Enabling Complete and Efficient Attack Provenance at Scale is coming at 02/26/2018 - 4:00pm
LPSC 125 Mon, 02/26/2018 - 4:00pm Adam Bates Assistant Professor, Computer Science, University of Illinois at Urbana-Champaign Abstract: In a provenance-aware system, mechanisms gather and report metadata that describes the history of each data object being processed, allowing users to understand how objects came to exist in their present state. Excitingly, we can also use provenance to trace the actions of system intruders, enabling smarter and faster incident response. In this talk, I will detail our efforts to achieve trustworthy data provenance in malicious distributed environments. These efforts have led to the design and implementation of a provenance-aware operating systems anchored in trusted hardware, a mechanism that leverages the confinement properties provided by Mandatory Access Controls to perform efficient policy-based provenance collection, and most recently an efficient distributed provenance management framework. Using these architectures, I will demonstrate that provenance is an invaluable tool for combating critical security threats including data exfiltration, SQL injection, and even binary exploitation. By addressing key security and performance challenges, this work is paving the way for the further proliferation of provenance capabilities. Bio: Read more: http://eecs.oregonstate.edu/colloquium/enabling-complete-and-efficient-a... [1] [1] http://eecs.oregonstate.edu/colloquium/enabling-complete-and-efficient-attack-provenance-scale
_______________________________________________ Colloquium mailing list [email protected] https://secure.engr.oregonstate.edu/mailman/listinfo/colloquium
