Upload File

cybersecurity for science

23
Cybersecurity for Science Von Welch Director, CACR SC14 November 18 th , 2014

Upload: von-welch

Post on 17-Jul-2015

162 views

Category:

Technology


0 download

Report

Tags:

TRANSCRIPT

Page 1: Cybersecurity for Science

Cybersecurity for Science

Von WelchDirector, CACR

SC14November 18th, 2014

Page 2: Cybersecurity for Science

I love Cyberinfrastructure…

November 18th, 2014Cybersecurity for Science: SC14

HPC HTC

ScienceGateways

Big Data

DistributedEverything

Bleeding-edgeNetworks

Page 3: Cybersecurity for Science

I Hate the Perception of Cybersecurity…

November 18th, 2014Cybersecurity for Science: SC14

HPC HTC

ScienceGateways

Big Data

DistributedEverything

InternationalUser

Communities

Page 4: Cybersecurity for Science

Cybersecurity is an Enabler of Cyberinfrastructure and Science

November 18th, 2014Cybersecurity for Science: SC14

Page 5: Cybersecurity for Science

Why Cybersecurity Matters to Science…

November 18th, 2014Cybersecurity for Science: SC14

Page 6: Cybersecurity for Science

Trustworthy Science

Maintaining the trust of scientists and the public in the CI, data and science is critical.

Bias: Scientists have been managing the ultimate insider threat for a long time.

Cybersecurity deals with increasing threats to trustworthy computational science.

November 18th, 2014Cybersecurity for Science: SC14

Page 7: Cybersecurity for Science

Do no harm

CI represents some impressive cyber-

facilities.

Being used as a tool to do harm to others would be potentially very damaging

to CI’s reputation.

November 18th, 2014Cybersecurity for Science: SC14

Page 8: Cybersecurity for Science

Collaboration

November 18th, 2014Cybersecurity for Science: SC14

Page 9: Cybersecurity for Science

Identity matters to Science…

Scott Koranda/LIGO - Oct’11

November 18th, 2014Cybersecurity for Science: SC14

Page 10: Cybersecurity for Science

Specific Concerns

Many science domains, communities, and projects will have

particular concerns.

The risks related to confidentiality, integrity, and

availability vary greatly.

November 18th, 2014Cybersecurity for Science: SC14

Page 11: Cybersecurity for Science

why is cybersecurity for science hard?

November 18th, 2014Cybersecurity for Science: SC14

Page 12: Cybersecurity for Science

November 18th, 2014Cybersecurity for Science: SC14

Science / CyberinfrastructureScience / Cyberinfrastructure

Scientific CommunityScientific Community

Multiple Universities

and/or Research

Orgs

Multiple Universities

and/or Research

Orgs

Regional R&E and

Commercial Services

Regional R&E and

Commercial Services

Open Source and Scientific Software

Open Source and Scientific Software

R&E Networks

R&E Networks …Services,

Risks, Policies,

Requirements, Risks

Page 13: Cybersecurity for Science

Science pushes IT hard!

November 18th, 2014Cybersecurity for Science: SC14

HPC HTC

ScienceGateways

Big Data

DistributedEverything

Bleeding-edgeNetworks

Page 14: Cybersecurity for Science

Handling things going wrong at speed….

November 18th, 2014Cybersecurity for Science: SC14

Page 15: Cybersecurity for Science

Cybersecurity Historically

Firewalls, IDS, encryption, logs, passwords, etc.

November 18th, 2014Cybersecurity for Science: SC14

Page 16: Cybersecurity for Science

Contemporary Cybersecurity

Cybersecurity supports the

science mission by managing

risks to science.

November 18th, 2014Cybersecurity for Science: SC14

Page 17: Cybersecurity for Science

November 18th, 2014Cybersecurity for Science: SC14

So, what amI doing aboutthe weather?

Page 18: Cybersecurity for Science

TrustedCI.org:Center for Trustworthy Scientific Cyberinfrastructure

Providing leadership and addressing cybersecurity challenges for the NSF community.

November 18th, 2014Cybersecurity for Science: SC14

Page 19: Cybersecurity for Science

We rely increasingly on our software stacks – both

the ones we write and others.

Open nature leads to large attack surfaces.

Software integrity is critical.

A joint effort: Morgridge Institute for

Research (lead)University of Illinois Urbana Champaign

University of Wisconsin – Madison

Indiana University

November 18th, 2014Cybersecurity for Science: SC14

Miron Livny, MIR

Jim Basney, UIUC

Bart Miller, UW

Von Welch, IU

https://continuousassurance.org/

Page 20: Cybersecurity for Science

XSIM: Extreme Scale Identity Management for Science

The Virtual Organization (VO) is critical to science.

XSIM model enables delegation of identity management from resource provider to VO.

Funded by DOE/ASCR

November 18th, 2014Cybersecurity for Science: SC14

Image credit: Ian Bird/CERN

Page 21: Cybersecurity for Science

Fighting “Identity Management in a closet”

Managing access to data, instruments, etc.

Authenticating collaborators/community is hard.

Effort drawn away from science.

Enabling use of campus identities.

November 18th, 2014Cybersecurity for Science: SC14

Page 22: Cybersecurity for Science

Cybersecurity is an enabler

Science and cyberinfrastructure are pushing IT to new heights.

Cybersecurity helps us manage the risks, maintain trust, build collaborations, and do the science most effectively.

November 18th, 2014Cybersecurity for Science: SC14

Page 23: Cybersecurity for Science

Thank you.

Von Welch

[email protected]

cacr.iu.edu

November 18th, 2014Cybersecurity for Science: SC14


BSides Lisbon - Data science, machine learning and cybersecurity

Bachelor of Science, Cybersecurity

Poster: Community Engagement for Cybersecurity ......Cybersecurity Experimentation of the Future This material is based upon work supported by the National Science Foundation under

Cybersecurity Computer Science Innovations, LLC. Ethical Hacking

FDA & Medical Device Cybersecurity - HIMSS20€¦ · FDA & Medical Device Cybersecurity Closing Keynote, February 19, 2017 Suzanne B. Schwartz, M.D., MBA Associate Director for Science

The Next Wave 21.1: Building a science of cybersecurity

Cybersecurity Research Challenges Cybersecurity Summit, Crystal City, VA May 8, 2008 Jeannette M. Wing Assistant Director Computer and Information Science

Cybersecurity Dynamics - University of Texas at San Antonioshxu/socs/hotsos-poster-cybersecurity-dynamics.… · Cybersecurity Dynamics: A Foundation for the Science of Cybersecurity

Meeting the Societal Needs for Data Science and Cybersecurity Skills

Bachelor of Science in Cybersecurity Program Proposal...Bachelor of Science in Cybersecurity Program Proposal ... incident response, resiliency, and recovery policies and activities,

Master Degree in · 1 among 3 SS –Service Science EDS –Economics for Data Science CYB –Cybersecurity for data science DSIM –Digital Signal and image management TIDS –Technological

master of science in cybersecurity - Saint Leo University and Events/2018... · demand for cybersecurity specialists. These information security practitioners are trained to protect

TNW 19 2 Blueprint for a science of cybersecurity

Bachelor of Science in Computer Science and Cybersecurity...The BS in Computer Science and Cybersecurity degree offered at the Fred DeMatteis School of Engineering and Applied Science

Online Master of Science in Cybersecurity · 2020. 7. 15. · Welcome to the Online Master of Science in Cybersecurity program for Fall 2020. We’re excited you’re joining the

Cybersecurity Data Science (CSDS) - Carnegie Mellon University

Using Data Science for Cybersecurity

Program Guidebook - Western Governors UniversityProgram Guidebook Bachelor of Science, Cybersecurity and Information Assurance To meet an increasing demand for cybersecurity professionals,

Master of Science in Cybersecurity Risk and Strategy

Guide to Developing Cybersecurity Programs for NSF Science ... · Overview & Purpose Using This Guide 1 The Process: Establishing and Maintaining a Program 1.1 Establishing a Cybersecurity

CYBERSECURITY AT UMBCbinsheffield2017/wp-content/... · 2017-11-08 · Cybersecurity Curriculum Considerations • A competent practitioner needs basic computer science and information

CSCSS Science of Security - Developing Scientific Foundations for the Operational Cybersecurity Ecosystem

Online Master of Science in Cybersecurity

Cybersecurity for Nonprofits39lm5827fzpu40ze7s2y2ses-wpengine.netdna-ssl.com/... · Cybersecurity for Nonprofits Cybersecurity for Nonprofits Presenters: Karen Ibach and David Herman

Critical Cybersecurity Questions Cybersecurity... · Critical Cybersecurity Questions 1 • How do you measure successful cybersecurity efforts? • Who is accountable for cybersecurity?

National Science Foundation Funding Opportunities …cyberexpo.memphis.edu/2014/presentations/Corby_Hovis.pdf · National Science Foundation Funding Opportunities for Cybersecurity

North Dakota Computer Science and Cybersecurity Standards … · 2019-08-06 · North Dakota Computer Science and Cybersecurity Standards . Kindergarten through Twelfth Grade . 2019

MASTER OF SCIENCE IN CYBERSECURITY MANAGEMENT · certifications, have significant industry experience, ... Master of Science in Cybersecurity Management CURRICULUM ... 6 Source: Center

Master of Science in Cybersecurity Risk and Strategy · cybersecurity-strategy-masters.nyu.edu for more information. 2) Submit an optional preliminary application form to see if this

Cybersecurity for Cyberinfrastructure… and Science!

Developing a blueprint for a science of cybersecurity

Understanding and auditing Cybersecurity: Challenges for ...aab.al/.../Understanding-and-auditing-Cybersecurity... · Understanding and auditing Cybersecurity: Challenges for auditors

CYBERSECURITY FOR MANUFACTURERS - CRA · cybersecurity for manufacturers i This material is based upon work supported by the National Science Foundation under Grant No. 1552534 through

Doctrine for Cybersecurity - NIST · 2018. 9. 27. · Doctrine for Cybersecurity Fred B. Schneider Samuel B Eckert Professor of Computer Science, Chief Scientist, NSF “TRUST”

Cybersecurity Data Science (CSDS)...2020/02/11  · 20 AI in Cybersecurity * Sikos ed., 2018 21 Malware Data Science: Attack Detection and Attribution Saxe & Sanders, 2018 22 Machine