[NRG] Notification: NRG Presentation (Ugur Kaynar) @ Mon Feb 8, 2016 11am - 12pm (NRG at BU)

Cody Doucette doucette at bu.edu
Wed Feb 3 16:04:47 EST 2016

Hi everyone,

Indeed, let's cancel NRG for Monday, February 8. I will reschedule with
Ugur to have her present later in the semester.

This means that the first NRG will be on *Tuesday, February 16 (Monday
schedule) at 11:00 AM*, where Wil Koch will present. Please attend if
you're able -- let's start off NRG this semester with a strong showing!

See you then,

Title: Shields Up! Defense for evading reconnaissance and JavaScript driven
L7 attacks
Authors: William Koch, Azer Bestavros

Cyber attacks can be categorized as opportunistic or targeted. In an
opportunistic attack, the target is initially unknown. As a first step in
identifying a potential target, the adversary will scan a network as part
of their reconnaissance to find a candidate machine. While a targeted
attack requires research and planning. As an example, JavaScript has been
observed to perform application layer (L7) attacks such distributed denial
of service (DDoS). Reverse proxies and web application firewalls (WAF) are
the standard defense for the aforementioned threats, however deploying
these defenses can be costly and cause additional overhead. In response, we
develop Shields, a minimalist defense for evading reconnaissance and
JavaScript driven L7 attacks. Shields are static HTML files used to block
malicious JavaScript requests attempting to accesses unauthorized web
resources. If a request is legitimate, the Shield uses port knocking to
white list the client on the origin server thus keeping the origin server
stealth to all other IPs. Shields provide an alternative defense to reduce
a web servers attack surface, while keeping operating cost at a minimum.

On Wed, Feb 3, 2016 at 2:40 PM, John Byers <byers at cs.bu.edu> wrote:

> We're going to have to reschedule: this conflicts with the faculty
> candidate job talk at that time.
> Mon, Feb 22 is also a conflict.
> Thanks,
>     John
> On 2/3/16 11:00 AM, Google Calendar wrote:
> more details »
> <https://www.google.com/calendar/event?action=VIEW&eid=aDllNTBhYmhjM3NnaXU1bzdnY2lia3NwMTggNTYwam42bnQ1aGo0b2YzcnNyaWNoZnB0aW9AZw>
> NRG Presentation (Ugur Kaynar)
> *When*
> Mon Feb 8, 2016 11am – 12pm Eastern Time
> *Where*
> MCS 148 (map <https://maps.google.com/maps?q=MCS+148&hl=en>)
> *Video call*
> https://plus.google.com/hangouts/_/bu.edu/nrg
> <https://plus.google.com/hangouts/_/bu.edu/nrg?hceid=NTYwam42bnQ1aGo0b2YzcnNyaWNoZnB0aW9AZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ.h9e50abhc3sgiu5o7gcibksp18>
> *Calendar*
> NRG at BU
> *Who*
>> doucette at bu.edu - creator
> Invitation from Google Calendar <https://www.google.com/calendar/>
> You are receiving this email at the account nrg-l at cs.bu.edu because you
> are subscribed for notifications on calendar NRG at BU.
> To stop receiving these emails, please log in to
> https://www.google.com/calendar/ and change your notification settings
> for this calendar.
> Forwarding this invitation could allow any recipient to modify your RSVP
> response. Learn More
> <https://support.google.com/calendar/answer/37135#forwarding>.
> _______________________________________________
> NRG-L mailing listNRG-L at cs.bu.eduhttp://cs-mailman.bu.edu/mailman/listinfo/nrg-l
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cs-mailman.bu.edu/pipermail/nrg-l/attachments/20160203/580a7315/attachment-0001.html>

More information about the NRG-L mailing list