[Colloq] Cybersecurity and Privacy Institute Speaker Series: Curtis Walker - The Myths of Computer Security - Oct 11

[Ponte, Christopher]

Speaker: Curtis Walker, Cyber Chief Scientist, Draper
Date: October 11, 2018
Location:  ISEC 655
Time: 2:00pm – 3:00pm
Title: The Myths of Computer Security

Abstract
Many organizations are dealing with repeated computer security breaches which can lead to data exfiltration, significant financial impact, and possibly much more catastrophic events with respect to cyber-physical systems. These breaches typically occur due to erroneous assumptions about what exactly "good security practices" entail. Traditional software solutions are continually recommended by security professionals, yet they often have a net negative impact on security. Security-focused operating systems that are supposed to be ahead of the curve, are often years behind with respect to mitigation technology. Hardware (e.g., processors) have not evolved in a timely manner in the face of new threats. This talk will examine the current state of Computer Security, highlighting common misconceptions about existing security technologies, and detailing how these security technologies ironically can be abused and exploited providing the door into the systems they are supposed to protect.

About the Speaker
Curtis Walker is a Distinguished Research Scientist at The Charles Stark Draper Laboratory. Before Draper, Curtis was a Senior Faculty Researcher and Adjunct Professor at Penn State University.  Curtis has extensive expertise in the Computer Security domain over the past two decades serving as a Principal Investigator for many programs with DARPA, other DoD organizations, and private industry. His background includes very deep knowledge of embedded systems, reverse engineering, vulnerability analysis, and exploitation.