Emerging NCSA Security RD NSF Cyber Security Summit
Emerging NCSA Security R&D NSF Cyber. Security Summit September 28 th, 2004 Von Welch vwelch@ncsa. uiuc. edu Sep 27, 2004 NCSA Emerging Security R&D
About this presentation • Overview of a number of technologies being developed by a number of groups at NCSA • Seeking to find consumers, foster communication and collaboration • Purpose is to give quick overview of each project to spur interest • Please contact myself or project lead/PI listed for a given project for more information Sep 27, 2004 NCSA Emerging Security R&D 2
• National Center for Advanced Secure Systems Research • ONR-funded multi-organization security R&D center led by NCSA • Partners include University of Illinois at Urbana-Champaign, Battelle Pacific Northwest Division, Info. Assure Inc. , the University of Tennessee, and the Naval Postgraduate School • http: //www. ncassr. org Sep 27, 2004 NCSA Emerging Security R&D 3
Security R&D Projects • ONR-funded Technology Research Education Commercialization Center • http: //www. trecc. org Sep 27, 2004 • NSF Middleware Initiative • http: //www. nsfmiddleware. org/ NCSA Emerging Security R&D 4
MAIDS: Mining Alarming Incidents in Data Streams Datamining applied to streams MAIDS is aimed to: • • • Discover changes, trends and evolution characteristics in data streams Construct clusters and classification models from data streams Explore frequent patterns and similarities among data streams MAIDS is being applied to NCSA’s network flow data in order to be trained to automatically detect incidents Contact: Michael Welge welge@ncsa. uiuc. edu Sep 27, 2004 NCSA Emerging Security R&D 5
SIFT • Security Incident Fusion Tool (SIFT) • Framework and tools for combination of flow and log data from multiple sources and coherent visualization • Software available from: http: //www. ncassr. org/projects/sift/ • Contact: Bill Yurcik (yurcik@ncsa. uiuc. edu) Sep 27, 2004 NCSA Emerging Security R&D 6
SELS: A Secure Email List Service Contact: Himanshu Khurana hkhurana@ncsa. uiuc. edu • Mail List Security – Confidentiality: Solution using proxy encryption techniques whereby the plaintext is not exposed at list server; instead, list server simply transforms encrypted messages – Integrity and authentication: Solution using digital signatures where certificate validation is provided by list server – Anti-spamming: Solution using digital signatures and HMACs where list server discards any message not sent by a valid subscriber • Prototype (Java) – Email client plugins for Java. Mail and Eudora currently being developed – Evaluating available list server software for plugin development Sep 27, 2004 NCSA Emerging Security R&D 7 Himanshu Khurana
My. Proxy: Grid Credential Management • Stores Grid X. 509 credentials • Retrieval through SASL/PAM allows for authentication via OTP, password, Kerberos • Allows bridging between authentication domains • Contact: Jim Basney My. Proxy OTP, Krb 5, Password X. 509 Grid Credential (jbasney@ncsa. uiuc. edu) Sep 27, 2004 NCSA Emerging Security R&D 8
Grid-Shib: Grid-Shibboleth Integration • Integration of Internet 2’s Shibboleth with Globus Toolkit • Funded by NSF NMI program • Allow for use of Shibboleth-served attributes in Grid authorization – Allow leveraging of Shibboleth software and deployments to support Grids – Utilizing Web Services security standards (SAML) • Contact: Von Welch (vwelch@ncsa. uiuc. edu) Sep 27, 2004 NCSA Emerging Security R&D 9
Other activities • Software-defined radio policy enforcement – Von Welch (vwelch@ncsa. uiuc. edu) • Security Middleware for sensors – Himanshu Khurana (hkurana@ncsa. uiuc. edu) • Secure Grid Laboratory – Testbed for deployment and testing – Randy Butler (rbutler@ncsa. uiuc. edu) Sep 27, 2004 NCSA Emerging Security R&D 10
For more information • http: //www. ncassr. org • Or contact me for routing – vwelch@ncsa. uiuc. edu Sep 27, 2004 NCSA Emerging Security R&D 11
- Slides: 11