masterclass security in data cloud and blockchain
play

Masterclass: Security in data, cloud and blockchain Professor Trish - PowerPoint PPT Presentation

Dec 28, 2022 •271 likes •839 views

Masterclass: Security in data, cloud and blockchain Professor Trish Williams Cisco Chair and Professor of Digital Health Systems Co-Director of Flinders Digital Health Research Centre College of Science and Engineering Flinders University,

  2. Masterclass: Security in data, cloud and blockchain Professor Trish Williams Cisco Chair and Professor of Digital Health Systems Co-Director of Flinders Digital Health Research Centre College of Science and Engineering Flinders University, South Australia Ivan Jasenovic Managing Director, Sicoor.com

  3. HISA Cybersecurity Community of Practice . https://www.hisa.org.au/cybersecurity/ http://katyaburg.ru/sites/default/files/pictures/prikolnye_video/super-smeshnaya-podborka-video-pro-kotov-koty-otjigaut.jpg

  4. Current security in e-Health

  5. Continuum of Security https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  6. What to expect today? 1. Cybersecurity in healthcare – context 2. Basics test 3. Why do we need to start thinking differently? 4. What’s coming our way? 5. Blockchain in health

  7. 1. Cybersecurity in healthcare - context http://documents.trendmicro.com/images/TEx/articles/healthcare-breaches-timeline.jpg

  8. Attack capability http://i1-news.softpedia-static.com/images/news2/dyn-ddos-attack-powered-mainly-by-mirai-botnet-509541-2.png

  9. Mirai (IoT malware), botnets and DDOS attacks • Searches online for internet connected devices with default authentication • usernames and passwords • Build a botnet • harnessing the computation resources of equipment infected • Distributed denial of service • Design suggests it’s a platform • so many data requests the target is not just a ‘piece’ of attack flooded and can no longer respond or malware function) • Last attack was a test run https://4a7efb2d53317100f611-1d7064c4f7b6de25658a4199efb34975.ssl.cf1.rackcdn.com/dumped-source-code-hacks-iot-devices-to-build-ddos-army-showcase_image-5-p-2267.jpg

  10. Ransomware https://digitalguardian.com/sites/default/files/26884181_m.jpg

  11. Rarely one cause e.g. Impact on NHS of WannaCry

  12. Why do we have this problem?

  13. Australian healthcare = a complex system

  14. Complex to defend… https://media.licdn.com/mpr/mpr/p/6/000/252/246/289588f.jpg

  15. Data intensive https://www.blackpepper.co.uk/wp-content/uploads/2016/09/Big-data-blog-image.jpg

  16. Critical Infrastructure http://www.nhisac.org/wp-content/uploads/CIKRCollage.jpg http://www.nhisac.org/wp-content/uploads/health1.jpg

  17. Convergence and Integration • Immaturity and a lack distinction between health software and medical devices in the health mobile marketplace, presents a major challenge for the security discipline

  18. Threat landscape • advanced I malware • Mirai • Ransomware • targeted Advanced Persistent attacks Threat • advanced persistent threats (APTs) https://s-media-cache-ak0.pinimg.com/originals/aa/5c/f1/aa5cf14cd468e04f46d7173ab76165a1.jpg

  19. The hacking business • Healthcare is an attractive and valuable target for hackers • Ransom for $$$ • Denial of Service for malice/$$$ • Stealing confidential data • Compromising data • Identity theft • Compromising devices https://upload.wikimedia.org/wikipedia/en/0/07/H_Commerce_film_poster.jpg

  20. New technology and new/old threats http://www.healthwareinternational.com/HP3Image/Content/internet-of-things.jpg https://img.wonderhowto.com/img/50/81/63545703386404/0/advice-from-real-hacker-protect-yourself-from-being-hacked.1280x600.jpg

  21. https://blog.gemalto.com/wp-content/uploads/2016/09/2016-breaches-by-type-source.jpg

  22. Unfortunately, the reality is that ….. “The healthcare sector is slow to update technology and as such is woefully unprepared for an oncoming onslaught of cyber attacks” SecurityBriefAu, March 02, 2016 Following the Mirai attack - “Hospitals survived not by design by by luck” Kevin Fu, Report to US Congress, https://securitybrief.com.au/media/cache/6a/f7/6af72e9f889fb0cc6f785790f208c1c9.jpg

  23. But it’s not all doom and gloom….. https://i.pinimg.com/736x/34/1f/99/341f99bee46fd9f0d5da541d2c628486--cat-tunnel-train-tunnel.jpg

  24. Continuum of Security Start Here https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  25. 2. Basics test http://epicfails.net/wp-content/uploads/2011/04/camera_fail.jpg

  26. Back to basics….. Passwords.... Weak or strong?  Password Rate the strength of the eight  rover passwords: – Rate 1 for the strongest  1qaz2wsx password  Fluffy19 – To 8 for the weakest password  Pa$$w0rd  :);):-:( ;):-  1qaz@WSX  21734260118924

  27. Back to basics…..Passwords 8. rover 7. Password 6. 21734260118924 :);):-:(  ;):-  5. 4. Fluffy19 3. 1qaz2wsx 2. Pa$$w0rd 1. 1qaz@WSX

  28. Continuum of Security Gradually moving to here https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  29. Lets test your knowledge…. • Does your organisation use email ? • Does your organisation send any patient related data via email? • Yes  • No – think again - https://stupidevilbastard.com/wp-content/uploads/2012/03/techsupportcat.jpg

  30. How much do you know? Is email a secure form of communication? a) Yes b) No b) No – can be traced, intercepted, spoofed, read (unless encrypted)

  31. What is phishing? a) Spoofed e-mails and fraudulent websites to fool recipients b) A type of computer virus c) An example of a strong password a) Spoofed e-mails and fraudulent websites to fool recipients

  32. What do you do if you get spammed? a) Reboot with sysdoc.exe disabled b) Delete the email c) Wipe your monitor with soft cloth b) Delete the email

  33. Phishing – real or not?

  34. Real or not? 

  36. What does this prove? Captcha: "Completely Automated Public Turing test to tell Computers and Humans Apart".

  37. Continuum of Security Lets advance to here https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  38. 3. Why do we need to start thinking differently? • Things are moving faster than we can imagine http://ichef.bbci.co.uk/wwfeatures/live/624_351/images/live/p0/0z/95/p00z9591.jpg

  39. How do we usually approach cybersecurity? So much cybersecurity advice out there …

  40. Layered Security https://businessinsightsdm.files.wordpress.com/2017/03/graphic-1.jpg?w=616 http://www.infoexchangeja.com/uploads/blog/Layered_Security_Diagram-01.png

  41. Why change? Your challenges are: How do we keep up with attacks that are different, constant, and more and more sophisticated?

  42. Continuum of Security Now to here https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  43. Acceptance of new ways of doing things http://slideplayer.com/10952745/39/images/6/The+Cloud+Continuum+Customer+Entry+into+Cloud+Security.jpg

  45. 4. What’s coming our way? (or is already here!) https://pbs.twimg.com/media/DHNY_r3XsAASKi5.jpg

  46. https://media.licdn.com/mpr/mpr/AAEAAQAAAAAAAAt3AAAAJDM5NDBhN2JiLTQ2MDYtNGYxMi1hYTEwLWVmMWU2ZjhkYjQzZA.jpg

  47. http://www.geekculture.com/joyoftech/joyimages/2340.png

  48. Continuum of Security Ultimately to here https://securityledger.com/wp-content/uploads/2015/03/Fotolia_75085004_S.jpg

  49. Blockchain • A blockchain is a type of distributed ledger, comprised of un-changable, digitally recorded data in packages called blocks . https://gallery.mailchimp.com/0c60818e26ecdbe423a10ad2f/images/5335b0a4-1b15-46e7-acf9-01f43ad813d7.jpg

  50. Healthcare data security is like…

  51. What we need to build is ……Resilience Resilience is the ability to “bounce back” from stressful or challenging experiences. It involves being able to adapt to changes and approach negative events, sources of stress and traumatic events as constructively as possible. Cyber resilience refers to an entity's ability to continuously deliver the intended outcome despite adverse cyber events http://www.motivationalmemo.com/wp-content/uploads/2012/07/resilience.jpg

  52. Australia’s Cyber Resilience Taskforce https://www.pmc.gov.au/cyber-security/cyber-resilience-taskforce

  53. Resilience philosophy http://4.bp.blogspot.com/-oGounP7z0S0/TiBdgq_X-TI/AAAAAAAAAfI/XjzKNvSHrqQ/s1600/1tiggerbounce.gif

  55. Thank you Questions/Discussion

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Decentralized Cloud Storage Putting Data in the Cloud without Losing Control Introduction +

Decentralized Cloud Storage Putting Data in the Cloud without Losing Control Introduction +

Decentralized Cloud Storage Putting Data in the Cloud without Losing Control Introduction + David Vorick, CEO + Blockchain Expert + Bitcoin enthusiast since 2011 + Full time Blockchain Engineer since 2014 + Co-founded Sia in 2014 + Sia

453 views • 28 slides
CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA

CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA

BLOCKCHAIN IN CYBERSECURITY: USAGE AND Abdullah Hamdan CHALLENGES 02/04/2020 OUTLINE : Introduction Blockchain in Cyber security Blockchain and CIA Blockchain Security applications Blockchain Security challenges Conclusion 2 INTRODUCTION

413 views • 12 slides
Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security

Chapter 9 Cloud Security Contents Security in an interconnected world, cloud security risks. Attacks in a cloud environment, top threats. Security, a major concern for cloud users. Privacy. Trust. Operating systems

661 views • 38 slides
A Blockchain-based Flight Data Recorder for Cloud Accountability G. DAngelo, S. Ferretti , M.

A Blockchain-based Flight Data Recorder for Cloud Accountability G. DAngelo, S. Ferretti , M.

A Blockchain-based Flight Data Recorder for Cloud Accountability G. DAngelo, S. Ferretti , M. Marzolla Dept. of Computer Science and Engineering s.ferretti@unibo.it Cloud Computing On-demand self service On-demand self service On-demand

567 views • 38 slides
CO 445H BLOCKCHAIN SECURITY Dr. Benjamin Livshits Apps Stealing Your Data 2 What are they

CO 445H BLOCKCHAIN SECURITY Dr. Benjamin Livshits Apps Stealing Your Data 2 What are they

CO 445H BLOCKCHAIN SECURITY Dr. Benjamin Livshits Apps Stealing Your Data 2 What are they doing with this data? We dont know what is happening with this data once it is collected. Its conceivable that this information could be analysed

959 views • 59 slides
Private Keys And Security In A World Of Blockchain Mat Cybula Co-Founder & CEO

Private Keys And Security In A World Of Blockchain Mat Cybula Co-Founder & CEO

Private Keys And Security In A World Of Blockchain Mat Cybula Co-Founder & CEO mat@cryptiv.com State of the blockchain 2016 - A big year for blockchain Public Ledgers Evolve Wall Street Places Bets Digital Assets Have Arrived Why this

217 views • 21 slides
A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan

A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan

A Blockchain based Witness Model for Trustworthy Cloud Service Level Agreement Enforcement Huan Zhou , Xue Ouyang, Zhijie Ren, Jinshu Su, Cees de Laat, Zhiming Zhao Paris 1/May/2019 Outline Cloud SLA / Blockchain: background and challenges

931 views • 30 slides
CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns

CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns

CS573 Data privacy and security in the cloud in the cloud Slide credits: Ragib Hasan, Johns Hopkins University What is Cloud Computing ? Lets hear from the experts 2 What is Cloud Computing ? The infinite wisdom of the crowds (via

709 views • 38 slides
Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the

Cloud Security Today Presenter: Jason Sheffield Topics What are the issues today? What is the Cloud? How the Cloud is delivered: Iaas, PaaS and SaaS Cloud security challenges and risk Current Cloud security report Cloud security technology

302 views • 27 slides
Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain

Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain

Welcome to the Government Blockchain Association (GBA) Meet Up May 15 th , 2017 Blockchain for Homeland Security, Defense and Law Enforcement Agenda Brief Review What is blockchain and why is it important? What are the defining

795 views • 31 slides
Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security

Motivation Two-Cloud Setting PP k NN Classification Conclusion and Future Research Privacy-Preserving Query Processing over Encrypted Data in Cloud CS573 Data Privacy and Security Yousef M. Elmehdwi Department of Mathematics and Computer

919 views • 19 slides
Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016

Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016

Security for Cloud & Big Data CS 161: Computer Security Prof. David Wagner April 25, 2016 Awesome Project 2 Solutions Honorable mention: Vincent Wang and John Choi super-efficient updates (6-9x better than our target!) using a log of

955 views • 28 slides
Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined)

Outline Get Off of My Cloud 8271 discussion of cloud computing security (combined) Administrative discussions Stephen McCamant University of Minnesota Multi-Cloud Oblivious Storage Old and new topics in security Cloud threats, old and new

645 views • 8 slides
Fields of Geo-Data and Blockchain Done by : Nancy Abu Halemah Aisah al Qayem GEO DATA GEODATA

Fields of Geo-Data and Blockchain Done by : Nancy Abu Halemah Aisah al Qayem GEO DATA GEODATA

Fields of Geo-Data and Blockchain Done by : Nancy Abu Halemah Aisah al Qayem GEO DATA GEODATA SCIENCE (GDS) GEO-TAGGED VISUAL MEDIA Objectives VOLUNTEERED BLOCKCHAIN WITH GEO BLOCKCHAIN APPLICATIONS GEOGRAPHIC TAGS IMAGE USING GEO

738 views • 24 slides
Overview Physical Security Blockchain and Cryptocurrency Self-Driving Car: Hyundai, KAIST

Overview Physical Security Blockchain and Cryptocurrency Self-Driving Car: Hyundai, KAIST

Korea vs USA Security Research - Case Study: Cellular Network - Yongdae Kim KAIST Syssec Overview Physical Security Blockchain and Cryptocurrency Self-Driving Car: Hyundai, KAIST Samsung: Blockchain ApplicaDon This aint your, Usenix WOOT

426 views • 8 slides
1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

1 1.2. Guidelines for Information Security of Cloud Computing Category Main contents of measure

Agenda Related Polices to Cloud Computing I. Guidelines for Information Security of Cloud II. Computing Cloud Security Certification Scheme in KOREA Cloud Security Certification Program in Korea III. April. 11, 2017 Jungduk (JD) KIM, Ph.

403 views • 5 slides
Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal

Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal

Victim Legal Assistance Network A Georgia CJCC Vision 21 Project What is the Victim Legal Assistance Network? (VLAN) VLAN is a network of victim service providers Core Partners provide comprehensive, pro bono "no-cost" legal

692 views • 29 slides
Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the

Cy Cyber ber La Lay of the he La Land nd What the Numbers Tell Us Cyber r Lay of f the Land: : Wh What t the Numbe mbers rs Tell l Us Visit www.advisenltd.com at the end of this webinar to download: Copy of these slides

722 views • 31 slides
Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source:

Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source:

Using Data from Breaches What is the User Level of Comfort? Yingquan Yu My story Source: https://infosecurity.cathaypacific.com/ How many online accounts compromised through data breach? 5,575,703,782 Source: https://haveibeenpwned.com

556 views • 18 slides
Decision Trees Lecture 23 To left or to right 1 Decision Trees 2 Decision Trees A different

Decision Trees Lecture 23 To left or to right 1 Decision Trees 2 Decision Trees A different

Decision Trees Lecture 23 To left or to right 1 Decision Trees 2 Decision Trees A different complexity measure 2 Decision Trees A different complexity measure Number of bits of input read 2 Decision Trees A different complexity measure

1.3k views • 107 slides
HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF Vancouver Joakim Koskela HIP-based P2PSIP

HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF Vancouver Joakim Koskela HIP-based P2PSIP

HIP-based P2PSIP proxy HIP RG Meeting 70 th IETF Vancouver Joakim Koskela HIP-based P2PSIP P2PSIP in general: replace SIP server architecture with a DHT Used for routing messages and locating peers & services New challenges

219 views • 8 slides
Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global

Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global

Social Networks and Security Checkpoint Sep 7, 2009 Joseph Bonneau, Computer Laboratory Global Players (4/2009) Credit: Vincenzo Cosenza Promotional Techniques Promotional Techniques Application Data Theft What happens when you take a

412 views • 19 slides
Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card

Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card

Test Your Tech The dangers of phishing include A. Sharp hooks and nightcrawlers. B. Credit-card fraud at a look-alike Web site that mimics your bank. C. High mercury content in fish from polluted oceans. D.A. Clements, UW Information School 1

525 views • 25 slides
TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In

TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In

TF-IDF and Okapi BM25 LM, session 3 CS6200: Information Retrieval Binary Independence Models In Bayesian classification, we rank documents by their likelihood ratios P ( D | R = 1 ) calculated from some probabilistic model. P ( D | R = 0 ) The

548 views • 9 slides

More recommend