Presentation is loading. Please wait.

Presentation is loading. Please wait.

Challenges in Making E-Privacy Real Larry Korba Institute for Information Technology National Research Council of Canada Panel Presentation, 6 th Annual.

Published byWhitney Webster Modified over 9 years ago

Similar presentations

Presentation on theme: "Challenges in Making E-Privacy Real Larry Korba Institute for Information Technology National Research Council of Canada Panel Presentation, 6 th Annual."— Presentation transcript:

1 Challenges in Making E-Privacy Real Larry Korba Institute for Information Technology National Research Council of Canada Panel Presentation, 6 th Annual CACR Security and Privacy Workshop November 3-4, 2005

2 Overview Background –NRC-IIT Privacy-related technologies –What we have done… –Some Challenges today. Some approaches NRC-IIT takes Conclusions

3 NRC – IIT – IS NRC –$850 million, Every Province, 20 Inst. & Programs –Scientific Research one of 7 Mandates. NRC – IIT –4 Cities, 9 Groups – Diverse Areas in IT –Information Security IT Security Research since 1996 Privacy Technology: 2000

4 Research Privacy Technology NRC has a broad mandate IT is a large area –IIT is small Next - Privacy research –IIT –Research Challenges

5 Possible Privacy Tech: Current Research Dynamic privacy & Security policy negotiation Security Intelligence –Computer Supported Collaborative Work –Inappropriate Insider Activity Trustworthy HCI for Security Applications –Biometry Protocol for Ad Hoc Wireless Privacy (Red highlighted research featured in this talk with descriptions of our prototype technology demonstrations)

6 security policy negotiation EASE: Environmentally-Aware Security Enforcement In a web service world… –User’s privacy only as good as the security of her platform Client Attacks: Trojan, worms, keystroke monitors, viruses This work… –Extends security policies from server to client platforms –Enforces security compliance at client Secure operating environment Corporate Policy Application use Copyright Works well with legacy systems

7 Secure Environment security policy negotiation EASE Client-Server Demo Available Application Server Client A Client B Client C Senses context of user operation, extends server security policy to client. Manages Authentication, Authorization, forces trojan/virus scan, prevents inappropriate applications from being installed, kills inappropriate processes Activities, (linking with security intelligence) prevents inappropriate user behavior

8 security policy negotiation EASE Screenshot from prototype

9 Ad Hoc Wireless Privacy Secure. Private, Wireless Ad Hoc Messaging Anonymous Dynamic Source Routing protocol Enable Private communications through multiple parties A Z B C D E

10 Challenges: Privacy Technology Research Knowledge-related –What’s required –What is what –What people are doing –Why Enforcement-Related –Users, Protocols, Mechanisms –Privacy with security

11 Challenges: Privacy Research in Canada Little privacy research in Canada Low receptor capacity Security Funding –Many (getting) involved, across Canada Privacy Research Funding –NSERC, CFI –(Mike is working on this)

12 Scientific/Technical Knowledge But How to make it Real? Foundational Research Prototype 1 Unknown Prototype 2 Books, Papers, Reports Outreach, Influence Research Collaborations Technology Push Industry OGD, Etc. Support/Focus Technology Pull Engineering, Marketing Users Product

13 Summary NRC-IIT Research –Some of Ours –Some Challenges Research to Impact Challenge –Research Focus –Technology Uptake Improved with industry, user involvement Tripod model helps –Influence: Support Broader Research Base Bell Collaboration –Lead-In to Mike…

14 Thank You

15

Download ppt "Challenges in Making E-Privacy Real Larry Korba Institute for Information Technology National Research Council of Canada Panel Presentation, 6 th Annual."

Similar presentations

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.

Caltech Proprietary Videoconferencing Security in VRVS 3.0 and Future Videoconferencing Security in VRVS 3.0 and Future Kun Wei California Institute of.
CWE, EC – ESA joint activities on e-collaboration Brussels, 13 April 2005 IST Call 5 Preparatory workshop.

CWE, EC – ESA joint activities on e-collaboration Brussels, 13 April 2005 IST Call 5 Preparatory workshop.
Instant Messenger Security with a focus on implementing security policies in corporate IM services Kaushal S Chandrashekar CS 691 Dr. Edward Chow UCCS.

Instant Messenger Security with a focus on implementing security policies in corporate IM services Kaushal S Chandrashekar CS 691 Dr. Edward Chow UCCS.
Cloud PIV Authentication and Authorization Demo PIV Card User Workstation Central Security Server In order to use Cloud Authentication and Authorization.

Cloud PIV Authentication and Authorization Demo PIV Card User Workstation Central Security Server In order to use Cloud Authentication and Authorization.
Unified Communications: The State of the Industry.

Unified Communications: The State of the Industry.
GENI: Global Environment for Networking Innovations Larry Landweber Senior Advisor NSF:CISE Joint Techs Madison, WI July 17, 2006.

GENI: Global Environment for Networking Innovations Larry Landweber Senior Advisor NSF:CISE Joint Techs Madison, WI July 17, 2006.
Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.

Identity Management Based on P3P Authors: Oliver Berthold and Marit Kohntopp P3P = Platform for Privacy Preferences Project.
Creating Value Through Innovation The Changing Face of Business Communications Simon Gwatkin VP Strategic Marketing Mitel July 16, 2008.

Creating Value Through Innovation The Changing Face of Business Communications Simon Gwatkin VP Strategic Marketing Mitel July 16, 2008.
Chapter 17: Client/Server Computing Business Data Communications, 4e.

Chapter 17: Client/Server Computing Business Data Communications, 4e.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.

8.1 © 2007 by Prentice Hall 8 Chapter Securing Information Systems.
Steve Kenny Presented by: Larry Korba Design Embedded Privacy Risk Management Institute for Information Technology 14 th CACR, November 7,8, 2002.

Steve Kenny Presented by: Larry Korba Design Embedded Privacy Risk Management Institute for Information Technology 14 th CACR, November 7,8, 2002.
Elisa Bertino Dept. of Computer Science University of Milano Page 1 Author-X Secure and selective access and flexible distribution mechanisms for XML documents.

Elisa Bertino Dept. of Computer Science University of Milano Page 1 Author-X Secure and selective access and flexible distribution mechanisms for XML documents.
Secure Public Instant Messaging (IM): A Survey Mohammad Mannan Paul C. Van Oorschot Digital Security Group School of Computer Science Carleton University,

Secure Public Instant Messaging (IM): A Survey Mohammad Mannan Paul C. Van Oorschot Digital Security Group School of Computer Science Carleton University,
Clinic Security and Policy Enforcement in Windows Server 2008.

Clinic Security and Policy Enforcement in Windows Server 2008.
©2003–2008 Check Point Software Technologies Ltd. All rights reserved. CheckPoint new security architecture and R70 highlights.

©2003–2008 Check Point Software Technologies Ltd. All rights reserved. CheckPoint new security architecture and R70 highlights.
Cloud Computing Introduction to China-cloud Project and Related Works in JSI Yi Liu Sino-German Joint Software Institute, Beihang Univ. May 2011.

Cloud Computing Introduction to China-cloud Project and Related Works in JSI Yi Liu Sino-German Joint Software Institute, Beihang Univ. May 2011.
Securing Windows 7 Lesson 10. Objectives Understand authentication and authorization Configure password policies Secure Windows 7 using the Action Center.

Securing Windows 7 Lesson 10. Objectives Understand authentication and authorization Configure password policies Secure Windows 7 using the Action Center.
John McDougall, President 10 th Annual Re$earch Money Conference, 11 May 2011.

John McDougall, President 10 th Annual Re$earch Money Conference, 11 May 2011.
Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Whitacre College of Engineering Panel Interdisciplinary Cybersecurity Education Texas Tech University NSF-SFS Workshop on Educational Initiatives in Cybersecurity.

Similar presentations

Ads by Google