BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Explorations of Science in Cyber Security - Greg Shannon (CERT and
  Carnegie Mellon University)
DTSTART:20121001T140000Z
DTEND:20121001T150000Z
UID:TALK40234@talks.cam.ac.uk
CONTACT:Wei Ming Khoo
DESCRIPTION:A scientific perspective on cyber security (a “science of cy
 ber security”) is growing as a sound and respected area of research.  In
  this talk we discuss how an empirical perspective enhances our understand
 ing of how to create efficiently secure cyber infrastructure.  In particul
 ar we discuss four questions that reflect “delusions” that we at the C
 ERT Program see as endemic in the practice of cyber security. \n \n# If co
 de correctness is improving\, why do exploits continue to rely on known av
 oidable programming mistakes? \n# If policies are effective\, why do unimp
 lemented or ineffective policies continue to be an enabling element of maj
 or incidents? \n# If  monitoring  provides useful situational awareness\, 
 why do so many significant intrusions remain undetected for weeks? months?
  years? \n# If proficient response capabilities exist\, why are even sophi
 sticated victims challenged to quickly and effectively investigate\, mitig
 ate and recover? \n \nWe discuss our recent work in synthetic data generat
 ion and other work at CERT that strives to take sound scientific approache
 s to understanding and solving the challenges of creating and operation ef
 ficiently secure cyber infrastructure.   \n \nSome of the publicly availab
 le cyber security information and tools from the CERT Program include: \n\
 nSecure Coding\, http://www.cert.org/secureRcoding \n\nResiliency\, http:/
 /www.cert.org/resilience \n\nCyber Training\, http://www.cert.org/work/tra
 ining.html  \n\nInsider Threats\, http://www.cert.org/insider_threat  \n\n
 Forensics\, http://www.cert.org/forensics  \n\nNetwork Monitoring\, http:/
 /tools.netsa.cert.org  \n\nFuzz Testing\, http://www.cert.org/download/bff
   \n \nAdditional information is available at www.cert.org and in the 2010
  CERT Research Report\, www.cert.org/research/2010researchRreport.pdf. 
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR