View
213
Download
1
Category
Preview:
Citation preview
INSTITUTE FOR CYBER SECURITY
1
Industry-Academia Research Synergy:Fantasy or Reality?
Ravi SandhuExecutive Director and Endowed Professor
Institute for Cyber SecurityUniversity of Texas at San Antonio
Also, Chief Scientist and Co-Founder at TriCipher, Los GatosJanuary 2009
ravi.sandhu@utsa.edu www.profsandhu.com
© Ravi Sandhu
INSTITUTE FOR CYBER SECURITY
2
Industry-Academia Research Synergy:Desirable or Pointless?
Ravi SandhuExecutive Director and Endowed Professor
Institute for Cyber SecurityUniversity of Texas at San Antonio
Also, Chief Scientist and Co-Founder at TriCipher, Los GatosJanuary 2009
ravi.sandhu@utsa.edu www.profsandhu.com
© Ravi Sandhu
INSTITUTE FOR CYBER SECURITY What Kind of Science?
3© Ravi Sandhu
FundamentalUnderstanding
L H
H
L
Utility
Edison Pasteur
Bohrjunk
Donald Stokes, 1997Pasteur’s Quadrant: BasicScience and Technological Innovation
INSTITUTE FOR CYBER SECURITY What Kind of Science?
4© Ravi Sandhu
FundamentalUnderstanding
L H
H
L
Utility
Edison Pasteur
BohrGoal: eliminate/tolerateReality: too much hereReco: academia needs better self-policing
INSTITUTE FOR CYBER SECURITY What Kind of Science?
5© Ravi Sandhu
FundamentalUnderstanding
L H
H
L
Utility
Edison Pasteur
Goal: eliminate/tolerateReality: too much hereReco: academia needs better self-policing
Goal: growReality: too little, never enoughReco: academia leads, industry guidance/help is valuable
INSTITUTE FOR CYBER SECURITY What Kind of Science?
6© Ravi Sandhu
FundamentalUnderstanding
L H
H
L
Utility
Pasteur
Goal: eliminate/tolerateReality: too much hereReco: academia needs better self-policing
Goal: growReality: too little, never enoughReco: academia leads, industry guidance/help is valuable
Goal: growReality: too little, never enoughReco: industry leads, academic guidance/help is valuable
INSTITUTE FOR CYBER SECURITY What Kind of Science?
7© Ravi Sandhu
FundamentalUnderstanding
L H
H
L
Utility
Goal: eliminate/tolerateReality: too much hereReco: academia needs better self-policing
Goal: growReality: too little, never enoughReco: academia leads, industry guidance/help is valuable
Goal: growReality: too little, never enoughReco: industry leads, academic guidance/help is valuable
Goal: growReality: much too little, never enoughReco: industry-academia synergy
INSTITUTE FOR CYBER SECURITY An Example?
8© Ravi Sandhu
Role-Based Access Control
Publication of RBAC96 model
Publication of proposed NIST standard
Recommended