|
The increased power and interconnectivity of computer systems available today means that Information Security has become one of the most crucial set of technologies in the computing industry. Join us for this seminar where we will look at the latest research, results and ideas in Information Security from several perspectives.Speakers:
Links and References |
|
|
|
|
Overview of Information Security Principles and Technologies:Information systems and the Internet are, today, integral to business, professional and even many personal activities. The flexibility and increased functionality they provide, however, expose our information resources to a dangerous world where threats are numerous and any vulnerabilities are likely to be exploited. How can we take advantage of cutting-edge information and network technologies when the risk seems so great? This talk will provide a brief overview of information security principles, threats and vulnerabilities, and the technologies that are available to reduce the risks of operating in such a dangerous environment. |
About the Speaker: George
D. Jelatis is an information security architect and consultant.
He is a frequent speaker and lecturer on security topics, and a Certified
Information Systems Security Professional (CISSP).
He has provided information security consulting and design services to clients as diverse as universities, banks, health care providers, manufacturers, DoD contractors, DARPA and the US Air Force. He was most recently the Director of E-business Initiatives and "security evangelist" for Secure Computing Inc, after several years as a security consultant and researcher. His career has also included management of multi-national technical projects, research in distributed systems and local area network protocols, and both applications and systems programming. He has been active in information security since IBM was known for mainframes, not PCs. He even has fond memories of 80-column Hollerith punch cards and paper tape. He has a Bachelor of Physics and an MS in Computer Science, both from the University of Minnesota.. |
|
|
|
Economics and cryptography on the Internet:Mathematical cryptography has provided a variety of interesting and important tools for ecommerce. The impact of these tools was widely expected to be revolutionary. Yet so far, although some of these mathematical techniques do play a vital role, many of the early expectations have been disappointed. The reason for this, which will be explored in this lecture, is that many of these tools conflict with the economic incentives that govern how ecommerce is conducted. |
About the Speaker: Dr.
Andrew Odlyzko is Director of the interdisciplinary Digital Technology
Center and an Assistant Vice President for Research at the University of
Minnesota. Prior to assuming that position in 2001, he devoted 26
years to research and research management at Bell Labs and AT&T Labs.
He has written over 150 technical papers and has three patents. He
has managed projects in diverse areas, such as security, formal verification
methods, parallel and distributed computation, and auction technology.
In recent years he has also been working on electronic publishing, electronic
commerce, and economics of data networks. All his recent papers as
well as further information can be found on his home
page. |
|
|
|
An Overview of Authentication Techniques:Based on the book "Authentication: From Passwords to Public Keys," this talk looks at the practical benefits, drawbacks, strengths and weaknesses of today's authentication techniques. First we look at how to make the most out of password-based systems without overestimating their capabilities. Then we review the benefits and limitations of biometrics. Finally, we examine token-based techniques, including one-time password calculators, smart cards, and more sophisticated devices. For each technique we compare their resistance against attacks like trial-and-error guessing and we examine practical aspects of user enrollment and day-to-day operation. |
About the Speaker:Dr. Rick Smith is a writer, lecturer, and consultant in information systems security. He has written two books: "Authentication: From Passwords to Public Keys" and "Internet Cryptography." He also spent twelve years as a security architect, researcher, and software engineer at Secure Computing Corporation. He is a Certified Information Systems Security Professional (CISSP), a lecturer at St. Thomas University in St. Paul, Minnesota, and a contributing writer for Information Security magazine.He spent 12 years as a researcher, information security architect, and software developer at Secure Computing Corporation, where he was involved in DARPA cyber defense research and also provided security architecture and engineering assistance to commercial and government organizations. For several years he worked on the multi-level security problem (papers relating to it reside in the Security Archive on SCC's Web site) and worked on security products including the Embedded Firewall, the Sidewinder Internet Firewall, and the Standard Mail Guard (SMG). His first experience in computer security was as a software developer for the LOCK high-assurance trusted computing base, which evolved into the SMG and served as the architectural model for the Sidewinder. Earlier activities include protocol software development for the ARPANET, the forerunner of the modern Internet, the development of pioneering speech recognition products, and research in fault tolerant robotics for industrial and space applications. He holds a B.S. in engineering from Boston University, and an M.S. and Ph.D. in computer science from the University of Minnesota. |
|
|
|
Information Security from the Small Business / Home User Perspective: |
About the Speaker:Kris Wilson Kristopher Wilson is Principal Consultant of Hyper Future Vision, Inc. He provides small businesses that do not require full-time technical staff with services ranging from on-site and remote support, to acting as a virtual CIO. Prior to starting his own technology consulting services firm, he was Director of Technology at internet start-up PrivateAccounts.com (later purchased by E*TRADE) and had been a consultant and manager with GB Lumina, a local IT and Engineering consulting firm. He has also served as Secretary, Vice-chair, and Chair or the IEEE Consultants' Network of the Twin Cities (ICNTC). |
|
|
|
Panel Discussion on Information Security Technologies and Issues:Join our speakers in a wide open discussion of issues, debates, and controversies in the Information Security field. We will let the audience direct the discussion toward any areas if interest. |
|
|
|
|