Skip to main content



Find us on

facebook youtube flickr twitter itunes u logo

Upcoming Events

 ISTS logo

Securing the e-Campus 2017 - Exact time and dates TBD

Recent Talks

Dan Wallach

STAR-Vote: A Secure, Transparent, Auditable and Reliable Voting System

Professor Dan Wallach
Rice University
Thursday April 27, 2017
Carson L01, 5:00 PM

Ben Miller Dragos

Pandora's Power Grid - What Can State Attacks Do and What Would be the Impact?

Ben Miller
Chief Threat Officer, Dragos, Inc.
Tuesday May 2, 2017
Kemeny 007, 4:30 PM
Brendan Nyhan




Factual Echo Chambers? Fact-checking and Fake News in Election 2016.

Professor Brendan Nyhan
Dartmouth College
Thursday May 4, 2017
Rocky 001, 5:00 PM

Dickie George


Espionage and Intelligence

Professor Dickie George
Johns Hopkins University
Thursday May 11, 2017
Rocky 001, 5:00 PM

Dan Wallach

A Nation Under Attack: Advanced Cyber-Attacks in Ukraine

Ukrainian Cybersecurity Researchers
Thursday April 6, 2017
Oopik Auditorium 5:30 PM

RIOTS logo 

Professor Sean Smith, Director of the ISTS and Bill Nisen, Associate Director, spoke at the

School House residential cluster on the Internet of Risky Things  - February 21, 2017, 5:30 PM

Craig Smith




You Don't Own Your Car
Craig Smith
Tuesday May 10, 2016 
Carson L02 @4:15

David Safford


Hardware Based Security for GE's Industrial Control Systems
David Safford
GE Global Research
Tuesday May 17, 2016
Carson L02 @4:15



"It's Fine," They Said. "Just Ship It," They Said.
Dan Tentler
The Phobos Group
Tuesday April 12, 2016 
Carson L02 @4:15

Harold Thimbleby




The Best Way to Improve Healthcare is to Improve Computers
Harold Thimbleby
Swansea University
April 23, 2015

Craig Shue




Managing User-Level Compromises in Enterprise Network
Craig Shue
Worcester Polytechnic Institute
March 31, 2015



Oct news 2015


ISTS Information Pamphlet



Institute for Security, Technology, and Society
Dartmouth College
6211 Sudikoff Laboratory
Hanover, NH 03755 USA
HomeEvents >

Managing User-Level Compromises in Enterprise Networks

Tuesday, March 31, 2015 at 4:15pm - Carson L01
Craig Shue
Assistant Professor, Computer Science Department, Worcester Polytechnic Institute
Co-sponsored by ISTS and the CS Colloquium


Craig Shue
Craig Shue

Organizations and enterprises are under constant attack and occasionally their computer systems are compromised by an adversary. For example, phishing and drive-by downloads attacks can be used to gain access into a network that is otherwise fortified. Enterprises following best practices, such as least-user privilege, can limit these attacks to a single user-level account and prevent a system-wide or kernel-level compromise. However, it can be challenging for an organization to manage even just a user-level compromise within an organization.

In this talk, we will discuss ways to improve computer network security by making it easier to understand an enterprise network's traffic and detect activity that may be due to malware or a network intrusion. Unlike traditional security systems, our approach uses software on enterprise computers to communicate contextual information, allowing an access control server to understand whether a given network request is the result of known, trusted software or the result of a new, untrusted application. The project is flexible, using software-defined networking hardware when available, and leveraging end-host agents when it is not, to get deeper insight into a network.


Dr. Craig Shue is an Assistant Professor in the Computer Science Department at the Worcester Polytechnic Institute. Prior to joining the WPI faculty, he was a Cyber Security Research Scientist at the Oak Ridge National Laboratory. He earned Ph.D. in Computer Science at Indiana University. His research interests are in networking, security, and systems.


Last Updated: 4/22/15