Categories
News Video

Kotz speaks at Science Cafe

If you’ve ever wanted to learn more about your digital privacy and online security and didn’t know who to ask, this Science Cafe NH episode is the one to watch.

In a one-hour long webinar, questions run the gamut of topics, from “Is 1password a good service to use?” to “What should you do if you’re hacked?” and “What are the real risks of sharing family photos and information on Facebook?” Panelists Professor Kotz, Dr. Nora Draper, and Azeddine Jakib give you their straightforward answers to help keep yourself, your families, communities, and broader networks safer.

What’s one way you’ve integrated security and privacy practices in your technological habits to protect yourself and others?

The panelists and moderator for the March 2021 Science Cafe NH

Categories
News

SPLICE PI David Kotz Named ACM Fellow

Professor Kotz was recently named one of 95 new ACM Fellows. This prestigious award recognizes the top 1% of ACM Members for their outstanding accomplishments in computing and information technology and/or outstanding service to ACM and the larger computing community. Kotz is recognized “for contributions to the security, privacy, and usability of mobile systems.”

To learn more, check out the ACM website here, or check out Dartmouth’s article here.

Congratulations, Professor Kotz!

photo
Categories
People Video

How do you cultivate the CREAM of the crop? Professors Kevin and Michel Kornegay speak about Morgan State’s cybersecurity prowess

This past week, professors Kevin Kornegay and Michel Kornegay spoke with the CEO of Shift5, Josh Lospinoso, about Morgan State University’s unique approach to cultivating an environment of success in cybersecurity. Professors Kevin and Michel Kornegay are the Director and Associate Director, respectively, of Morgan State’s Cybersecurity Assurance and Policy (CAP) Center, which is home to the CREAM Lab (Center for Reverse Engineering and Assured Microelectronics of the School of Engineering).

First, it’s important to understand the necessity of cybersecurity research and implementation. New technologies with increasing capabilities enabled by wireless transmissions, data collection, and data processing, have allowed analog devices to be replaced with digital devices on the consumer level. And with consumers’ desire for new functionalities and features driving industry decisions, security protocols often fall to the wayside. But it’s all too common to hear of hacked toys, water systems being tampered with, and even our government being put at risk because of a lack of cybersecurity.

The CAP Center at Morgan State is unique in its methodology to ensure that students are adequately prepared for and provided with options in the cybersecurity realm — whether it be continuing in academia or transitioning into industry. And partnerships are part of this success. The industry partnerships that the Center has fostered have been essential to the development of the students in its programs. On the one hand, they provide industry mentorship, so that students can have hands-on experience outside of the lab. On the other hand, working with industry partners allows for a constant flow of information which keeps the research, education, and work of the program up-to-date with emerging cybersecurity threats and skills needed to stay ahead of the curve.

But the key to the program’s success? Professors Michel and Kevin Kornegay’s devotion to their students and the learning process. The importance of a “pipeline” can not be understated when it comes to encouraging students from underrepresented groups into cybersecurity. Michel has extended that pipeline to start even earlier, with a summer program specifically designed to get middle school girls in the Baltimore area interested in cybersecurity. Both Kevin and Michel speak about the hands-on experimental activities and active-learning experiences that students are immediately a part of when they enter into PhD programs in the lab. Kevin speaks about a new PhD program at Morgan State – Secure Embedded Systems – focusing on a wide variety of competencies necessary to tackle multifaceted cybersecurity issues. The unique program enables students to work with architectures, protocols, AI, and cryptography, spanning the processor, communication, and application aspects of cybersecurity. This program is so unique that it’s the only one in the state of Maryland.

As the Kornegays say in their conversation with Josh from Shift5, opportunity and preparation are both necessary for the success of their students. By working with industry partners who are on-board with their mission, the professors keep a finger on the pulse of emerging technologies, and are able to provide internship experiences and industry mentorship to their students. And the Kornegays work with their students to meet them where they’re at – recognizing that students come from a wide variety of backgrounds, so a one-size-fits all approach cannot work. And the results, seen by the achievements of their students, the growth of the CAP Center and CREAM lab, and increasing partnerships, prove the success of the Kornegays’ methods.

To hear more from their conversation, check out the video below. To get involved with supporting students in exploring cybersecurity, check out the Gen Cyber program. To learn more about the Kornegays’ work with SPLICE, check out the rest of this website.

Categories
News Video

Privacy Implications for the Internet of Things

SPLICE in collaboration with Dartmouth’s Institute for Security, Technology, and Society (ISTS) recently hosted a panel discussion amongst security and privacy leaders currently at the forefront of cybersecurity industry and research. 

Panelists discussed some of the most pressing privacy challenges related to the “Internet of Things” (IoT) devices, such as smart phones, smart watches, and other smart devices. 

If you’ve ever wondered “Is my TV spying on me?,” or whether that firmware update really is safe to download, or you are interested in learning more about federated learning models vs the “Hoover” approach with respect to IoT devices, you can watch the recording of the panel at the bottom of this post.

Our panelists were April Doss, JD (Chair of Cybersecurity and Privacy Practice at Saul Ewing Arnstein & Lehr  LLP); Hamed Haddadi, PhD (Professor in Human-Centered Systems at Imperial College London); Susan Landau, PhD (Bridge Professor in Cyber Security and Policy at Tufts University); and Avi Rubin, PhD (Technical Director of the Johns Hopkins University Information Security Institute). David Kotz, PhD (Professor of Computer Science at Dartmouth and SPLICE Principal Investigator) was the moderator.

Clockwise from top left:
David Kotz; Avi Rubin; Susan Landau; V.S. Subrahmanian, PhD (Director of Institute for Security, Technology, and Society); April Doss; Hamed Haddadi

Categories
News Video

David Kotz speaks on Smart Devices

Did you receive a smart device this holiday season, and leave it sitting in the box because you don’t know how to set it up? Or were you one of those savvy shoppers who bought a smart device on clearance after the holiday rush and already have the perfect place to put it in your home?

Either way, SPLICE PI David Kotz has some advice for keeping your information secure and private when using smart devices. Check it what he has to say in the video!

Categories
News Patents Publication

New SPLICE Patent

The SPLICE team is pleased to announce one new patent derived from research conducted by SPLICE Principal Investigator Kevin Kornegay and Professor Willie Thompson, both from Morgan State University. The patent describes a data traffic module supporting the attestation and secure boot operations of IoT devices and legacy computing devices, and providing tamper resistance to such devices. 

Kevin Kornegay and Willie Lee Thompson II. Decentralized Root-of-Trust Framework for Heterogeneous Networks, November 2020. Morgan State University; USPTO. Download from https://patents.google.com/patent/US20180196945A1/en

Categories
People

New postdoc, Sofia Belikovetsky

We are pleased to welcome Dr. Sofia Belikovetsky as a SPLICE postdoctoral scholar, hosted at Johns Hopkins University.

Sofia has over 13 years of industrial and military experience in cyber security and cyber intelligence. Her previous roles include software developer, pen-tester, and team lead in the 8200 unit in the IDF, software architect in the Israeli PMO, and cyber security innovation architect at the AT&T Foundry. Sofia got her Ph.D. from the Ben-Gurion University of the Negev’s Department of Information Systems Engineering. Her research focused on securing Additive Manufacturing (AM) processes, where she has demonstrated the first full chain sabotage attack on AM. Later, she designed and developed side-channel methods for detecting these and other sabotage attacks against AM equipment. 

Categories
People

New postdoc, Beatrice Perez

We are pleased to welcome Dr. Beatrice Perez as a SPLICE postdoctoral scholar, hosted at Dartmouth.

Beatrice is a CI Fellow with the 2020 Computing Innovation Cohort. Her research interests include security and privacy, ubiquitous devices, and eHealth technologies. She completed her undergraduate degree in Computer Engineering at the University of Puerto Rico, Mayaguez and her PhD at University College London.

You can learn more about Beatrice at her UC London homepage.

Categories
News

Announcing SPLICE

This fall, our team will begin a five-year research effort to increase the security and privacy of high-tech products used in smart homes. The project—Security and Privacy in the Lifecycle of IoT for Consumer Environments (SPLICE)—comes as households expand their reliance on smart products ranging from refrigerators to baby monitors. These devices can share information with each other as well as communicate with services across the Internet.

SPLICE includes ten faculty from Dartmouth College, the University of Illinois at Urbana-Champaign, Johns Hopkins University, the University of Maryland, the University of Michigan, Morgan State University, and Tufts University.

group photo (August 2019)
Left to right: Avi Rubin, Carl Gunter, Adam Bates, Denise Anthony, David Kotz, Kevin Kornegay, Susan Landau, Michelle Mazurek, Michel Kornegay, Tim Pierson

“The technology in the average home today is radically different from even a decade ago and is likely to change even more rapidly in the coming years,” said David Kotz, a professor of computer science at Dartmouth and the lead principal investigator for the project. “Home is a place where people need to feel safe from prying eyes. SPLICE will address the challenges required for the vision of smart homes to be realized safely and successfully.”

The shift toward smart devices and systems in residences—such as houses, apartments, hotels, and assisted-living facilities—offers benefits that include increased energy efficiency and personalized services. Through faulty configuration or poor design, however, these items can also create unsafe conditions and increase risk of harm to people and property.

Since many homes are complex environments in which residents, landlords, and guests have different privacy needs, researchers will consider the interests of all property owners and users.

The five-year SPLICE effort is funded by a $10 million award from the National Science Foundation (NSF) Secure and Trustworthy Cyberspace Frontiers (SaTC Frontiers) program. “Cybersecurity is one of the most significant economic and national security challenges facing our nation today,” said Nina Amla, lead program director of the NSF SaTC program. “NSF’s investments in foundational research will transform our capacity to secure personal privacy, financial assets, and national interests.”

See press releases from: NSFDartmouthIllinoisJHUMarylandMorgan StateMichiganTufts. Group press release is available in pdf:

SPLICE will begin on October 1, 2020.  Follow SPLICE news by subscribing below.