Search| Browse| Contribute
Library| Blogs| Jobs| Podcasts| Wikis| Feeds
Page Location:
Home > Browse > Cybersecurity > Security Management > Security Architecture, Presented at Cybersecurity Summit
Alternate ViewsRSS

Security Architecture, Presented at Cybersecurity Summit

Cybersecurity Research Challenges
Added by the EDUCAUSE Librarian
Title:Cybersecurity Research Challenges (ID: CYB08010)
Author(s):Jeannette Wing (National Science Foundation)
Origin:Presented at Cybersecurity Summit (05/07/2008)
Type:Presentations/Speeches
Abstract:

Today’s most prevalent and widely discussed attacks exploit code-level flaws such as buffer overruns and type-invalid input. We need to anticipate tomorrow’s attacks and think beyond buffer overruns, beyond code-level bugs, and beyond the horizon. To be ready for threats of the future, we need to be doing more basic research in cybersecurity today. This talk will outline a few suggestions for important research directions in cybersecurity: the foundations of trustworthy computing, security architectures, privacy, usability, and security metrics.

View this resource:
http://www.educause.edu/ir/library/powerpoint/CYB08010.ppsPresentation Slides
http://www.nsf.gov/events/event_summ.jsp?cntn_id=111623&org=CISENSF Posting of Jeannette M. Wing's presentation: Cybersecurity Research Challenges
[Off site]
| | | |
Login to post comments  Send to a Friend  126 reads

Newspeak: A Paradigm for Architectural Security
Added by the EDUCAUSE Librarian
Title:Newspeak: A Paradigm for Architectural Security (ID: CYB08004)
Author(s):Steve M. Bellovin (Columbia University)
Origin:Presented at Cybersecurity Summit (05/07/2008)
Type:Presentations/Speeches
Abstract:

Most computer security problems arise from buggy code. It seems clear that writing large, bug-free programs is and will remain beyond our abilities. We propose a different goal: protecting what really matters. On e-commerce sites, the web server is primarily a front end for a database. Protecting the latter is much more important than protecting the former. Doing this properly requires a different approach to overall system architecture.

View this resource:
http://www.educause.edu/ir/library/pdf/CYB08004.pdf
| |
Login to post comments  Send to a Friend  131 reads

Building More Secure Information Systems
Added by the EDUCAUSE Librarian
Title:Building More Secure Information Systems (ID: CYB0508)
Author(s):Ronald Ross
Origin:Presented at Cybersecurity Summit (12/12/2005)
Type:Presentations/Speeches
Abstract:The National Institute of Standards and Technology (NIST) is leading the development of key information security standards and guidelines as part of its Federal Information Security Management Act (FISMA) Implementation Project. This high-priority project includes the development of security categorization standards; minimum security requirements standards; and guidelines for the selection of minimum or baseline security controls for information systems, assessing the effectiveness of security control, and the security certification and accreditation of information systems. This session covers NIST publications and how they can be integrated into a comprehensive, risked-based, enterprise information security program.
View this resource:
http://www.educause.edu/ir/library/powerpoint/CYB0508.pps
| |
Login to post comments  Send to a Friend  2268 reads