Presentation is loading. Please wait.

Presentation is loading. Please wait.

DOE Cybersecurity Grassroots Roundtable: Scientific Evaluation Ingredients for Presentation to DOE/Laboratory Management Jackson Mayo February 24, 2010.

Published byHailey Stallman Modified over 9 years ago

Similar presentations

Presentation on theme: "DOE Cybersecurity Grassroots Roundtable: Scientific Evaluation Ingredients for Presentation to DOE/Laboratory Management Jackson Mayo February 24, 2010."— Presentation transcript:

1 DOE Cybersecurity Grassroots Roundtable: Scientific Evaluation Ingredients for Presentation to DOE/Laboratory Management Jackson Mayo February 24, 2010

2 What is the cyber problem? Cybersecurity is currently a practice, not a science – National cyber funding is overwhelmingly operational; little fundamental understanding That’s why we keep failing – Despite huge effort, we’re stuck playing catch-up with cyber threats Let’s make it a science and start succeeding – As in other fields, scientific foundations will ultimately transform our capabilities

3 How does the cyber problem impact DOE? DOE has critical information to protect DoD/Intel Community have inaccessible (classified) cybersecurity infrastructure NSF performs long-term theoretical (unclassified) research DOE needs to fill this gap to protect sensitive unclassified information and critical power & nuclear infrastructure

4 Why science? Why is a scientific approach needed to solve this problem? – Current approaches are reactive, and don’t address the larger problem – Breaches in information security reveal an underlying gap in understanding – Technology is evolving so quickly that without a fundamental understanding, we will never get ahead of the threat

5 Why science? Current reactive approaches – Drain unpredictable amounts of resources – Result in decisions made based on potential dead- end (incomplete) approaches – Identify only “circumstantial” truths rather than the intrinsic truths

6 Why science: Why DOE? DOE is the nationally acknowledged leading expert in modeling & simulation National benefit if DOE can use scientific methods, similar to those used to confirm the reliability of the nuclear stockpile (UQ/V&V), to make confident assertions about the cyber environment to national leaders

7 National cyber research portfolio should be diversified Short-term: Necessary operational response to current threats Medium-term: Scientific concepts to design and evaluate critical cyber infrastructure – Power grid (can be extended other critical national infrastructure such as water, etc.) – All things nuclear Long-term: Principled understanding of complex cyber systems in general

8 Tasks that DOE can accomplish Define scope of this new science Develop needed vocabulary Explore the range of scientific modes (theory to experiment) for use in cybersecurity Develop appropriate measurement tools Develop cyber-specific epistemology, axioms, etc. Develop framework for consistent design of cyber experiments

9 Recap of three questions 1. What can the community provide? – Scientific expertise in variety of disciplines to develop “science of cybersecurity” 2. How can the community benefit? – Greater credibility and confidence in analyses 3. Relevance to DOE Mission – Protect critical nuclear and power grid infrastructure – Provide assurance against future information security breaches

Download ppt "DOE Cybersecurity Grassroots Roundtable: Scientific Evaluation Ingredients for Presentation to DOE/Laboratory Management Jackson Mayo February 24, 2010."

Similar presentations

Performance Assessment

Performance Assessment
1 US activities and strategy :NSF Ron Perrott. 2 TeraGrid An instrument that delivers high-end IT resources/services –a computational facility – over.

1 US activities and strategy :NSF Ron Perrott. 2 TeraGrid An instrument that delivers high-end IT resources/services –a computational facility – over.
Tenace FRAMEWORK and NIST Cybersecurity Framework Block IDENTIFY.

Tenace FRAMEWORK and NIST Cybersecurity Framework Block IDENTIFY.
ERS Overview 5/15/12 | Page-1 Distribution Statement A – Cleared for public release by OSR, SR Case #s 12-S-0258, 0817, 1003, and 1854 apply. Affordable,

ERS Overview 5/15/12 | Page-1 Distribution Statement A – Cleared for public release by OSR, SR Case #s 12-S-0258, 0817, 1003, and 1854 apply. Affordable,
Introduction There are various theoretical concepts and skills that bioscience students need to develop in order to become effective at solving problems.

Introduction There are various theoretical concepts and skills that bioscience students need to develop in order to become effective at solving problems.
Science of Science and Innovation Policy (SciSIP) Presentation to: SBE Advisory Committee By: Dr. Kaye Husbands Fealing National Science Foundation November.

Science of Science and Innovation Policy (SciSIP) Presentation to: SBE Advisory Committee By: Dr. Kaye Husbands Fealing National Science Foundation November.
So Many Possibilities Dr. Vic MaconachyChris Inglis Capitol Technology University U. S. Naval Academy CAE Community Meeting, - Columbia, Maryland Accreditations.

So Many Possibilities Dr. Vic MaconachyChris Inglis Capitol Technology University U. S. Naval Academy CAE Community Meeting, - Columbia, Maryland Accreditations.
Secure and Trustworthy Cyberspace (SaTC) Program Sam Weber Program Director March 2012.

Secure and Trustworthy Cyberspace (SaTC) Program Sam Weber Program Director March 2012.
Principles of Patrolling Applying Ranger School Lessons to Information Security Patrick Tatro.

Principles of Patrolling Applying Ranger School Lessons to Information Security Patrick Tatro.
Chapter 6 by Nancy Staggers and Ramona Nelson

Chapter 6 by Nancy Staggers and Ramona Nelson
1 Pendahuluan Pertemuan 9 Matakuliah: H0062/Teori Sistem Tahun: 2006.

1 Pendahuluan Pertemuan 9 Matakuliah: H0062/Teori Sistem Tahun: 2006.
Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –

Identity and Access Management IAM A Preview. 2 Goal To design and implement an identity and access management (IAM) middleware infrastructure that –
Senior Review Evaluations (1 of 5) Proposals due: 6 March 2015 Panel evaluations: Week of 22 April 2015 Performance factors to be evaluated will include.

Senior Review Evaluations (1 of 5) Proposals due: 6 March 2015 Panel evaluations: Week of 22 April 2015 Performance factors to be evaluated will include.
Policy for Transforming Teaching & Learning through ICTs in South Africa Seugnet Blignaut Seugnet Blignaut

Policy for Transforming Teaching & Learning through ICTs in South Africa Seugnet Blignaut Seugnet Blignaut
Mohammad Alshayeb 19 May 2009. Agenda Update on Computer Science Program Assessment/Accreditation Work Update on Software Engineering Program Assessment/Accreditation.

Mohammad Alshayeb 19 May Agenda Update on Computer Science Program Assessment/Accreditation Work Update on Software Engineering Program Assessment/Accreditation.
Software Verification and Validation (V&V) By Roger U. Fujii Presented by Donovan Faustino.

Software Verification and Validation (V&V) By Roger U. Fujii Presented by Donovan Faustino.
Effective proposal writing Session I. Potential funding sources Government agencies (e.g. European Union Framework Program, U.S. National Science Foundation,

Effective proposal writing Session I. Potential funding sources Government agencies (e.g. European Union Framework Program, U.S. National Science Foundation,
Emergency Management & Homeland Security Interface Samuel Musa National Defense University.

Emergency Management & Homeland Security Interface Samuel Musa National Defense University.
Challenges of a Harmonized Global Safety Regime Jacques Repussard Director General IRSN IAEA 2007 Scientific Forum.

Challenges of a Harmonized Global Safety Regime Jacques Repussard Director General IRSN IAEA 2007 Scientific Forum.
Strategic Information Systems Planning

Strategic Information Systems Planning

Similar presentations

Ads by Google