Tuesday, November 7, 2006

PST 2006

From October 30th to November 1st, I attended a conference: Privacy, Security, Trust, in Markham. The proceedings are not online just yet, but they eventually will. Both CCECE and PST aren't online yet... that's annoying!

I presented a paper there, which went well. Security Hardening of Open-Source Software. We described an onthology based on security engineering, defined 'security hardening' and showed examples in C. There were no hard questions or anything like that.

There were a few interesting things that I saw:

Sushil Jajodia presented the fruits of his team's research in a tool named CAULDRON, which maps your network's vulnerabilities, draws attack graphs to your crown jewels, and correlates Snort information with this attack graph. Very useful for any sysadmin. I don't know if it is publicly available though.
Brian O'Higgins presented the software sold by Third Brigade. Deep packet inspection in a driver, that works with a few rules that just WORK. Looks sweet too!
The paper of Horkoff et all, "Analyzing Trust in Technology Strategies" is one of the few "Trust" papers that won't put me to sleep by the end of the first page.
Folkerts and Bischof, in "A Comparison of Reputation-based Trust Systems" come up with metrics and a framework to evaluate reputation systems. I didn't read the paper through, but it looks like a turning point in the field.
Alam et al. propose a new form of access control, Constraint-based RBAC (CRBAC), targeted to service-oriented architectures. They developed a language to specify access constraints (as far as I understand) on top of classical RBAC. It allows for partial inheritance of rights too.
Kong et al. propose protected data paths by allowing the kernel to keep a cache on the behalf of the application, so that the application is not able to access the data itself.
One of the neat things I discovered is the Quero toolbar. I installed it on IE7. Its a convenient search toolbar, and it has an integrated ad blocker. I can get the same in Firefox, but its good to know I can have it in IE too. It allows to replace the standard address bar of IE7 so that there is no visual duplication between IE7 functionality and the toolbar. I like it!
I still need to sift through many papers... will keep on updating this page as I go along
P.S. some presenters very very boring... its almost shameful.

No comments:

Post a Comment