|
T - 1
Real-Time Intrusion Detection with Emphasis on
Insider Attacks
Tuesday, October 8
9:00am - 12:00pm
Presenters:
Shambhu Upadhyaya
Associate Professor
State University of New York at Buffalo
Kevin
A. Kwiat
Senior Computer Engineer
Information Directorate
U.S. Air Force Research Laboratory
Abstract:
Intrusion
detection is an important yet a very hard problem to
solve. This concept has emerged because it is
impossible to close all security loopholes in a
computer system despite sound intrusion avoidance
techniques such as encryption and firewalls.
Currently there are close to 100 commercial tools
and research prototypes for intrusion detection.
These can be largely classified as either misuse or
anomaly detection systems. While misuse detection
looks for specific signs by comparing the current
activity against a database of known activity,
anomaly detection works by generating a reference
line based on the system model and signaling
significant deviations from it as intrusions. Both
approaches rely on audit trails which can be very
huge. Moreover, conventionally they are off-line and
offer little in terms of strong deterrence in the
face of attacks.
In this tutorial,
we will examine the intrusion detection tools and
techniques from a taxonomical point of view and
study the real-time properties and applicability to
real systems and their shortcomings. Following the
overview, we will present our own cost-based
framework which quantifies and handles both misuse
and anomalies in a unified way. Decisions regarding
intrusions are seldom binary and we have developed a
reasoning framework that performs decision-making on
a more informed basis. The overall reference graph
is based on the user's profile and the intent
obtained at the beginning of a session. The
uniqueness of each user's activity helps identify
and arrest attempts by intruders to masquerade as
genuine users, which is typically the case in
insider attacks.
About the
Presenters:
Shambhu Upadhyaya:
Shambhu J. Upadhyaya is an Associate Professor of
Computer Science and Engineering at the State
University of New York at Buffalo. His research
interests are information assurance, computer
security, fault diagnosis, fault tolerant
computing,and VLSI Testing. He is the director of
the Center of Academic Excellence in Information
Assurance Education at Buffalo, accredited recently
by the National Security Agency (http://www.cse.buffalo.edu/caeiae).
His research on security has been funded by AFOSR,
AFRL and Telcordia Technologies. He is an Associate
Editor of IEEE Transactions on Computers and is a
senior member of IEEE.
Kevin A. Kwiat:
As a senior computer engineer with the Information
Directorate of the U.S. Air Force Research
Laboratory, Kevin Kwiat is pursuing solutions to
information assurance problems. He received the BS
in computer science, the BA in mathematics, the MS
in computer engineering and the Ph.D. in computer
engineering all from Syracuse University. He is an
adjunct professor of computer science at the State
University of New York Institute of Technology at
Utica/Rome, an adjunct professor of mathematics at
Utica College of Syracuse University, a lecturer in
computer science at Hamilton College, a visiting
scientist for the Information Assurance Institute at
Cornell University, and a holder of 2 patents.
Back to Top
T - 2
OFDM for Broadband
Wireless Communications
Tuesday, October 8
2:00pm - 5:00pm
Presenter:
Gordon Stuber
Title/Rank: Joseph M. Pettit Chair Professor
Affiliation/Organization: Georgia Institute of
Technology
Abstract:
While third
generation wireless systems based on code division
multiple access (CDMA) will see commercial
deployments within the next year, orthogonal
frequency division multiplexing (OFDM) is a leading
candidate for fourth generation wireless multimedia
systems. OFDM has already been standardized in
IEEE802.11a and ETSI/BRAN HiperLAN/2, and is
currently being considered in IEEE802.16 for
licensed fixed wireless access, in IEEE802.15 for
personal area networks, and by other working groups.
In this seminar, we present the basic principles of
OFDM, highlight the critical transmission
impairments that are typically encountered in OFDM
systems, and discuss solutions for these
impairments. A significant portion of this tutorial
will be devoted to synchronization and channel
estimation in MIMO OFDM systems. Advanced Turbo
coding techniques for OFDM will be considered.
Topics include
the following:
-
BASIC OFDM
CONCEPTS AND PRINCIPLES
-
MIMO OFDM
SYSTEMS
-
OFDM
IMPAIRMENTS AND SOLUTIONS
-
TIMING ERRORS
-
FREQUENCY
OFFSET AND DOPPLER
-
RESIDUAL ISI
-
PAPR REDUCTION
-
SYNCHRONIZATION
AND CHANNEL ESTIMATION
-
TURBO CODING
TECHNIQUES
About the
Presenter:
Gordon L. Stüber
received the B.A.Sc. and Ph.D. degrees in Electrical
Engineering from
the University of Waterloo, Ontario, Canada, in 1982
and 1986, respectively. Since 1986, he has been with
the School of Electrical and Computer Engineering,
Georgia Institute of Technology, where he is
currently the Joseph M. Pettit Chair Professor in
Communications.
Dr. Stüber's
research interests are in wireless communications
and communication signal processing. He has over
160 refereed publications in books, journals and
conferences in these areas. He was co-recipient of
the Jack Neubauer Memorial Award for the best paper
of the year published by the IEEE Vehicular
Technology Society on the subject of Vehicular
Technology Systems. He is author of the textbook
“Principles of Mobile Communication”, Kluwer
Academic Publishers, 1996, 2001.
Dr. Stüber served
as Technical Program Chair for the 1996 IEEE
Vehicular Technology Conference (VTC'96), and
Technical Program Chair for the 1998 IEEE
International Conference on Communications,
(ICC'98), and General Chair of the Fifth IEEE
Workshop on Multimedia, Multiaccess and Teletraffic
for Wireless Communications (MMT'00). He is a past
Editor for Spread Spectrum with the IEEE
Transactions on Communications (1993-1998). He is
currently a member of the IEEE Communication Society
Awards Committee, a member of the IEEE Vehicular
Technology Society Board of Governors, General Chair
of the 2002 IEEE Communication Theory Workshop, and
General Chair of the Fifth YRP/CRL International
Symposium Wireless Personal Multimedia
Communications (WPMC'02). He is a Fellow of the
IEEE.
Back to Top
T - 3
Global Communications Grid Architecture
Wednesday, October
9
9:00am
- 12:00pm
Presenter:
Brian E. White
Title/Rank: Global Grid Architecture Project Leader
Affiliation/Organization: The
MITRE Corporation
Abstract:
The Global Grid (GG) will be defined as the
communications and networking infrastructure of
DoD's Global Information Grid (GIG). The GG vision
and architectural tenets will be presented. A
layered architectural approach towards achieving the
GG will be explained. The layering of protocols,
communications functions, management functions, and
security functions will be treated. The core
protocol set for migrating towards the GG will be
defined. Examples of military communications systems
that are applying GG principles will be summarized.
About the
Presenter:
Dr.
Brian E. White is Project Leader of Global Grid
Architecture at MITRE Corporation, Bedford,
Massachusetts. In that role during the past three
years, he has led several dozen staff members in
furthering layered architecture concepts towards
realizing a vision for interoperable military
communications. This vision is based on several
architectural tenets including a common networking
protocol, namely, the Internet Protocol (IP), for
achieving connectivity. The goal is to create a
military internet that not only takes advantage of
commercial technology but also introduces
capabilities not yet available from the Internet,
such as quality of service, precedence-based
routing, mobile routing, security functions,
information assurance, etc., to the degree required
by the military. His Global (Communications) Grid (GG)
tutorial will cover selected aspects of this
endeavor, including fundamentals of layered
architecture, core protocols for the GG, IPv4 vs.
IPv6, how one can become compatible with the GG,
adaptive communication links, and sample roadmaps
for improving interoperable communications within
the military.
Dr.
White received Ph.D. and MS degrees in Computer
Sciences from the University of Wisconsin.
Previously he attended M.I.T. where he earned SM and
SB degrees in Electrical Engineering. After serving
in the Air Force as an Intelligence Officer, he
joined M.I.T. Lincoln Laboratory and worked
primarily on modulation and coding for satellite and
submarine communication systems. Having just
completed twenty years at MITRE, Dr. White has held
a variety of senior staff and project/resource
management positions in satellite communications,
anti-jam radio systems, air traffic management, and
communication architecture. In the early 80s, he
also spent five years as a principal at Signatron,
Inc., concentrating on communication and software
system development.
Teaching has always been an interest of Dr. White.
His teaching experience includes undergraduate and
graduate level courses as an adjunct professor at
Northeastern University, Worcester Polytechnic
Institute, and the University of Lowell
(Massachusetts). In addition he has lectured in
courses presented by the MITRE Institute, an
in-house organization that conducts continuing
education programs. Dr. White is a very experienced
speaker, having prepared and delivered many
briefings and conference papers during his career.
He also has published many journal articles and
conference papers, and numerous company reports.
Dr.
White’s technical interests presently include
layered communication architectures and networking.
Past interests have included low-earth orbit
satellites, Monte Carlo methods, theory of
computing, mathematical programming, numerical
analysis, multiple-access techniques, satellite
communication, anti-jam radios, digital signal
processing, bandwidth/power-efficient digital
modulation and coding techniques, adaptive HF
communication, signal analysis, communications
theory, information theory, automata theory,
sequential machines, and linear systems.
Back to Top
T - 4
Active Networks: the State of the Art
Wednesday, October 9
2:00pm - 5:00pm
Presenter:
Dr. Di Fatta
Giuseppe
CERE-CNR
Abstract:
Active Networks
are packet-switched networks where software
components can be dynamically loaded and executed
into network nodes. The traditional
store-and-forward paradigm is replaced by the
store-compute-and-forward one. Active packets carry
not only data but also a method reference or even
suitable code portions that will be executed at
intermediate nodes as they are transmitted through
the network. This way, Active Networks provide a
programmable interface in network nodes to enable
the construction of new services and applications.
Active Networks envision a computational model next
to the traditional communication model. An active
network allows its users to write applications that
make use of computing and storage capabilities both
at end-systems and at intermediate nodes. It also
provides the means to inject the user code into
these nodes, thus enabling user customization of
network protocols and services.
Active Networks
have an obvious similarity with the Mobile Agents
technology. Both active packets and mobile agents
regard the network as a distributed programmable
environment, but they are different in orientation
and operation. Active packets are concerned mainly
with the customization of the packet handling
service related to a user's connection; they work
within the network on the network itself, by a
process of code movement and remote execution. On
the contrary, mobile agents usually have more
intelligence and self-directed autonomy to carry out
their function, which is more oriented towards
mobile computation, i.e. towards hosts rather than
the network infrastructure. While the Mobile Agents
approach focuses on the application level at the end
nodes, in Active Networks programmability is added
to the intermediate nodes at different layers and
different planes of the network model. Active
Networks try to overcome the difficulty of
integrating new technologies into the existing
network structure, poor performance due to redundant
operations at several protocol layers, and the
difficulty of accommodating new services in the
existing architectural model. However, several
problems arise from this new approach, such as
security, performance and interoperability.
The evolution of
computer networks towards the active network
paradigm strongly depends on the actual benefits
that can be obtained by applications, such as
network management, congestion control, routing and
multicasting, distributed multimedia streaming, wide
area caches, firewalls, resource reservation and
quality of service. In the first part the tutorial
introduces Active Networks concepts and techniques,
gives an overview of the different approaches and
presents the main projects, fora and standards. In
the second part the tutorial discusses the benefits
for the design, the implementation and the delivery
of network services and applications by means of
several examples.
Back to Top
T - 5
Wireless Network Security: How to Protect your
Network and your Data Transactions
Thursday, October 10
9:00am - 12:00pm
Presenter:
Dr. Sampalli
Srinivas
Associate Professor
Dalhousie University
Abstract:
As wireless
networks are being increasingly deployed for
business, government, military, medical, and
research applications, security stands out as a
critical issue in the design of such networks. This
has been necessitated by the fact that free-space
radio transmission in wireless networks makes
eavesdropping easy and consequently, a security
breach may result in unauthorized access,
information theft, interference, jamming and service
degradation. What makes it worse is that the sender
and the intended receiver have little means of
knowing whether the transmission has been
intercepted or not, so the intrusion is virtually
undetectable. While security for wireline networks
have matured in both research and commercial
environments, the design and deployment of security
in wireless networks is relatively still an evolving
field. Thus, the overall understanding of security
solutions for wireless networks will be of
tremendous importance and significance not only to
the research community but also to the wireless
industry community.
The objective of
this tutorial is to present a comprehensive coverage
of the theory, concepts, design principles and
technologies for wireless network security. The
tutorial focuses on the design principles and
techniques of two major aspects of wireless network
security: (a) how to secure your wireless network;
and (b) how to secure your data transactions. Upon
completion of this course, participants will be able
to identify security threats specific to wireless
networks, understand access control of wireless
networks using firewalls, gain knowledge of the
latest encryption, authentication and certification
methods and protocols for wireless network security,
design wireless virtual private networks with IPSec,
evaluate the security (and insecurity) in IEEE
802.11 networks, compare different wireless network
security products, and get an insight into secure
grid computing with wireless networks.
TOPICS
-
The broad
outline of topics covered in the tutorial are as
follows:
-
How big are the
security issues in wireless networks?
-
Wireless
network security threats and attack types
-
Protecting the
wireless network: access control and gateway
firewalls for wireless networks
-
Protecting the
wireless transactions: cryptographic techniques
-
Biometric ID
systems for wireless networks
-
IEEE 802.11
security issues
-
WTLS, WEP and
their shortcomings
-
Wireless
Virtual Private Networks (VPNs)
-
IPSec-based
wireless VPNs
-
Comparison of
commercial wireless network security products
-
High Speed
Wireless Networks
-
Secure grid
computing with wireless networks
-
Open issues and
research problems in wireless network security
WHO SHOULD ATTEND
-
Research
Professionals in Networking and Communications
-
Designers,
Architects, Developers or Managers of Networks
-
System
administrators
-
Telecommunications engineers
About the
Presenter:
Dr. Sampalli (“Srini”)
Srinivas is an Associate Professor in the Faculty of
Computer Science at Dalhousie University, Halifax,
Nova Scotia, Canada. He has been actively teaching
various courses in networking both within the
Faculty as well as in the Master of Engineering in
Internet working program. He is the Dalhousie
principal investigator for the Secure Active VPN
Environment (SAVE) project sponsored by the Canadian
Institute for Telecommunications Research (CITR), a
National Center for Excellence. Dr. Srinivas has
received many teaching awards, including the
Dalhousie Faculty of Science Award for Teaching
Excellence, Dalhousie Alumni Award for Excellence in
Teaching, and the Association of Atlantic
Universities Distinguished Teacher Award. In
recognition of his teaching excellence, the
Dalhousie students’ Computer Science Society has
instituted a teaching award in his name– the Srini
Award for Teaching Excellence – at the Faculty of
Computer Science at the University.
Back to Top
T - 6
Adaptive Data Modulation Methods for Wireless Data
Communication
Thursday, October 10
2:00pm - 5:00pm
Presenter:
LTC Pauli Lallo
Signals School
Abstract:
This paper
presents the principles of the adaptive modulation
methods. The adaptive modulation is needed in
wireless data communication for the optimal use of
the wireless or wired communication channels. We
discuss here the problems in planning of networks on
the move(OTM). First we define the concept of the
adaptive data modulation, which is optimized to the
bandwidth and other transmission parameters of the
channel. We make a survey of the development of
software radio data modem and digital modulation
methods for data communication. Then we compare the
error performance of the present digital modulation
methods with the adaptive modulation method. We use
bit error calculations to show the performance with
different modulation methods. After exact
theoretical calculations we compare these results
with the results of data communication models in the
simulated multi-path and interference environment.
We introduce a new design principles for the present
tactical military radio and data or voice networks,
the use of the adaptive data communication and its
base-band modulation method. Our presentation will
summarize the following issues, which are necessary
in the design of wireless or wired data
communications:
Case 1:
Propagation modeling and simulation.
Case 2:
Evaluation of best data modulation methods for
different channels.
Case 3:
Multi-path and interference performance planning
with adaptive data waveforms
Example 1:
Interface between analog and digital
communication network topology.
Example 2. Data
transmission capacity and throughput of channels
using present and adaptive modulation methods.
The paper is
based on the experience and know-how of over 30
years work in Finland both in the area of public
telecommunication networks and military signals
service.
Back to Top
|
Sponsored by: 