• Home

  • Documents

  • Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans...
12
Cognitive Security for Personal Devices Rachel Greenstadt ([email protected] ) Jake Beal ([email protected] ) AISec October 28, 2008

Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

  • Upload
    others

  • View
    2

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Cognitive Security for Personal Devices

Rachel Greenstadt ([email protected])Jake Beal ([email protected])

AISecOctober 28, 2008

mailto:[email protected]
mailto:[email protected]
mailto:[email protected]
mailto:[email protected]
Page 2: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

I must be dancing with Jake, after all, this guy knows Jake’s private key....

Page 3: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Human-style authentication

Looks like JakeDances like

Jake

Sounds like Jake

Page 4: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

It seems this is Mako and not, in fact, Jake

Computers could recognize other cues

Typing patterns

Touchpad patterns

Use patterns

Camera imageTouchpad patterns

Posture/Device placement

Page 5: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Cognitive Security

• Humans have rich and subtle mechanisms for handling trust and security

• Goal: Intelligent agents mediate security decisions between users and applications

• Build user models via continuously-deployed multi-modal behavioral biometrics

• Use models to aid security decisions

Page 6: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Mismatch Between Users and Machines:An AI and HCI Problem

• We must use human mechanisms sometimes

• Example: passwords to keys

• Security automation considered harmful? [Edwards Poole Stoole 2007]

• Context dependent security decisions

• Can’t be pre-baked in

• Need an agent to observe the context

Page 7: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Machine Imprint on Users,develop models of their behavior

Obviously not appropriate for all scenarios...

Page 8: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Architecture for Machine

Integrity• Sensitive Information• Requires isolation• Lots of research in this sort of model already • Overhead? (VMMs, classifiers, etc) perhaps...

Page 9: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Once computers know their users,they can infer beliefs and goals

Alice:* Knows she wants to visit her bank* Doesn’t know she’s not at her bank

Alice’s device:* Knows Alice is not visiting her bank* Doesn’t know that Alice believes she is at her bank

Page 10: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Adjustably Autonomous Security

• Model users’ belief, desires, intentions

• Understand concepts

• private information

• expected program behavior

• simulate users’ judgment

• pass decisions up when appropriate

Page 11: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Current work

• Authentication

• Keystrokes

• Stylometry

• Anti-phishing

Page 12: Cognitive Security for Personal Devicesgreenie/aisec-slides.pdf · Cognitive Security • Humans have rich and subtle mechanisms for handling trust and security • Goal: Intelligent

Thank You

• Questions?

• More detail available as MIT CSAIL Tech Report 2008-016

• http://dspace.mit.edu/handle/1721.1/40810

• Email: [email protected], [email protected]

http://dspace.mit.edu/handle/1721.1/40810
http://dspace.mit.edu/handle/1721.1/40810
mailto:[email protected]
mailto:[email protected]

Security threats in cognitive radio

Security threats in cognitive radio

Education
PresentacióN Ppt Aisec Consultores

PresentacióN Ppt Aisec Consultores

Documents
Watson - Cognitive Security Advisor for the Security ... - IBM€¦ · Watson - Cognitive Security Advisor for the Security Analyst IBM QRADAR ADVISOR WITH WATSON Dusan Vidovic June

Watson - Cognitive Security Advisor for the Security ... - IBM€¦ · Watson - Cognitive Security Advisor for the Security Analyst IBM QRADAR ADVISOR WITH WATSON Dusan Vidovic June

Documents
Security in Cognitive Radio Networks€¦ · Security in Cognitive Radio Networks Security in Cognitive Radio Networks Kresimir Dabcevic, Lucio Marcenaro, ... performed in the proprietary

Security in Cognitive Radio Networks€¦ · Security in Cognitive Radio Networks Security in Cognitive Radio Networks Kresimir Dabcevic, Lucio Marcenaro, ... performed in the proprietary

Documents
Cognitive Security Case Study

Cognitive Security Case Study

Entertainment & Humor
Aisec presentation with videos (2)

Aisec presentation with videos (2)

Documents
Security, Privacy and Trust: Cognitive Internet of Vehicles

Security, Privacy and Trust: Cognitive Internet of Vehicles

Documents
Survey of Security Issues in Cognitive Radio Networkswe07/Publications/Survey of Security... · Survey of Security Issues in Cognitive Radio Networks 3 3 Spectrum Sensing In order

Survey of Security Issues in Cognitive Radio Networkswe07/Publications/Survey of Security... · Survey of Security Issues in Cognitive Radio Networks 3 3 Spectrum Sensing In order

Documents
COGNITIVE SECURITY SYSTEM BASED ON IMAGE COMPARISON …

COGNITIVE SECURITY SYSTEM BASED ON IMAGE COMPARISON …

Documents
Security Issues in Cognitive Radio Networks (CRN)

Security Issues in Cognitive Radio Networks (CRN)

Documents
AISEC Sondernewsletter

AISEC Sondernewsletter

Documents
Applied Cognitive Security: Complementing the Security · PDF fileApplied Cognitive Security: Complementing the Security Analyst ... •Correlate data ... Watson showed the extent

Applied Cognitive Security: Complementing the Security · PDF fileApplied Cognitive Security: Complementing the Security Analyst ... •Correlate data ... Watson showed the extent

Documents
News Letter AISEC UNDIP

News Letter AISEC UNDIP

Documents
Android OS Security: Risks and Limitations. AISEC Technical Report

Android OS Security: Risks and Limitations. AISEC Technical Report

Technology
AISEC TR 2012 001 Android OS Security

AISEC TR 2012 001 Android OS Security

Documents
Cognitive Security - Telco & Mobile Security ('12)

Cognitive Security - Telco & Mobile Security ('12)

Technology
Cognitive radio: some security issues

Cognitive radio: some security issues

Technology
Security Enhanced Communications in Cognitive Networks · Security Enhanced Communications in Cognitive Networks ... techniques, we propose jamming resilient CR communication mechanisms

Security Enhanced Communications in Cognitive Networks · Security Enhanced Communications in Cognitive Networks ... techniques, we propose jamming resilient CR communication mechanisms

Documents
AISEC NCCU, Project Catalogue

AISEC NCCU, Project Catalogue

Documents
Outthink Threat: Can Cognitive Change the Odds?...Reducing overall risk with cognitive security solutions Cognitive security solutions could: • Provide better threat intelligence,

Outthink Threat: Can Cognitive Change the Odds?...Reducing overall risk with cognitive security solutions Cognitive security solutions could: • Provide better threat intelligence,

Documents
Cognitive Radio Network Security

Cognitive Radio Network Security

Documents
Fraunhofer AISEC - Mit Sicherheit innovativ

Fraunhofer AISEC - Mit Sicherheit innovativ

Documents
Annual Report AISEC 2015 - 2016

Annual Report AISEC 2015 - 2016

Documents
Future Cognitive Security of OSS/BSS · Future Cognitive Security of OSS/BSS Dr. Ian Oliver Senior Security Researcher Nokia Bell Labs, Finland ... Understand your OSS/BSS requirements

Future Cognitive Security of OSS/BSS · Future Cognitive Security of OSS/BSS Dr. Ian Oliver Senior Security Researcher Nokia Bell Labs, Finland ... Understand your OSS/BSS requirements

Documents
Buku Pedoman AISEC

Buku Pedoman AISEC

Documents
Cognitive Radio Network Security a Survey

Cognitive Radio Network Security a Survey

Documents
Reception booklet Shine Bright, AISEC ALMATY, Kazakhstan

Reception booklet Shine Bright, AISEC ALMATY, Kazakhstan

Documents
Security threats and detection technique in cognitive

Security threats and detection technique in cognitive

Engineering
Applied cognitive security complementing the security analyst

Applied cognitive security complementing the security analyst

Technology
Cognitive Security - Finance & Banking Security ('12)

Cognitive Security - Finance & Banking Security ('12)

Technology