[Busec] Stefan Savage talk at MIT Today!

Sharon Goldberg goldbe at cs.bu.edu
Tue Aug 30 06:07:45 EDT 2011

Hi BUSec and WING,

Just got back from travel, and found out about a talk by Stefan Savage
at MIT today. Highly recommended!


---------- Forwarded message ----------
From: Dina Katabi <dina at csail.mit.edu>
Date: Tue, Aug 23, 2011 at 1:10 PM
Subject: Stefan Savage
To: "Sharon Goldberg (goldbe at Princeton.EDU)" <goldbe at princeton.edu>,
goldbe at cs.bu.edu

Hi Sharon,

Stefan Savage is visiting MIT on Tuesday August 30th.

Since you are running a security group at BU, I thought I would let
you know in case people in your group are interested in attending the
talk.  The announcement is below. Please free free to forward it to
interested audience in BU.


--------- Talk Announcement --------

Looking before you leap: the argument for data-driven security
Speaker: Stefan Savage
Speaker Affiliation: University of California San Diego
Host: Dina Katabi
Host Affiliation: MIT-CSAIL

Date: 8-30-2011
Time: 3:00 PM - 4:00 PM
Refreshments: 2:45 PM
Location: 32-D463, Star Conference Room  (Address: 32 Vassar Street,
Cambridge, MA 02139)

Computer security is a field that is fundamentally co-dependent?driven
to respond by the actions of adversaries. This dance fuels both the
research community and a multi-billion-dollar computer security
industry. However, to date most efforts have focused on the technical
components of this battle: identifying new vulnerabilities, exploits,
and attacks, building and deploying new defenses, and so on. In this
talk, I will argue for a complementary research agenda based on
understanding the economic forces that drive today's Internet attacks,
deconstructing the underlying value chain for attackers and ultimately
using this information to better focus on security interventions. I
will provide a rough sketch of the modern cyber-criminal ecosystem,
describe its dependencies, and highlight some of the key open
questions that motivate our focus. Using a range of activities,
including our own completed studies, work in progress, and work in
development, I'll illustrate how many of these questions can be
tackled empirically. Finally, I'll discuss the real and significant
challenges in conducting this sort of research and in bringing it to
appropriate stakeholders.

Sharon Goldberg
Computer Science, Boston University

More information about the Busec mailing list