Detect | CPS-VO

group_project

SBE TWC: Small: Collaborative: Pocket Security - Smartphone Cybercrime in the Wild

Submitted by Madeline Diep on Thu, 01/04/2018 - 11:57am

Most of the world's internet access occurs through mobile devices such as smart phones and tablets. While these devices are convenient, they also enable crimes that intersect the physical world and cyberspace. For example, a thief who steals a smartphone can gain access to a person?s sensitive email, or someone using a banking app on the train may reveal account numbers to someone looking over her shoulder. This research will study how, when, and where people use smartphones and the relationship between these usage patterns and the likelihood of being a victim of cybercrime.

group_project

TWC: Large: Collaborative: Verifiable Hardware: Chips that Prove their Own Correctness

Submitted by Abhi Shelat on Thu, 01/04/2018 - 11:43am

This project addresses how semiconductor designers can verify the correctness of ICs that they source from possibly untrusted fabricators. Existing solutions to this problem are either based on legal and contractual obligations, or use post-fabrication IC testing, both of which are unsatisfactory or unsound. As a sound alternative, this project designs and fabricates verifiable hardware: ICs that provide proofs of their correctness for every input-output computation they perform in the field.

Outcomes Report URL:

https://www.research.gov/research-portal/appmanager/base/desktop?_nfpb=true&_win...

group_project

TWC: TTP Option: Small: Collaborative: SRN: On Establishing Secure and Resilient Networking Services

Submitted by dijiang on Wed, 01/03/2018 - 3:48pm

Almost every organization depends on cloud-based services. The backend of cloud-based services are designed for multiple tenants and reside in data centers spread across multiple physical locations. Network security and security management are major hurdles in such a complex, shared environment. This research investigates mitigating the security challenges by taking a moving target defense (MTD) approach.

group_project

STARSS: Small: Defending Against Hardware Covert Timing Channels

Submitted by Guru Venkataramani on Wed, 01/03/2018 - 3:42pm

Safeguarding sensitive user information stored in computer systems is a fast growing concern, especially as computers are universally used everywhere from national defense to mobile phones. Malicious hackers have found unscrupulous ways to steal sensitive information largely by exploiting the vulnerabilities in existing hardware and software. Among the many forms of information leakage, covert timing channels exfiltrate secrets from a trojan process with higher security credentials to a spy process with lesser credentials by exploiting the access timing of system resources.

group_project

EAGER: TWC: Collaborative: iPrivacy: Automatic Recommendation of Personalized Privacy Settings for Image Sharing

Submitted by Dan Lin on Wed, 01/03/2018 - 3:35pm

The objective of this project is to investigate a comprehensive image privacy recommendation system, called iPrivacy (image Privacy), which can efficiently and automatically generate proper privacy settings for newly shared photos that also considers consensus of multiple parties appearing in the same photo. Photo sharing has become very popular with the growing ubiquity of smartphones and other mobile devices.

group_project

Forum on Cyber Resilience

Submitted by Jeisenberg on Wed, 01/03/2018 - 3:17pm

This project provides support for a National Academies Roundtable, the Forum on Cyber Resilience. The Forum will facilitate and enhance the exchange of ideas among scientists, practitioners, and policy makers concerned with the resilience of computing and communications systems, including the Internet, critical infrastructure, and other societally important systems.

group_project

TWC: Small: Developing Advanced Digital Forensic Tools Based on Network Stack Side Channels

Submitted by Jedidiah Crandall on Wed, 01/03/2018 - 3:14pm

This project is developing the next generation of network measurement tools for penetration testers, digital forensics experts, and other cybersecurity professionals who sometimes need to know more about the Internet or a specific network. It is developing techniques based on TCP/IP side channel inferences, where it is possible to infer something about a remote machine's view of the network based on the use of shared, limited resources.

Outcomes Report URL:

https://www.research.gov/research-portal/appmanager/base/desktop?_nfpb=true&_win...

group_project

SBE TWC: Small: Collaborative: Privacy Protection in Social Networks: Bridging the Gap Between User Perception and Privacy Enforcement

Submitted by Dongwon Lee on Wed, 01/03/2018 - 3:12pm

Online social networks, such as Facebook, Twitter, and Google+, have become extremely popular. They have significantly changed our behaviors for sharing information and socializing, especially among the younger generation. However, the extreme popularity of such online social networks has become a double-edged sword -- while promoting online socialization, these systems also raise privacy issues.

group_project

TWC SBE: TTP Option: Medium: Collaborative: EPICA: Empowering People to Overcome Information Controls and Attacks

Submitted by marshini on Wed, 01/03/2018 - 3:05pm

This project studies the security of representative personalized services, such as search engines, news aggregators, and on-line targeted advertising, and identifies vulnerabilities in service components that can be exploited by pollution attacks to deliver contents intended by attackers.

group_project

TWC: Small: Intrusion Detection and Resilience Against Attacks in Cyber and Cyber-Physical Control Systems

Submitted by Stephane Lafortune on Wed, 01/03/2018 - 2:54pm

This project develops a novel methodology for designing secure cyber and cyber-physical systems that can detect attackers and protect against malicious behavior after the system has been compromised.