Find us on
Professor Dan Wallach
Chief Threat Officer, Dagos, Inc.
Tuesday May 2, 2017
Kemeny 007, 4:30 PM
Professor Brendan Nyhan
Professor Dickie George
GenCyber 2017- ISTS - High School Summer Program at Dartmouth College
10 July - 14 July 2017 - 9am to 3pm
Securing the e-Campus 2017 - Pre-conference Workshops mid-July; Conference mid-July 2017.
(Exact time and dates to be confirmed)
Ukrainian Cybersecurity Researchers
Professor Sean Smith, Director of the ISTS and Bill Nisen, Associate Director, spoke at the
School House residential cluster on the Internet of Risky Things - February 21, 2017, 5:30 PM
You Don't Own Your Car
Hardware Based Security for GE's Industrial Control Systems
"It's Fine," They Said. "Just Ship It," They Said.
The Best Way to Improve Healthcare is to Improve Computers
Managing User-Level Compromises in Enterprise Network
ISTS Information Pamphlet
The ISTS is pleased to announce it is now accepting applications for its Summer High School Workshop on Cybersecurity. The workshop will run from July 10-14, 2017 on the Dartmouth College campus. We are fortunate to have Professor Adam Goldstein once again leading the workshop. For more information click here.
Dr. Dan Geer, Chief Information Security Officer for In-Q-Tel, recently cited the work done by Professor Sergey Bratus, ISTS Research Scientist, as a harbinger of the work that needs to be done to increase the security and trustworthiness of digital systems.
Dr. Geer was speaking at the April 2017 Source conference in Boston. A transcript of his remarks can be found here - http://geer.tinho.net/geer.source.27iv17.txt.
Professor Sean Smith, Director of the ISTS, reacting to the recent revelation by WikiLeaks of widespread hacking by the CIA, recently told USA Today, “…many of the same security vulnerabilities exploited in phones, TVs and computers outlined by WikiLeaks apply to IoT devices.”
Smith goes on to say, “If the CIA is working on breaking into phones like other hackers, you can bet it’s working on other devices, just like hackers.”
To read more of Professor Smith’s reaction to the WikiLeaks story see -- http://www.usatoday.com/story/tech/news/2017/03/11/world-wide-webs-inventor-warns-s-peril/99005906/
The Internet of Risky Things: Trusting Devices That Surround Us by Professor Sean Smith, Director of the ISTS, has been published recently by O’Reilly (http://shop.oreilly.com/product/0636920052784.do) and is available from Amazon as well. Here is a brief description of what you will find in Sean’s book courtesy of O’Reilly–
By 2020, the Internet of Things (IoT) will consist of millions of computational devices intimately connected to real-world aspects of human life. In this insightful book, Professor Sean Smith, who worked in information security long before the web appeared, explains that if we build the IoT the way we built the current internet and other information technology initiatives, we’re headed for trouble.
With a focus on concrete solutions, The Internet of Risky Things explains how we can avoid simple flaws that have plagued several dramatic IT advances in recent decades. Developers, engineers, industrial designers, makers, and researchers will explore "design patterns of insecurities" and learn what’s required to route around or fix them in the nascent IoT.
The Dartmouth College Department of Computer Science invites applications for a tenured faculty position at the level of associate or full professor. We seek candidates who will be excellent researchers and teachers in the broad range of areas related to cybersecurity. This position is the first of three hires that the College anticipates making in the area of cyber-security (see related story below). We particularly seek candidates who will help lead, initiate, and participate in collaborative research projects within Computer Science and beyond, including Dartmouth researchers from other Arts & Sciences departments, Geisel School of Medicine, Thayer School of Engineering, and Tuck School of Business.
With interest in cybersecurity at an all-time high, Dartmouth's Computer Science Department has launched its winter colloquium series spotlighting cybersecurity. Over the course of the winter term, six cybersecurity experts will address topics ranging from the inadequacy of passwords to the difficulty in securing mobile devices. Here is a list of the presenters:
17 January - Cormac Herley, Microsoft Research
24 January - Vir Phoha, "Spoof-Resistant Authentication...", Syracuse University
26 January - Li Xiong, "Privacy-Preserving Data Sharing...", Emory University
31 January - Nan Zhang, "Privacy & Security Implications of Web Data..."George Washington University
23 February - V.S. Subrahmanian, University of Maryland
2 March - Somesh Jha, University of Wisconsin - Madison
All presentations will take place in Kemeny 007 with refreshments available from 4:15 PM. For more information about this series, please visit the Computer Sciences Department's website.
"News of hacks are filling the headlines: from election-shaking political intrusions to huge breaches at companies like Yahoo. It means that many people are paying new attention to questions about cybersecurity"
Just before Christmas 2016, Professor Sergey Bratus was interviewed on Vermont Public Radio on how best to protect against cyber attacks. During this interview Professor Bratus was joined by George Silowash of Norwich University. To hear this broadcast click here.
ISTS Director, Professor Sean Smith, was a guest at the monthly meeting of Science Café NH to talk about the future of self-driving cars and potential cybsersecurity implications of this recent transportation phenomenon.
While the future of self-driving vehicles is hazy at best, the importance of making these vehicles secure from hacking is of paramount importance. Dovetailing nicely into Sean’s presentation at the Science Café is our upcoming talk by Craig Smith, “You Don’t Own your Car” where Craig will talk about cars, privacy and data ownership (see upcoming events on this page). Sean's panel discussion can be found here.
A newly announced academic cluster will expand the impact of Dartmouth's already strong interdisciplinary cybersecurity research and teaching efforts. Funded by an anonymous donor with matching funds from the college, a major focus of the cluster initiative will be security of the "Internet of Things", in which common electronic devices are accessed through the Internet and made vulnerable to attack. The cluster, central to the mission of the Institute for Security, Technology, and Society, will allow for the hiring of new faculty as well as funding new programs such as courses, collaborations and experiential learning opportunities. Read more about this and other new faculty clusters in Dartmouth Now and The Dartmouth.
Congratulations to recently graduated ISTS PhD candidate Jason Reeves (pictured) and undergraduate Chris Frangieh '17, whose poster, titled “TEDDI: Tamper Detection on Distributed Infrastructure” was one of two winners as a Best Cyber Security Solution for 2015. The poster received the most votes by attendees at the Advanced Cyber Security Center Annual Conference held in Boston on November 4th. The two will split a $1000 prize.
A recent story in the Washington Post features quotes from ISTS Chief Security Advisor and Research Associate Professor Sergey Bratus. This story, entitled "The Kernel of the Argument," is the fifth of a multi-part project on the Internet’s inherent vulnerabilities and why they may never be fixed. Bratus argues for the integration of security features into the Linux operating system.
ISTS Director Sean Smith and ISTS Chief Security Advisor and Research Associate Professor Sergey Bratus are the Dartmouth principal investigators of the Cyber Resilient Energy Delivery Consortium (CREDC) comprised of 11 universities and national laboratories led by the University of Illinois. CREDC, which will develop energy delivery systems for the electric power and oil and gas industries that are resistant to cyber-attack, builds on the success of its predecessor consortium Trustworthy Cyber Infrastructure for the Power Grid (TCIPG). ISTS has been a member of the TCIPG consortium since its inception 10 years ago. Read more about the award in Dartmouth Now.
"Hacker isn't a bad word. We need to have more people thinking like hackers, not servers," states ISTS Research Director Sean Smith, the subject of the cover story in the August 2015 edition of Enterprise, the Business Magazine of the Upper Valley. Written by Valley News journalist Nicola Smith (no relation), the biographical article profiles Prof. Smith's views on national cybersecurity and the implications of computer technology on society. ISTS Associate Director Bill Nisen and Research Associate Professor Sergey Bratus also provide commentary.
A paper by Sean Smith, with co-author John S. Erickson from Rensselaer Polytechnic Institute, was chosen by IEEE Security & Privacy magazine's editorial board for their yearly special issue. This issue reprises selected papers in an effort to bring some of the IEEE Symposium on Security and Privacy to a wider audience. The article "Never Mind Pearl Harbor — What about a Cyber Love Canal?" warns that the way we build and deploy devices won’t work at the scale of the envisioned Internet of Things and will backfire, like so many hidden chemical dumps.
Dartmouth Now talks to Sean Smith, Bill Nisen and Karen Page about ISTS' role in cyber security education and outreach, highlighting our re-designation as a Center of Academic Excellence for Information Assurance Research (CAE) for a second seven-year term by the National Security Agency, the high school summer security workshop, the Secure Information Systems Mentoring and Training (SISMAT) program and Sean Smith's sophomore summer living-learning course on the “Internet of Things” planned for this summer.
In their recently published 2014 Yearbook, the International Medical Informatics Association named Professor Sean Smith's Journal of the American Medical Informatics Association paper one of the best papers of 2014. In that paper, Sean and Professor Ross Koppel of Penn built a taxonomy of usability problems in health IT.
"Nobody has a fortress anymore. The perimeter is not just gone—it's burned to the ground," said Nate Fick '99 in his keynote address at Securing the eCampus 2014, a conference on information security in higher education held July 15-16. About 60 people attended presentations on risk management, regulations and policy, disaster recovery, emerging global cyber-security threats, security awareness, and more. Securing the eCampus was co-hosted by ISTS and Dartmouth College Information Technology Services. Click on the title to read the full article: Network Security: 'The Barriers to Entry Are Very Low'.
"Dartmouth's Sergey Bratus is on a mission to protect the Internet from cyber attacks and other criminal enterprises. It's a big job." Thus begins the recent article from Dartmouth Now about Dr. Sergey Bratus, Research Assistant Professor in the Department of Computer Science. Click on the title to read the full article: Dartmouth Researcher Tackles Ubiquitous Internet Insecurity.
Trustworthy Health and Wellness (THaW). This NSF-funded, Frontier-level project tackles many of the fundamental research challenges necessary to provide trustworthy information systems for health and wellness, as sensitive information and health-related tasks are increasingly pushed into mobile devices and cloud-based services. THaW is developing methods to authenticate clinical staff to tablet computers in a continuous and unobtrusive way, and to provide patients a usable way to control the information that mobile sensors collect about them.
Trustworthy Cyber Infrastructure for the Power Grid (TCIPG). As noted on the TCIPG website, "Researchers from the University of Illinois at Urbana-Champaign, Dartmouth College, Cornell University, the University of California at Davis, and Washington State University are together addressing the challenge of how to protect the nation's power grid by significantly improving the way the power grid infrastructure is built, making it more secure, reliable, and safe." This project is funded by the Department of Energy.
|Professor Locasto works with SISMAT students
Photo by Nick Gannon '15
Secure Information Systems Mentoring and Training (SISMAT). ISTS ran the SISMAT program for the sixth time this summer. The program aims to meet regional and national needs through a program of mentoring and training in cybersecurity.
ISTS - Neukom Internship Grants. ISTS and the Neukom Institute collaborate to offer leave-term funding each term to support an undergraduate, or graduate student, in pursuing an unpaid internship with a non-profit.
A video released by Dartmouth provides an overview of the cutting edge research and education and outreach efforts at the Institute for Security, Technology, and Society (ISTS). These efforts are designed to address the most critical issues affecting information security and privacy and the societal impact of information and communication technologies (ICTs) in an increasingly networked world.
View the slideshow at Flickr
Last Updated: 4/30/17