Presentation of AMBASEC A Model-Based Approach to SEcurityCulture

Transcription

1 Presentation of AMBASEC A Model-Based Approach to SEcurityCulture Prof. Jose J Gonzalez Dept. of ICT Security Group Research cell Security & Quality in Organizations IKTSoS WS March Dept. of ICT Position dr. techn. & dr. rer. nat. Professor II, Professor II, Dr. scient. Dr. rer. nat. Professor II, Dr. techn. & Dr. ing. habil. Name Jose J. Gonzalez Vladimir Oleshchuk B. John Oommen N.N. Rolf Nossum Andreas Prinz Christian S. Jensen Matthias Pätzold Frank Reichert Areas of expertise System dynamics methodology and modelling applied to 1) incident response & mngt in CERTs and CSIRTs; 2) vulnerabilities and code-driven attacks; 3) security data quality; 4) integration of technical, organizational and user aspects in security. Security & privacy frameworks, protocols and algorithms in mobile systems. Application formal methods to security related aspects of mobile systems. Ontology-based knowledge acquisition and retrieval, technologies for risk management and security. Learning automata and their applications within security and mobile communications. This includes routing, medium access control, capacity assignment, and network monitoring. Pattern recognition, adaptive data structures, and data compression. Packet switched networks, protocols (in particular Internet protocols) and security. Formal theories of context, context-sensitive knowledge processing & mgmt, mechan. reasoning by autonomous agents, ontology-based knowledge acquisition & retrieval. Software engineering, specification languages for mobile and distributed systems, communication protocols, compilers, operating systems. Multidimensional and spatio-temporal data management, data warehousing and locationbased services, aspects such as data modelling, database design, user-level languages, indexing and query processing. Propagation, mobile fading channels, multiple-input multiple-output systems, coding theory, system performance evaluation, error models for mobile communication systems Protocols for mobile systems, cellular system architectures mobile Internet applications, HW and SW communication system design. IKTSoS WS March

2 Security Group Two professors and two adjunct professors Two associated professors Three post-doctoral fellows Seven doctoral fellows One project secretary (M.Sc.) IKTSoS WS March Research Cell Security and Quality in Organizations Professor Jose J. Gonzalez Assist. Professor NN Postdoc Dr. Agata Sawicka Dr. Stefanie Hillen Ph. D. Students Magne Myrtveit Johannes Wiik Ying (Iris) Qian Yueping Chen secretary M. Sc. Maren S. Assev International (Albany, CERT/CC, Sandia Nat. Lab., European) & Norwegian (SINTEF, UiB, HiG?) collaboration *** Collaboration with & sponsing from industry IKTSoS WS March

3 ICT Research Portfolio (1) Mobile Student V. Oleshchuk 3Q01 4Q04 6,6, Ericsson, Telenor Security in Mobile Health Information Systems V. Oleshchuk 4Q03 1Q07 1,6 Mobile Communication Systems and Applications M. Pätzold 1Q03 4Q06 4,7 European Internet Accessibility Observatory M. Snaprud 3Q04 3Q07 26 EU New Generation of Dynamic Planning Tools 2Q03 1Q06 SCA Packaging Dynamics of CSIRTs 3Q03 2Q06 1,6 UFD Disseminating Insights from Complex Models to a Broader Audience Agata Sawicka (J.J. Gonzalez) 3Q04 2Q06 IKTSoS WS March ICT Research Portfolio (2) Mobile and Channel Integrating Electronic Commerce P. E. Pedersen 2Q02 1Q05 4,5 (total) Telenor, Ericsson, DnB, Easy Park, A-pressen, SNF, Consuming Adventure Oriented Digital Services P. E. Pedersen 2Q03 1Q06 4,0 (total) Telenor, NRK, Norsk Tipping, SNF, ROBACC M. Snaprud 3Q03 4Q04 0,47 IT Funk,, all partners AMBASEC (A Model- Based Approach to Security Culture) 1Q04 4Q07 3,1 Total project budget 56, AUC part of man-hours approximately 70 % IKTSoS WS March

4 New Generation of Dynamic Planning Tools New Generation of Dynamic Planning Tools 2Q03 1Q06 SCA Packaging Goals Objectives Develop a methodology encompassing the flexibility and userfriendliness of spreadsheets with dynamic simulation capabilities and enhanced data quality and security. Apply to SCA Packaging problem 1 short term, 2 more students long term PhD Students Magne Myrtveit Results Participants Papers published and submitted: Papers planned: 6 PhD theses : 1 Master theses: 3++ The project is embedded within the Research group Security and Quality in Organizations. Problem owner is SCA Packaging IKTSoS WS March Disseminating Insights from Complex Models to a Broader Audience Disseminating Insights from Complex Models to a Broader Audience Agata Sawicka (J.J. Gonzalez) 3Q04 2Q06 NFR Goals Objectives Postdoc Defining key design principles that should guide model communication. Develop methods and tools for model communication. Improve the applicability of model-based results, especially in information security. Enhance information security in organizations. Agata Sawicka Results Participants Papers published and submitted: 3 Papers planned: 4 (at least) Seminars: Master theses: 4 The project is embedded within the Research group Security and Quality in Organizations. IKTSoS WS March

5 Dynamics of CSIRTs Dynamics of CSIRTs 3Q03 2Q06 1,6 AUC Goals Objectives Modelling the factors influencing the effectiveness of Computer Security Incident Response Teams (CSIRTs) over time. Improve organizational security and survivability. PhD degree PhD Students Johannes Wiik Results Participants Papers published and submitted: 3 Papers planned: 6 PhD theses: 1 Master theses: 1++ The project is embedded within the Research group Security and Quality in Organizations. IKTSoS WS March AMBASEC (A Model-Based Approach to SEcurity Culture) Main Objective Advance the quality of reporting and use of ICT security incident data by extending and evaluating qualitative and quantitative data analysis methods in dual setting of Interactive Learning Environments (ILE s) and audit instruments applied to an IRMArelevant CSIRT (Computer Security Incident Response Team). IKTSoS WS March

6 AMBASEC Sub-goals Knowledge capture and qualitative modelling of a CSIRT WP1.1 Qualitative system dynamics (SD) map of a CSIRT (1 st group modelling workshop) WP1.2 Qualitative analysis (dynamic stories) of a CSIRT WP1.3 Improving SD map of CSIRT (2 nd group modelling workshop) WP1.4 Preliminary calibrated and validated quantitative SD model of a CSIRT WP1.5 First paper on SD modelling of a CSIRT WP1.6 First paper on model analysis and policy recommendations Model refinement of a CSIRT Model-based learning and reality feedback IKTSoS WS March AMBASEC First project year (2005): Group modelling workshops May and 5-9 September Extensive preparatory activities (planning & data mining before the workshops) Follow up activities (detail modelling, information exchange, reports and papers) Group modelling team: Prof. David Andersen, Prof. George Richardson and assoc. prof. Eliot Rich, Nelson Rockefeller Center for Policy Studies, University at Albany Prof. Jose J. Gonzalez, PhD fellows Iris Qian & Johannes Wiik, AUC The domain expert group: our IRMA partners Odd-Helge Longva, Stig O. Johnsen and Maria B. Dahl and OLF The group modelling WS will deliver AMBASEC WP For IRMA the group modelling WS will contribute to the intended survey of incident response management in ICT systems by helping create a coherent, model-based structure & establish specific links between the activities to improve security culture in both projects. IKTSoS WS March

7 AMBASEC Second project year (2006): The IRMA WP3 Implement IRMA at the industrial partners and AMBASEC work packages 2.3 & 2.4 (design, implementation & evaluation of ILE & audit instrument) will be coordinated for best implementation and deployment at OLF partners. Synergies between IRMA and AMBASEC will be fostered by regular collaboration. IKTSoS WS March AMBASEC Third project year (2007): The IRMA WP4 Strengthen the Security Awareness in the participating enterprises and AMBASEC work packages 3.1, 3.2, 3.3 (evaluation of improvement of security culture and cyber data) will be coordinated for best implementation and deployment at OLF partners. Synergies between IRMA and AMBASEC will be fostered by regular collaboration IKTSoS WS March