ASRG Topics for Fall 2000
ASRG Organizational Meeting
Monday, September 18, 2000
Scribe: Kevin Fu
Here are the applied security topics mentioned at the last meeting.
If you would like to lead a discussion on a topic, please email me.
Alas, we have only seven unallocated slots left this semester. In no
particular order, here are the topics suggested by various people:
- Scalable certificate revocation (pending IP release from MITRE)
- Flask: A new trusted OS (pending IP release from MITRE)
- Ad hoc network security. "The Resurrecting Duckling" paper by Ross Anderson
- Preliminary BGP PGP work at Berkeley and other tongue twisters
- Secure multicast
- Rekeying in multicast
- Role-based access control
- Computer security insurance. Counterpane monitoring service.
- U.S. export regulations. Does anyone know the real state
of the regulations???
- Format bugs (related to buffer overflow)
- Carnivore
- SFS read-only file system
- Exploring trust in SSL Certificates
- The Freenet Project
- Wireless security
- SFS secure remote execution
- one-time credit cards (revisit S/Key, OPIE, etc)
http://www.zdnet.com/zdnn/stories/news/0,4586,2625758,00.html?chkpt=zdhpnews01
- report on distributed computing services like centrata.
- resource allocation (i.e. this "client side puzzle" idea which came up
after the DDoS attacks, but general)
- practical OpenSSL programming
- setting up and running a CA with OpenSSL (see openca.org)
- dissecting the BackOrifice 2K code -- how does it hide on NT? what can
it do?
- scan the DEF CON and Usenix archives for "interesting topics" and ask
'whatever happened to' (this is the historian in me speaking)
- Securing our nation's voting system
- Guerilla radio (see http://205.159.169.11/ for a local example of this
phenomenon).
Brought to you by the MIT LCS Applied Security Reading
Group