FISSEA 2015 Conference, March 24-25 - Evaluating …FISSEA 2015 Conference, March 24-25 - Evaluating...

Evaluating the Security

Implications of Innovation:

Risk and Risk Reduction in the

Internet of Everything

UMUC Faculty Presentation to FISSEA 2015

Valorie King, Richard White, Sam Chun

Is this the Internet of Everything?

Or, is this how you see the IoE?

INNOVATIONS

Quantized Self

• Body Sensors (Tattoos, Electro Myographics)– Gestures

– Authentication

– Threat Detection (CBRNE)

• Wearable Computers – Communications & Productivity

– Health & Fitness

– Augmented Reality (input / feedback)

• Implants & Medical Devices – Body Area Networks

– Medication Delivery

– Monitor / Augment internal systems

– Prosthetics

Infrastructures & Technologies

• Smart Homes

• Smart Communities

• Autonomous Vehicles

• Intelligent Transportation Infrastructures

• Utilities Infrastructures & Advanced

Metering

• Banking Sector & Digital Currencies

Enabling Technologies

• Graphene

• Neuromorphic Chips

• Brain-Computer Interfaces

• Physical Unclonable Functions (PUFs)

• Dielectric thin films

• Magneto-electric magnetic sensors

• Nano imprinting

• Nano machines

TECHNOLOGY REVIEWS

Technology Transfer

• Technology Identification & Maturation

– Identifying promising technologies in R&D phases

– helping technologies emerge from the R&D environment

• Technology Transfer Processes (Universities)

• Technology Transfer Initiatives (DHS, DOE)

• Influence of funding availability & sources, i.e. venture capital, government grants, etc.

Technology Development Life Cycle

Image Source: http://www.atp.nist.gov/eao/gcr02-841/chapt2.htm

Technology Identification &

Evaluation Process

RISK IDENTIFICATION

Cybersecurity & Emerging Tech

• Incorporating emerging technologies into products and services

– What security features are needed?

– Can we predict how these features will fail?

– Can we identify potential or expected cybersecurity:• Gaps

• Risks

• Vulnerabilities

Evaluation Methodologies

• Analysis of Alternatives

• Case Studies

• Delphi Technique (Expert Panels)

• Experiments

• Gap Analyses

• Meta-Analyses (Published Research)

• Pilot Studies & Implementations

• Product Assurance

• Risk Assessments

Analysis of Alternatives

Experiment-Based Evaluations

RISK REDUCTION

Two Key Questions

• How can this technology or emerging application of technology be used to improve or support the security of devices and services which comprise the Internet of Everything?

• How can this technology be used by attackers, criminals, terrorists, etc. to achieve their goals and objectives within the context of the Internet of Everything?

SUMMARY & CONCLUSIONS

Cybersecurity for the IoE:

Built-in or Bolted-on?

Image Source: http://www.atp.nist.gov/eao/gcr02-841/chapt2.htm

Questions?

Contact Information

• Valorie King (Course Chair):

– Valorie.King@faculty.umuc.edu

• Richard White (Course Chair):

– Richard.White@faculty.umuc.edu

• Samuel Chun (Faculty Member):

– Samuel.Chun@faculty.umuc.edu

FISSEA 2015 Conference, March 24-25 - Evaluating …FISSEA 2015 Conference, March 24-25 - Evaluating...

Documents

Transcript of FISSEA 2015 Conference, March 24-25 - Evaluating …FISSEA 2015 Conference, March 24-25 - Evaluating...

Practical Awareness Program - NIST€¦ · Title: FISSEA 2015 Conference, March 24-25 - Practical Awareness Program Presentation Keywords: FISSEA 2015 Conference, March 24-25 - Practical

Managing Global Research: Risk, Relationships & Evaluating Outcomes

Determining & Evaluating High Risk Conjunction Events

Standardizing and Evaluating Risk Evaluation and ... · REPORT: Standardizing and Evaluating Risk Evaluation and Mitigation Strategies (REMS) September 2014 1 . Standardizing and

Good Morning, FISSEA - CSRC · PDF fileGood Morning, FISSEA . From: allstaff@nist.gov [mailto:allstaff@nist.gov] On Behalf Of Broadcast, DOC Sent: Wednesday, March 13, 2013 11:01 AM

Risk and Ambiguity in Evaluating Entrepreneurial Prospects ... · Risk and Ambiguity in Evaluating Entrepreneurial Prospects: An Experimental Study Anisa Shyti, Corina Paraschivy

FISSEA Security Awareness, Training, & Education …...FISSEA Security Awareness, Training, & Education Contest Entry Form Please review rules before completing entry form including

Risk in Review Re-evaluating how your company addresses risk

FISSEA Security Awareness, Training, & Education Contest · 2018-09-27 · FISSEA Security Awareness, Training, & Education Contest. Entry Form . Please review rules before completing

Evaluating Oregon Communities at Risk using the Wildfire Risk Explorer

Ecological Linkages in Risk Assessment: Evaluating Risk in Natural Ecosystems

Evaluating the Effectiveness of Risk-Reduction Strategies ...sds.hss.cmu.edu/risk/articles/EffectConsumerChem.pdf · Evaluating the Effectiveness of Risk-Reduction Strategies ...

Evaluating Sovereign Disaster Risk Finance Strategies: …documents.worldbank.org/curated/en/972881478686747136/pdf/109963... · Evaluating Sovereign Disaster Risk Finance Strategies:

Catastrophe Risk Models for Evaluating Disaster Risk Reduction Investments in Developing

Formulating and Evaluating Measures for Flood Risk Management Econ Analysis PROSPECT Formulating and Evaluating Measures for Flood Risk Management Econ.

Evaluating Psychiatric Patients’ Risk Of Violence

Accurately Evaluating Supplier Performance and Risk …media.apics.org/sites/AnnualConference2012/handouts/Accurately... · Accurately Evaluating Supplier Performance and Risk Alan

FISSEA 2015 Conference, March 24-25 - The National ... · FISSEA 2015 Conference, March 24-25 - The National Cybersecurity Workforce Framework: The Foundation for Building the Nation’s

FISSEA Conference 2010 Presentation - Using a Risk-Based ... · FISSEA Conference 2010 Presentation - Using a Risk-Based Approach to Align Security Architecture with the Business

Toxicology and Risk Assessment Challenges with Evaluating ......May 22, 2019 · Toxicology and Risk Assessment Challenges with Evaluating Health Effects of PFAS. Risk Assessment