matthew wright phd director of the center for
play

Matthew Wright, PhD Director of the Center for Cybersecurity - PowerPoint PPT Presentation

Feb 01, 2024 •259 likes •838 views

http://www.rit.edu/cybersecurity Matthew Wright, PhD Director of the Center for Cybersecurity Professor of Computing Security Rochester Institute of Technology Center Mission Research Interdisciplinary Real-world Human-centered

  1. http://www.rit.edu/cybersecurity Matthew Wright, PhD Director of the Center for Cybersecurity Professor of Computing Security Rochester Institute of Technology

  2. Center Mission Research • Interdisciplinary • Real-world • Human-centered Education Outreach • Tied to • SAFE Lab Research • Industry-focused • Real projects research

  3. Security Analytics • Prediction of attacks • Modeling attacker behavior • Simulation to predict outcomes Katie McConky S. Jay Yang • Discovering Architectural Weaknesses • Finding & characterizing design flaws • Working w/ MITRE’s CWE Mehdi Mirakhorli • Mining for Software Vulnerabilities • Understanding how software vulnerabilities happen Andy Meneely • Metrics

  4. Crypto & Trusted Hardware • ML on Encrypted Data • Applying homomorphic encryption • Fully secure in the cloud Peizhao Hu • Trusted Computing • Cache-based attacks in SGX • Defenses Ziming Zhao • Crypto Hardware • FPGA implementations • Power analysis attacks Marcin Lukowiak

  5. Network Security • Measuring Internet Security • DNSSEC Deployment • Certificate Authorities Tijay Chung • Software-Defined Networks • SDN Firewalls • SDN Honeynets Ziming Zhao • Wireless Security • Full-frame Encryption • Securing PHY-layer attributes Hanif Rahbari

  6. http://www.rit.edu/cybersecurity

  7. How Attackers Can Read Your Encrypted Traffic … and What to Do About It

  8. Encrypted Traffic Reading up on my athlete’s https://turtlehealth.com/shell shell symptoms. Encrypted Connection Shelly

  9. Encrypted Traffic Oh, what’s this? Broken shells! I can’t read it! https://turtlehealth.com/shell Sheldon Encrypted Connection Shelly

  10. http://www.nickandmore.com/wordpress/wp-content/uploads/2013/08/cover.jpg

  11. Website Fingerprinting P1 https://turtlehealth.com/shell P2 https://turtlehealth.com/tail P1 P2 Shredder DB

  12. Website Fingerprinting Ah! A match for P1! https://turtlehealth.com/shell P1 P2 90%+ Accuracy Shelly

  13. Website Fingerprinting Threat Model Po Possible At Attackers Website ISP AS

  15. Tor Webserver Attacker Middle Exit Guard Client

  16. Website Fingerprinting in Tor Train the classifier Tr 16

  17. Websi site Fi Fingerp rpri rinti ting in To Tor Pre Predict ct Pe Perform the attack 17

  18. Heh! Nice try J 90%+ Accuracy* * For ~100 sites, not pages 18

  19. Adaptive Padding WTF-PAD P1 • AP for Tor • 90% accuracy à 17% Tor (unpadded) • 54-64% bandwidth P1 overhead • Minimal added delay Tor w/ Adaptive Padding

  20. Transition to Practice • Working with Tor to deploy this +

  21. WTF!?!

  22. Questions?

  23. De Deep Fi Fingerp rpri rinti ting Un Undermining Website Fingerprinting De Defenses wi with De Deep Learning Payap Sirinam Rochester Institute of Technology Mohsen Imani University of Texas at Arlington Marc Juarez imec-COSIC KU Leuven, Belgium Matthew Wright Rochester Institute of Technology Payap Marc Mohsen

  24. Deep Learning 24 https://codeburst.io/deep-learning-what-why-dd77d432f182

  25. ILSVRC: 1.2M images, 1.2K categories

  26. 120 Breeds http://arcticicekennels.tripod.com/puppies.html

  27. Trained!

  28. Websi site Fi Fingerp rpri rinti ting in To Tor Mo Monitored- vs vs Unm nmoni onitor ored ed Websi ebsites es 28

  29. Websi site Fi Fingerp rpri rinti ting in To Tor Closed- vs Cl vs Open pen Wor orld d Scenar cenarios os Cl Closed-Wor World d Scenar enario - Users only visit monitored websites - Identify which website ? Monitore Mo red facebook.com humanright.com - Accu cy of the attack ccuracy ….. - Unrealistic [ JAA14 ] - Classifier performance evaluation [JAA14] Juarez et al. A critical evaluation of website fingerprinting attacks., CCS 2014 29

  30. Websi site Fi Fingerp rpri rinti ting in To Tor Cl Closed- vs vs Open pen Wor orld d Scenar cenarios os Op Open-Wor World d Scenar enario - Users can visit any website in the world (> billions) - Recognizing monitored or unmonitored - More realistic and more difficult - Preci cisi sion and Reca call [ JAA14 , PLZ16 ] [JAA14] Juarez et al. A critical evaluation of website fingerprinting attacks., CCS 2014 [PLZ16] Panchenko et al. Website fingerprinting at internet scale., NDSS 2016 30

  31. Website Fingerprinting Attacks & Defenses 31

  32. We Website Fingerprinting At Attacks & & Defenses WF WF Attacks using Hand-cr craf afted ed Feat eatur ures es • Feature engineering • 3 state-of-the-art • k -NN [ WCN14 ] • CUMUL [ PLZ16 ] • k- FP [ HD16 ] • 90+% Accuracy [WCN14] Wang et al. Effective attacks and provable defenses for website fingerprinting., USENIX 2014 [PLZ16] Panchenko et al. Website fingerprinting at internet scale., NDSS 2016 [HD16] Hayes and Danezis. k-Fingerprinting: A robust scalable website fingerprinting technique., 32 USENIX 2016.

  33. We Website Fingerprinting At Attacks & & Defenses WF WF Defenses • Basic mechanisms Ad Add dummy packets De Delay packets 33

  34. We Website Fingerprinting At Attacks & & Defenses Light Li ghtwei eight ght WF Def efenses enses • WTF-PAD [ JIP16 ] • Moderate bandwidth e.g. 54% + Low delay • Reduce accuracy < 20% • Main candidate to be deployed in Tor. [ PER15 ] [JIP16] Juarez et al. Toward an efficient website fingerprinting defense., ESORIC2016. 34 [PER15] Mike Perry. Padding negotiation. Tor protocol specification., 2015.

  35. Website Fingerprinting At We Attacks & & Defenses Light Li ghtwei eight ght WF Def efenses enses • Walkie-Talkie (W-T) [ WG17 ] • 31% extra bandwidth overhead & 34% extra latency overhead • Reduce accuracy < 30% [WG17] Wang and Goldberg. Walkie-talkie: An efficient defense against passive website fingerprinting attacks. USENIX 2017 35

  36. We Website Fingerprinting At Attacks & & Defenses WF WF Attacks using Deep Learning • Rimmer et al. work [ RPJ18 ] • Automated feature engineering • 3 DL vs 1 Hand-crafted • SDAE, CNN, LSTM vs CUMUL • CNN, SDAE and CUMUL consistently perform best • 95-97% Accuracy [RPJ18] Rimmer et al. Automated website fingerprinting through deep learning., NDSS2018 36

  37. Neural Networks (in 1 slide) Right? Wrong? https://stats.stackexchange.com/questions/188277/activation-function-for-first-layer-nodes-in-an-ann 37 https://www.digitaltrends.com/cool-tech/what-is-an-artificial-neural-network/

  38. CNNs (in 1 slide) https://stats.stackexchange.com/questions/188277/activation-function-for-first-layer-nodes-in-an-ann 38 https://www.digitaltrends.com/cool-tech/what-is-an-artificial-neural-network/

  39. Website Fingerprinting At We Attacks & & Defenses Go Goals • Prior work • CNN model à early-proposed architecture • Improvement of CNN in the literature ~55% Accuracy ~71% Accuracy ~80% Accuracy AlexNet (2 Al (2012) VG VGG19 (2014) In Inceptio tion V4 (2016) Canziani et al. An Analysis of Deep Neural Network Models for Practical Applications., arXiv:1605.07678 39

  40. We Website Fingerprinting At Attacks & & Defenses Ke Key Challenges • No evaluation against WF defenses Effective CNN CNN Model e.g. ~80 Accuracy Original Effective? CNN CNN Model Distorted 40

  41. Deep Fingerprinting 41

  42. De Deep Fingerprinting DF DF Model: Improved De Design of CNN CNN Deeper layers #Filters growing Image Low-level High-level Network Traffic Ze Zeiler and and Fe Fergus. . “Visualizing and understa tanding convoluti tional net networ orks”. ECCV, , 2014. 42

  43. De Deep Fingerprinting DF DF Model AW AWF M Model (O (Our) r) (Ri Rimmer et et al. al.) 43

  44. De Deep Fingerprinting DF DF Model AW AWF M Model (O (Our) r) (Ri Rimmer et et al. al.) 44

  45. De Deep Fingerprinting DF DF Model AW AWF M Model (O (Our) r) (Ri Rimmer et et al. al.) 45

  46. Batch Normalization Gradient Descent BN: 1 ft. max https://saugatbhattarai.com.np/what-is-gradient-descent-in-machine-learning/ https://towardsdatascience.com/gradient-descent-in-a-nutshell-eaf8c18212f0 46 https://medium.com/@julian.harris/stochastic-gradient-descent-in-plain-english-9e6c10cdba97

  47. Dropout Test Train 47 https://stats.stackexchange.com/questions/201569/difference-between-dropout-and-dropconnect

  48. De Deep Fingerprinting DF DF Model AW AWF M Model ~3X deeper (O (Our) r) (Ri Rimmer et et al. al.) 48

  49. De Deep Fingerprinting Ex Experimental Ev Evaluation • No Non-def defended ended Dat atas aset et 49

  50. De Deep Fingerprinting Ex Experimental Ev Evaluation • Wal Walkie-Ta Talkie • 31% Bandwidth, 34% Latency Theoretical Maximum Accuracy 50

  51. De Deep Fingerprinting Ex Experimental Ev Evaluation • WT WTF-PAD PAD • 64% Bandwidth, 0% Latency 51

  52. De Deep Fingerprinting Wa Walkie-Ta Talkie: Discussion • At At most st 50% accu ccura racy cy in cl close sed worl rld • To Top-N N prediction Re Real Site Deco coy y Site DF DF: Top-2 2 pr predi ediction on à 98. 98.44 44 Accur urac acy 52

  53. Conclusion 53

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

KIM WRIGHT KIM WRIGHT KIM WRIGHT KIM WRIGHT Corporate Director, Community Services, London

KIM WRIGHT KIM WRIGHT KIM WRIGHT KIM WRIGHT Corporate Director, Community Services, London

KIM WRIGHT KIM WRIGHT KIM WRIGHT KIM WRIGHT Corporate Director, Community Services, London Borough of Hackney &amp; Co-chair ADASS Equalities &amp; Diversity Group STATUTORY RESPONSIBILITIES OF DASS INCLUDE: Accountability for assessing

227 views • 8 slides
INFORMA Stephen A. Carter, Group Chief Executive Gareth Wright, Group Finance Director Questions

INFORMA Stephen A. Carter, Group Chief Executive Gareth Wright, Group Finance Director Questions

Informa Half Year Results Presentation 25th July 2018 ...... INFORMA Stephen A. Carter, Group Chief Executive Gareth Wright, Group Finance Director Questions From Ian Whittaker, Liberum Capital Matthew Walker, Credit Suisse Adam Berlin, UBS

389 views • 23 slides
Wien-Bridge Theremin Joseph Ballerini Matthew Newberg Jason Wright Overview A theremin is

Wien-Bridge Theremin Joseph Ballerini Matthew Newberg Jason Wright Overview A theremin is

Wien-Bridge Theremin Joseph Ballerini Matthew Newberg Jason Wright Overview A theremin is an early electronic musical instrument invented by Russian inventor Lon Theremin in 1928. The performer moves his or her hands next to

252 views • 13 slides
Projection Mapping Application Kevin Wright Kevin Moule 2 Who we are Kevin Wright

Projection Mapping Application Kevin Wright Kevin Moule 2 Who we are Kevin Wright

Designing a Self-Calibrating Pipeline for Projection Mapping Application Kevin Wright Kevin Moule 2 Who we are Kevin Wright Director of the Application Software group at Christie responsible for developing video control and display

492 views • 31 slides
Organic Photovoltaics: A Technology Overview Matthew Wright Content Part 1: Organic Photovoltaics

Organic Photovoltaics: A Technology Overview Matthew Wright Content Part 1: Organic Photovoltaics

Organic Photovoltaics: A Technology Overview Matthew Wright Content Part 1: Organic Photovoltaics Overview Justification for OPV Demonstration of OPV deployment Current challenges faced Part 2: OPV research at UNSW Buffer

462 views • 43 slides
HOLDER WRIGHT PARK UPDATED PLAN PRESENTATION AUGUST, 25 2016 HOLDER WRIGHT PARK - INTRODUCTION

HOLDER WRIGHT PARK UPDATED PLAN PRESENTATION AUGUST, 25 2016 HOLDER WRIGHT PARK - INTRODUCTION

HOLDER WRIGHT PARK UPDATED PLAN PRESENTATION AUGUST, 25 2016 HOLDER WRIGHT PARK - INTRODUCTION VICINITY MAP One mile northeast of the historic district center. Scioto River is just to the west. Scenic Wrights Run Creek runs

527 views • 16 slides
Medication Deprescribing Matthew A. Clark, MD, FAAP , FACP Clinical Director Ute Mountain Ute

Medication Deprescribing Matthew A. Clark, MD, FAAP , FACP Clinical Director Ute Mountain Ute

Medication Deprescribing Matthew A. Clark, MD, FAAP , FACP Clinical Director Ute Mountain Ute Health Center NPTC PTC: Rai aising g the heal alth o of A American an Indi dian ans an and A d Alas aska N a Nat atives b by i

1.41k views • 62 slides
Go Green with OZZI and CBORD Presented By: Sue Chaffee, CBORD Tom Wright, OZZI Whos On The

Go Green with OZZI and CBORD Presented By: Sue Chaffee, CBORD Tom Wright, OZZI Whos On The

Go Green with OZZI and CBORD Presented By: Sue Chaffee, CBORD Tom Wright, OZZI Whos On The Line? Tom Wright Sheri Pape Sue Chaffee OZZI CBORD CBORD Associate Director Higher Education Director of Product Business Services Marketing

568 views • 18 slides
Mark Wright, OD Playing the Game to Win Mark R. Wright, OD, FCOVD optometrybusiness.com 2

Mark Wright, OD Playing the Game to Win Mark R. Wright, OD, FCOVD optometrybusiness.com 2

CEO: The Practice Management Center optometrymatch.com President: Pathways to Success mwright@pathways-o.com Professional Editor: Review of Optometric Business reviewob.com Author: Coding, Reimbursement and Contracting

689 views • 48 slides
12/9/2014 Tracy L. Brewer, DNP, RNC-OB, CLC Associate Professor, DNP Program Director Wright

12/9/2014 Tracy L. Brewer, DNP, RNC-OB, CLC Associate Professor, DNP Program Director Wright

12/9/2014 Tracy L. Brewer, DNP, RNC-OB, CLC Associate Professor, DNP Program Director Wright State University, College of Nursing and Health Margie Collins, BSN, RN Kettering Physicians Network , Southwest Cardiology Define synthetic

223 views • 10 slides
CT Angiography: The test of the future-NOW. Harvey S. Hahn, MD, FACC Director, Cardiovascular

CT Angiography: The test of the future-NOW. Harvey S. Hahn, MD, FACC Director, Cardiovascular

CT Angiography: The test of the future-NOW. Harvey S. Hahn, MD, FACC Director, Cardiovascular Fellowship Training Program Director, Non-invasive Lab Kettering Medical Center Associate Professor of Medicine Wright State Univ &amp; Loma Linda

1.14k views • 102 slides
ITECH Discussion of COVID-19: April 6, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD

ITECH Discussion of COVID-19: April 6, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD

University of Washington Public Health Capacity Building Center ITECH Discussion of COVID-19: April 6, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD Program Professor of Medicine, University of Washington Faculty, I-TECH Last Updated:

155 views • 12 slides
ITECH Discussion of COVID-19: April 20, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD

ITECH Discussion of COVID-19: April 20, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD

University of Washington Public Health Capacity Building Center ITECH Discussion of COVID-19: April 20, 2020 Matthew Golden, MD, MPH Director, PHSKC HIV/STD Program Professor of Medicine, University of Washington Faculty, I-TECH Last

138 views • 9 slides
Neuroscience David E. Wright, Ph.D. Director, Office of Research Integrity OASH/DHHS

Neuroscience David E. Wright, Ph.D. Director, Office of Research Integrity OASH/DHHS

Research Integrity in Neuroscience David E. Wright, Ph.D. Director, Office of Research Integrity OASH/DHHS David.Wright@hhs.gov ORIs Mission Mission: To promote the integrity of PHS-supported extramural and intramural research programs by

308 views • 13 slides
in a G&amp;T Coop Andrew Wright, CTO November 7, 2014 -dimension solutions G&amp;T Coop

in a G&amp;T Coop Andrew Wright, CTO November 7, 2014 -dimension solutions G&amp;T Coop

Experience with Implementing Cybersecurity in a G&amp;T Coop Andrew Wright, CTO November 7, 2014 -dimension solutions G&amp;T Coop 1 Primary Control Center 2000 MW combined peak load 1 Backup Control Center residential

414 views • 30 slides
Flood Research Center By Richard Wright How can architects respond to a inland flood research

Flood Research Center By Richard Wright How can architects respond to a inland flood research

Flood Research Center By Richard Wright How can architects respond to a inland flood research center in extreme flood plains through solutions in nature? Abstract This project will outline research into the flood prevention methods in nature

363 views • 35 slides
Data Breaches: Measurement Efforts and Issues Chris Walsh chris@cwalsh.org ChoicePoint as

Data Breaches: Measurement Efforts and Issues Chris Walsh chris@cwalsh.org ChoicePoint as

Data Breaches: Measurement Efforts and Issues Chris Walsh chris@cwalsh.org ChoicePoint as Impetus Breach Law Passage Dates 8 6 Num States Breach focused attention, 4 spurred legislative action 2 But, what can we actually 0 measure,

647 views • 16 slides
investigation Hackito Ergo Sum 2015 Paul Rascagneres &amp; Sebastien Larinier Complex malware

investigation Hackito Ergo Sum 2015 Paul Rascagneres &amp; Sebastien Larinier Complex malware

Complex malware &amp; forensic investigation Hackito Ergo Sum 2015 Paul Rascagneres &amp; Sebastien Larinier Complex malware &amp; forensics investigation | about us Me: Paul Rascagnres Twitter account: @r00tbsd Senior threat researcher

442 views • 43 slides
Understanding and preventing common attacks Romain Wartel 7th March 2010, ISGC Security

Understanding and preventing common attacks Romain Wartel 7th March 2010, ISGC Security

WLCG Group Understanding and preventing common attacks Romain Wartel 7th March 2010, ISGC Security Workshop, Taiwan. 1 Overview Underground market The main motive behind most security attacks: money. 3 Exposure and motivation Grids

434 views • 25 slides
Attack Patterns Recognition Framework Noor-ul-hassan Shirazi, Alberto Schaeffer-Filho and David

Attack Patterns Recognition Framework Noor-ul-hassan Shirazi, Alberto Schaeffer-Filho and David

Attack Patterns Recognition Framework Noor-ul-hassan Shirazi, Alberto Schaeffer-Filho and David Hutchison Lancaster University MSN2012:The Multi Service Networks Workshop Coseners House, Abingdon, Oxfordshire, UK 12-13 July 2012 1

348 views • 17 slides
Intrusion Detection Cyber Security Spring 2010 Reading material Chapter 25 from Computer

Intrusion Detection Cyber Security Spring 2010 Reading material Chapter 25 from Computer

Intrusion Detection Cyber Security Spring 2010 Reading material Chapter 25 from Computer Security, Matt Bishop Snort http://snort.org Distributed IDS DShield http://dshield.org Dark address space

590 views • 21 slides
Scrutinizing a Country using Passive DNS and Picviz or how to analyze big dataset without loosing

Scrutinizing a Country using Passive DNS and Picviz or how to analyze big dataset without loosing

Scrutinizing a Country using Passive DNS and Picviz or how to analyze big dataset without loosing your mind Sebastien Tricaud, Alexandre Dulaunoy March 10, 2012 Disclaimer Passive DNS is a technique to collect only valid answers from

772 views • 38 slides
Hot or Not: Fingerprinting hosts through clock skew ^ c = 95, min s ^ ( t ) = 0.11, max s ^ ( t

Hot or Not: Fingerprinting hosts through clock skew ^ c = 95, min s ^ ( t ) = 0.11, max s ^ ( t

Hot or Not: Fingerprinting hosts through clock skew ^ c = 95, min s ^ ( t ) = 0.11, max s ^ ( t ) = 0.22 ppm s 0 39.0

699 views • 38 slides
Active 802.11 Fingerprinting: gibberish and secret handshakes to know your AP Sergey

Active 802.11 Fingerprinting: gibberish and secret handshakes to know your AP Sergey

Active 802.11 Fingerprinting: gibberish and secret handshakes to know your AP Sergey Bratus, Cory Cornelius, Daniel Peebles Dartmouth College Shmoocon 2008 This talk in 5 minutes (1) How it started? TC7, Johnny Cache:

426 views • 23 slides

More recommend