Presentation is loading. Please wait.

Presentation is loading. Please wait.

CIS700: Hardware Support for Security Professor Milo Martin

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "CIS700: Hardware Support for Security Professor Milo Martin"— Presentation transcript:

1 CIS700: Hardware Support for Security Professor Milo Martin http://www.cis.upenn.edu/~milom/cis700-Spring05/

2 CIS 700 2 Why Am I Teaching This Course? Security is important Lots of reasons why Security is hard No silver bullet Much deeper than stopping buffer overflows My expertise Computer architecture and related issues Not (yet) a security expert Key question Can hardware support improve the security of computing systems? This course We’ll explore this question

3 CIS 700 3 Who are you? What is your experience? Your background? Your interest in this course?

4 CIS 700 4 Computer Security Computer security is a broad field Traditional computing systems issues Cryptography Physical security Law enforcement and public policy Psychology and economics Goals Main goal: “thwart attacks” Privacy, authentication, detection, forensics, digital rights management (DRM), attack preemption

5 CIS 700 5 Security Engineering Is there such a thing as a secure system? Security is all about tradeoffs Cost vs security  of attack, of countermeasure, value of item protected Usability vs security Risk management Pragmatism, not proofs Must consider “big pictures” issues Unexpected attacks (for example, social engineering)  Home security analogy  Three lightbulbs story  Flying vs driving analogy Again, key question: can hardware be part of the solution? Change the engineering tradeoffs?

6 CIS 700 6 Course Format Glorified reading and discussion group We’ll read 30-40 papers over the semester Goal: vigorous in-class discussion Reading analysis before each class Answer a few questions about the readings Due at 10:00am the day of class Keeps you honest on the reading; gets us thinking Short essays 2-3 short essays answering a big-picture question about what we’ve talked about Looking for deep insight (FYI: Each aspect, 33% of your course grade)

7 CIS 700 7 Who Should Take This Course? Targeted for PhD students actively researching either Computer architecture Security (Or maybe just general systems) Minimum, should have substantial background in either: Computer architecture and hardware issues (501 as a minimum) Computer security (coursework or experience) Also, past experience reading “systems” papers a must If you’ve never read an academic research paper before, look out We’re going to do a lot of reading

8 CIS 700 8 Disclaimer: What I Know (and Don’t Know) Computer hardware I know a thing or two about a thing or two Computer security Lots of informal knowledge, not really an expert (yet) How do they fit together? I don’t know (yet) Can’t yet give you the “big picture” Haven’t yet read all the papers we’ll be reading Result: course will evolve as we go

9 CIS 700 9 General Course Topics Security background Focusing on “Security Engineering” Readings from Anderson’s book Hardware-based: Cryptographic smart cards and co-processors Dynamic information-flow tracking Buffer-overflow prevention Secure information processing Reducing runtime overheads of secure programming languages Fast cryptography Fine-grain memory protection Tamper resistant systems Code injection prevention Various "trusted" computing initiatives Many low-level software issues covered (by necessity)

10 CIS 700 10 Course Readings Anderson’s book for background Some at course beginning Some spread throughout course Many conference papers Architecture conferences: ISCA, ASPLOS, MICRO, HPCA Systems and security conferences: SOSP, Usenix Reading list will evolve We’ll touch on lots of topics How long we spend on each topic will vary Based on class input, dynamically adjust as course proceeds

11 CIS 700 11 Next Time Readings from Anderson’s “Security Engineering” Preface, Forward Chapters 1 & 2 Copies outside 3rd floor CIS office by end of today Purchase book for next week Answer these questions (10:00am Wed): Q1: In what ways are the disciplines of security engineering and computer engineering similar? In what ways are these different? Q2: How could the identify-friend-or-foe (IFF) system described in 2.2.2 be modified to prevent the described attack? Q3: What didn’t you understand about the reading Come ready to discuss

Download ppt "CIS700: Hardware Support for Security Professor Milo Martin"

Similar presentations

Widening the Research Pipeline Update to NSF/CISE BPC Evaluation Workshop December 7, 2006.

Widening the Research Pipeline Update to NSF/CISE BPC Evaluation Workshop December 7, 2006.
Revision and exam technique

Revision and exam technique
Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 

Chapter 1  Introduction 1 Introduction Chapter 1  Introduction 2 The Cast of Characters  Alice and Bob are the good guys  Trudy is the bad guy 
Chapter 1  Introduction 1 Chapter 1: Introduction.

Chapter 1  Introduction 1 Chapter 1: Introduction.
G53SEC 1 Hardware Security The (slightly) more tactile side of security.

G53SEC 1 Hardware Security The (slightly) more tactile side of security.
Slide 01-1COMP 7370, Auburn University COMP 7370 Advanced Computer and Network Security Dr. Xiao Qin Auburn University

Slide 01-1COMP 7370, Auburn University COMP 7370 Advanced Computer and Network Security Dr. Xiao Qin Auburn University
Introduction and Logistics Amir Houmansadr CS660: Advanced Information Assurance Spring 2015.

Introduction and Logistics Amir Houmansadr CS660: Advanced Information Assurance Spring 2015.
Final Portfolio Project Edwing Llangari. Content 6.6 (information request) – My assignment 7.4 (refusal) – My assignment 8.5 (persuasive) – My assignment.

Final Portfolio Project Edwing Llangari. Content 6.6 (information request) – My assignment 7.4 (refusal) – My assignment 8.5 (persuasive) – My assignment.
Architecture Support for Security Peter Chapman Michael Maass.

Architecture Support for Security Peter Chapman Michael Maass.
Computers and Society Lecture 1: administrative details and an introduction to the class Professor: Evan Korth New York University.

Computers and Society Lecture 1: administrative details and an introduction to the class Professor: Evan Korth New York University.
G53SEC 1 Revision & Exam Tips G53SEC. 2 Today’s Lecture: Revision Summary + Tips Exam Tips Preliminary Coursework Feedback.

G53SEC 1 Revision & Exam Tips G53SEC. 2 Today’s Lecture: Revision Summary + Tips Exam Tips Preliminary Coursework Feedback.
Security Systems Theory UG2 Module Introduction Themes 1. Top down design of security systems – security technologies as 'black boxes'. 2. Internal design.

Security Systems Theory UG2 Module Introduction Themes 1. Top down design of security systems – security technologies as 'black boxes'. 2. Internal design.
CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.
Fall 2004 WWW IS112 Prof. Dwyer Intro1: Overview and Syllabus Professor Catherine Dwyer.

Fall 2004 WWW IS112 Prof. Dwyer Intro1: Overview and Syllabus Professor Catherine Dwyer.
CSCD 555 Research Methods for Computer Science

CSCD 555 Research Methods for Computer Science
Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004.

Foundations of Network and Computer Security J J ohn Black CSCI 6268/TLEN 5831, Fall 2004.
FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1.

FIT5037 Advanced Network Security --- Modern Computing and Security --- Lecture 1.
CS590 Z Software Defect Analysis Xiangyu Zhang. CS590F Software Reliability What is Software Defect Analysis  Given a software program, with or without.

CS590 Z Software Defect Analysis Xiangyu Zhang. CS590F Software Reliability What is Software Defect Analysis  Given a software program, with or without.
Description of a Foundations of Calculus Course for Teachers CMC-Asilomar December 2005 Karen Payne Aguilar.

Description of a Foundations of Calculus Course for Teachers CMC-Asilomar December 2005 Karen Payne Aguilar.
Software Engineering 2 91.412 Georges Grinstein Olsen 301E Class materials:

Software Engineering Georges Grinstein Olsen 301E Class materials:

Similar presentations

Ads by Google