but includes malicious code that will be executed with it. Examples include the Sony/BMG rootkit: the program provided music legitimately, but also installed spyware. • Methodology: The approach works by generating a malicious binary that is used to compile compilers. Since the compiler code looks OK and the malice is in the binary compiler compiler, it is difficult to detect. • Results: The system identifies construction of login programs and miscompiles the command to accept a particular password known to the attacker. • Take away: What is the transcendent truth????? (see next slide) CSE543 - Introduction to Computer and Network Security Page 7

  8. Turtles all the way down ... • Take away: Thompson states the “obvious” moral that “you cannot trust code that you did not totally create yourself.” We all depend on code, but constructing a basis for trusting it is very hard, even today. • ... or “ trust in security is an infinite regression ...” “A well-known scientist (some say it was Bertrand Russell) once gave a public lecture on astronomy. He described how the earth orbits around the sun and how the sun, in turn, orbits around the center of a vast collection of stars called our galaxy. At the end of the lecture, a little old lady at the back of the room got up and said: "What you have told us is rubbish. The world is really a flat plate supported on the back of a giant tortoise." The scientist gave a superior smile before replying, "What is the tortoise standing on?" "You're very clever, young man, very clever", said the old lady. "But it's turtles all the way down!" - Hawking, Stephen (1988). A Brief History of Time. CSE543 - Introduction to Computer and Network Security Page 8

  9. Reading a paper • Everyone has a different way of reading a paper. • Here are some guidelines I use: ‣ Always have a copy to mark-up. Your margin notes will serve as invaluable sign-posts when you come back to the paper (e.g., “here is the experimental setup” or “main result described here”) ‣ After reading, write a summary of the paper containing answers to the questions in the preceding slides. If you can’t answer (at least at a high level) these questions without referring to the paper, it may be worth scanning again. • Over the semester, try different strategies for reading papers (e.g., Honeyman approach) and see which one is the most effective for you. CSE543 - Introduction to Computer and Network Security Page 9

  10. Reading a systems security paper • What is the security model? ‣ Who are the participants and adversaries ‣ What are the assumptions of trust (trust model) ‣ What are the relevant risks/threats • What are the constraints? ‣ What are the practical limitations of the environment ‣ To what degree are the participants available • What is the solution? ‣ How are the threats reasonably addressed ‣ How do they evaluate the solution • What is the take away? ‣ key idea/design, e.g., generalization (not solely engineering) • Hint: I will ask these questions when evaluating course project. CSE543 - Introduction to Computer and Network Security Page 10

  11. Why write a paper? • There are many reasons to write a paper: ‣ Articulate a new idea, thought, or observation ... ‣ Document your research ... ‣ Talk about new (observed) phenomenon .... ‣ Advance your career ... ‣ Because you have to ... • Reality : publication is the coin of the realm in science, failure to do this successfully will lead to failure. You have to be effective at this to be a good (a) graduate student, (b) faculty member, or [sometimes] (c) researcher in professional research laboratory (IBM/AT&T/MS) CSE543 - Introduction to Computer and Network Security Page 11

  12. Where to publish? • Venues for publication: ‣ Tech report ‣ Workshop ‣ Conference ‣ Journal • Often your work will work through these from preliminary to archival versions of the work, sometimes branching or joining. • Book : less frequent, more work. CSE543 - Introduction to Computer and Network Security Page 12

  13. Publication Tiers • Not all publication venues are valued the same. Publication “tiers” tell the story • 1st tier - IEEE S&P , USENIX Sec, CCS, TISSEC , JCS ‣ 1.5 NDSS • 2nd tier - ACSAC, ACNS, ESORICS, CSF, RAID, TOIT • 3rd tier - SecureComm, ICISS • 4th tier - HICS ‣ SCIgen (WMSCI 2005) ‣ http://pdos.csail.mit.edu/scigen/ CSE543 - Introduction to Computer and Network Security Page 13

  14. Journal publication • The editor-in-chief (EIC) EIC Assign Start receives the papers as they AE are submitted. AE Assign to • The papers are assigned to Reviewers associate editors for handling. Author Assign to Assign to Assign to Prepare • Anonymous reviewers rate the Reviewer Reviewer Reviewer Revision paper: Review Review Review Assign Assign Assign ‣ Accept without changes Rating Rating Rating Major Revision ‣ Minor revision or Minor Revision AE ‣ Major revision Evaluate ‣ Reject Reject Accept Reject Accept CSE543 - Introduction to Computer and Network Security Page 14

  15. Conference Publication • The PC Chair is the person Start who marshals the reviewing and decisions of a conference. This is Chair Assign to PC different than the general Members chair . PC PC PC • PC members review, rate Member Member Member Assign Assign Assign Rating Rating Rating and discuss, the paper, then vote on which ones Discuss at Reject are accepted. No PC Meeting? • The acceptance rate is the ratio of accepted to PC Meeting Accept submitted papers. Discussion CSE543 - Introduction to Computer and Network Security Page 15

  16. Paper evaluation • A paper is evaluated on ‣ Novelty ‣ Correctness ‣ Impact ‣ Presentation ‣ Relevance ‣ “hotness” CSE543 - Introduction to Computer and Network Security Page 16

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CSE598d - Topics in Applied System Security: Introduction Patrick McDaniel Fall 2010 1 CSE598i

CSE598d - Topics in Applied System Security: Introduction Patrick McDaniel Fall 2010 1 CSE598i

442 views • 6 slides
SOCIAL SECURITY: WHAT YOU NEED TO KNOW Topics: What is Social Security? Will Social Security

SOCIAL SECURITY: WHAT YOU NEED TO KNOW Topics: What is Social Security? Will Social Security

SOCIAL SECURITY: WHAT YOU NEED TO KNOW Topics: What is Social Security? Will Social Security Be There For Me? How Do We Earn Credits? Who Can Get Benefits? When Should I Retire? How Do I Apply? What About Medicare? What is Social

578 views • 44 slides
Security Security as term, Possible Security violations Authentication Criteria for

Security Security as term, Possible Security violations Authentication Criteria for

BS1 WS19/20 topic-based slides Security Security as term, Possible Security violations Authentication Criteria for Trust in Computer Systems Three hearts of Windows Security DACLs A Look at Security System is secure if

988 views • 20 slides
Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables

Linux System Security Tunables Linux System Security Tunables Linux System Security Tunables http://outflux.net/slides/2013/drupal/tunables.pdf R0Ng DrupalCon Portland 2013 Kees Cook <keescook@google.com> (pronounced Case) Who is

474 views • 33 slides
Computer Security environment, without compromising functionality or security? Three parts

Computer Security environment, without compromising functionality or security? Three parts

9/7/2013 Some topics Im working on Computing on encrypted data Information flow: Dynamic IFC in Haskell, web Sandboxing Untrusted JavaScript Third party web tracking and other web security stories Practical web security

572 views • 21 slides
Protection and Security Threat is potential security violation Attack is attempt to breach

Protection and Security Threat is potential security violation Attack is attempt to breach

CSC 4103 - Operating Systems The Security Problem Spring 2007 Security must consider external environment of the system, and protect the system resources Lecture - XX Intruders (crackers) attempt to breach security Protection and

195 views • 4 slides
Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security

Network provider Security Markus Peuhkuri 2005-04-28 Lecture topics Basics of security Security threats Regulators and ISP security Some headlines Davie-Besse nuclear reactor control network

482 views • 17 slides
System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn

System Security I: Introduction TDDD17 Information Security, Second Course Ulf Kargn Department of Computer and Information Science Linkping University System Security 2 Security in computer systems Hardware (System)

838 views • 56 slides
International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International

International and Global Security 1 Peer Discussion What is security? 2 International Security What is security? Freedom from threats to core values? Contestation over referent object: Individual? State? System? How is security achieved?

715 views • 11 slides
Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System

Module 20: Security The Security Problem Authentication Program Threats System Threats Threat Monitoring Encryption Silberschatz and Galvin 1999 Operating System Concepts 20.1 The Security Problem Security must

155 views • 11 slides
1 How do we establish fundamental principles Formal methods reducing complexity of security?

1 How do we establish fundamental principles Formal methods reducing complexity of security?

Charge Topics What are the most important ideas from other fields that we should try to integrate into cyber security? The Science of Security The Science of Security What steps are needed to establish more useful Questions and Promising

253 views • 3 slides
CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming Zhao Location: Frnczk 408, North campus Time: Monday, 5:20 PM - 8:10 PM Last Class 1. Defenses a. Address Space Layout Randomization (ASLR)

872 views • 19 slides
Security Awareness Rick Whitmore Information Technology Security Office security.ku.edu

Security Awareness Rick Whitmore Information Technology Security Office security.ku.edu

Security Awareness Rick Whitmore Information Technology Security Office security.ku.edu Everyone has a role in securing their part of cyberspace, including the devices and networks they use. Todays Topics Impact on Universities

936 views • 59 slides
CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming

CSE 610 Special Topics: System Security - Attack and Defense for Binaries Instructor: Dr. Ziming Zhao Location: Online Time: Monday, 5:20 PM - 8:10 PM First off, Logistics! Turn on camera if possible Classes are recorded and released

1.42k views • 116 slides
What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

What is network security? Friends and enemies: Alice, Bob, Trudy What is network security?

Network security Network security Foundations: what is security? cryptography Network Security Network Security authentication message integrity key distribution and certification Security in practice: Srinidhi Varadarajan

332 views • 6 slides
Topics in Security Testing [Reading assignment: Chapter 13, pp. 193-209. Note that many more

Topics in Security Testing [Reading assignment: Chapter 13, pp. 193-209. Note that many more

Topics in Security Testing [Reading assignment: Chapter 13, pp. 193-209. Note that many more topics are covered in these slides and in class.] Computer Security The goal of computer security is to protect computer assets ( e.g., servers,

1.53k views • 119 slides
Quest for laser driven experiments at ELI-NP Daniel Ursescu 19.06.2014, DFT Seminar, IFIN-HH

Quest for laser driven experiments at ELI-NP Daniel Ursescu 19.06.2014, DFT Seminar, IFIN-HH

EUROPEAN UNION GOVERNMENT OF ROMANIA Structural Instruments 2007-2013 Project co-financed by the European Regional Development Fund Sectoral Operational Programme Increase of Economic Competitiveness Investments for Your Future

875 views • 63 slides
Future Pixel Detectors Future Pixel Detectors Fermilab 3D and SOI Technology Fermilab 3D and SOI

Future Pixel Detectors Future Pixel Detectors Fermilab 3D and SOI Technology Fermilab 3D and SOI

Future Pixel Detectors Future Pixel Detectors Fermilab 3D and SOI Technology Fermilab 3D and SOI Technology Developments Developments KEK June 25, 2007 Marcel Demarteau For the Fermilab Detector & Physics R&D Group Tsukuba, Japan

570 views • 36 slides
Slide 1 / 20 1 When an object is placed in front of a plane mirror the image is: A Upright,

Slide 1 / 20 1 When an object is placed in front of a plane mirror the image is: A Upright,

Slide 1 / 20 1 When an object is placed in front of a plane mirror the image is: A Upright, magnified and real B Upright, the same size and virtual C Inverted, demagnified and real D Inverted, magnified and virtual E Upright, magnified and

466 views • 7 slides
15/02/2016 After an inspirational Mediterranean campaign HMAS Sydney II and its crew had become

15/02/2016 After an inspirational Mediterranean campaign HMAS Sydney II and its crew had become

15/02/2016 After an inspirational Mediterranean campaign HMAS Sydney II and its crew had become Australian icons & a symbol of hope as the war widened. Here a celebratory march past in Perth captures that mood. Sydney Why it was necessary

336 views • 11 slides
Biodiversity Last time Species Concept Biodiversity Measuring Biodiversity Biodiversity Today

Biodiversity Last time Species Concept Biodiversity Measuring Biodiversity Biodiversity Today

Biodiversity Last time Species Concept Biodiversity Measuring Biodiversity Biodiversity Today Last time Endemism Species Concept Rates of species formation Biodiversity Mass Extinctions Measuring Biodiversity Species Area Relationship

346 views • 22 slides
Welcome to Lancaster Herpetological Society! RESTROOMS : Out the doors to the right.

Welcome to Lancaster Herpetological Society! RESTROOMS : Out the doors to the right.

Welcome to Lancaster Herpetological Society! RESTROOMS : Out the doors to the right. TRADING POST : Check out the Trading Post where members can sell or trade herp stuff! SIGN-IN : Sign in to make sure youre on our e-mailing

446 views • 30 slides
Assertions, Denials Questions, Answers & the Common Ground Greg Restall arch m & lg

Assertions, Denials Questions, Answers & the Common Ground Greg Restall arch m & lg

Assertions, Denials Questions, Answers & the Common Ground Greg Restall arch m & lg seminar / 30 september 2019 / st andrews My Aim To better understand the speech acts of assertion and denial , their relationships to other speech

1.72k views • 136 slides
Learning Goals: In-Class snack By the end of this unit, you should be able to: Devise and

Learning Goals: In-Class snack By the end of this unit, you should be able to: Devise and

snick Learning Goals: In-Class snack By the end of this unit, you should be able to: Devise and attempt multiple different, appropriate CPSC 121: Models of Computation proof strategies including all those listed in the pre -

480 views • 9 slides

More recommend