|
| Brenda Fellows |
Session Friday and Saturday: “Strategic Leadership Development and Team Building"
As the field of leadership is very broad and has many dimensions, it is imperative that participants of the workshop understand this workshop is a baseline introduction to strategic leadership. Baseline knowledge of organizational, management, leadership and human resource management theories would be beneficial for participants of this workshop; however, if that knowledge does not exist, each participant has the opportunity to gain some insight about the aforementioned during this workshop. To gain full knowledge, it is suggested that participants enroll in my strategic leadership development workshops which includes a series of 10 three-day courses on the topic. Adjustments to the workshop can and will be made if and when necessary based on the needs of the participants throughout the process. A list of major organizational theories and theorists will be given to the participants to use for teamwork exercises during the workshop.
|
| Adrian Perrig |
SessionSaturday 1:15PM
SCION: Scalability, Control, and Isolation On Next-Generation Networks
We present the first Internet architecture designed to provide route control, failure isolation, and explicit trust information for end-to-end communications. SCION separates ASes into groups of independent routing sub-planes, called trust domains, which then interconnect to form complete routes. Trust domains provide natural isolation of routing failures and human misconfiguration, give endpoints strong control for both inbound and outbound traffic, provide meaningful and enforceable trust, and enable scalable routing updates with high path freshness. As a result, our architecture provides strong resilience and security properties as an intrinsic consequence of good design principles, avoiding piecemeal add-on protocols as security patches. Meanwhile, SCION only assumes that a few top-tier ISPs in the trust domain are trusted for providing reliable end-to-end communications, thus achieving a small Trusted Computing Base. Both our security analysis and evaluation results show that SCION naturally prevents numerous attacks and provides a high level of resilience, scalability, control, and isolation.
Adrian Perrig's Slide Deck
|
| Leslie Lambert |
The Shifting Threat Landscape and Mobile Device Security
Lambert Deck 1
Securing The Next Generation Data Center
Lambert Deck 2
Session: PANEL: Research vs Reality – Security implemented in the real world?
|
| Joan Peckham |
Session Talk 1, “Building the Nation’s Cyberinfrastructure and the Thinking Skills to Go With It”
We as a nation are vested in building the national cyberinfrastructure to support scientific research, industry, informed citizens, and learning and training and to help us all to make sense of the oceans of data in which we work and live today. If we manage to equip citizens, students and scholars with a modern cyberinfrastructure, will we have the thinking skills needed to solve the deepest scientific and engineering problems and to help all citizens make sense of our world and universe? Some have proposed “computational thinking” for everyone, K-Grey.
Peckham Slide Deck 1
Session Talk 3: Talk 2 "Broadening the Impacts of Scientific Research"
The National Science Foundation requires that all proposals strongly address both intellectual merit and broader impacts. Most scholars are well trained to propose and conduct projects with strong intellectual merit, but sometimes do not have knowledge of, or experience with, robust models of broader impacts from which to draw. What are broader impacts, how is this defined in NSF solicitations, and how can you integrate this with your scientific research to write a strong proposal that addresses and integrates both of these aspects.
Peckham Slide Deck 2
|
| Dorothy Glancy |
Session Talk 1, “Privacy in the Smart Grid”
As the Smart Grid becomes smarter, we cannot afford to be dumb about privacy. At this stage, the Smart Grid seems to present more privacy problems than privacy protections. Being WISE about privacy requires not waiting until after the Smart Grid is in place and only then reacting to privacy problems that inevitably will arise and may be difficult to fix. Rather, the Smart Grid needs to be proactive and build privacy protections into the structure and intelligence of the grid. The Smart Grid shares many common attributes - including major privacy and security challenges - with other “big grids.” These big grids include healthcare information exchanges, electronic court records, transportation systems, and the internet. But the Smart Grid is expected to dwarf in size all of these other big grids. From a legal perspective, the Smart Grid is distinctive in that it is regulated in three ways: as a data collection network, as a multi-directional telecommunications network and as a utility that generates and distributes electric power. Privacy’s place in the Smart Grid will depend on the extent to which these legal frameworks require protecting the privacy of users’s personal information collected by Smart Meters. Lawyers, cooperating with engineers, computer scientists, regulators and the public, are already at work building privacy into the Smart Grid.
Glancy Slide Deck 1
Session Talk 2, “The Matrix, Mosaic and Big Brother”
The Matrix, Mosaic and Big Brother symbolize different types of privacy concerns about modern surveillance systems. How, and how well, the law responds to these privacy concerns will have a substantial impact on basic human freedoms, including privacy. The Fourth Amendment to the United States Constitution provides that “The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no Warrants shall issue, but upon probable cause, supported by oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized.” This Constitutional guarantee, together with statutes and regulations, keeps the Matrix, Mosaic and Big Brother under control. Legal responses to problems posed by surveillance may sometimes seem imperfect. But properly understood and implemented, legal controls over surveillance offer real, and really important, protection for both privacy and other fundamental freedoms.
Glancy Slide Deck 2
Session: PANEL: Research vs Reality – Security implemented in the real world?
|
| Brad Malin |
Session Talk 1:"The Perils and Possibilities of De-identification"
Abstract: Regulations in various countries permit the reuse of person-specific information without consent provided the data is “de-identified”. Yet, there are various investigations that suggest such data can be re-identified with relative ease. In this talk, we will explore what de-identification actually means, how re-identification comes to pass, and the extent to which it is a concern. We will then consider how to move beyond de-identification toward more formal models of data privacy rooted in computational and statistical rigor. For illustrative purposes, this talk will draw upon examples from the health and life sciences research community.
Malin Slide Deck 1
Session Talk 2: Evolving Access Control Through Experience
Abstract: Identity and access management (IAM) concerns the naming and authentication of principals and assigning and updating their authorization rights for an enterprise’s computer and networking systems. Widely recognized as a pivotal and growing IT task, IAM has been deeply influenced by the development of access management models such as role-based access control (RBAC). However, IAM has received less attention as a continuous, evolving process. In particular, there is little formal support for how IAM can benefit from an organization’s accumulated experience. In this talk, I will introduce the notion of an experience-based access management (EBAM) framework, which consists of a set of models, techniques, and tools to help reconcile differences between high-level enterprise access goals and the rules the operational IAM system actually enforces. This talk will demonstration the notion of EBAM and, and auditing in general, in the context of several complex healthcare organizations and electronic medical record systems.
Malin Slide Deck 2
Session: PANEL: Research vs Reality – Security implemented in the real world?
|
| Theodora Titonis |
Session Talk 1:“Mobile Security and the Need for Innovative Solutions”
Titonis Slide Deck 1
Session Talk 2:“Encouraging Women Entrepreneurs: From Research to Product”
Titonis Slide Deck 2
|
| Lorrie Cranor |
Session Talk 1: “Designing Secure Systems that People Can Use”
My research studies how users interact with secure systems and ways to design these systems to work around human limitations. In this presentation, I will discuss our research findings on protecting users from phishing attacks, developing password policies that won’t drive users crazy, and creating warning dialogs that users won’t ignore.
Cranor Slide Deck
|
Deborah Frincke |
Dinner Keynote: Healthcare, Health IT, and Health Information Exchange, what do patients expect?
Today's HIT system vs. the major changes needed to build trustworthy systems. A survey of the current primitive HIT environment, what patients expect, the effects of key laws and regulations, the under-the-radar health data mining industries, and what ideal future HIT systems look like.
Frincke Slide Deck |
| Michelle Nix |
Session Talk 1: IT Risk Management at McKesson
As the field of leadership is very broad and has many dimensions, it is imperative that participants of the workshop understand this workshop is a baseline introduction to strategic leadership. Baseline knowledge of organizational, management, leadership and human resource management theories would be beneficial for participants of this workshop; however, if that knowledge does not exist, each participant has the opportunity to gain some insight about the aforementioned during this workshop. To gain full knowledge, it is suggested that participants enroll in my strategic leadership development workshops which includes a series of 10 three-day courses on the topic. Adjustments to the workshop can and will be made if and when necessary based on the needs of the participants throughout the process. A list of major organizational theories and theorists will be given to the participants to use for teamwork exercises during the workshop.
Nix Slide Deck
Session: PANEL: Research vs Reality – Security implemented in the real world?
|
|
