SIGSAC Past Events
Wednesday, Sept. 15th, 2004, 6:30 PM
1404 Siebel Center
This will be SIGSAC's first meeting. We'll have a short informational session about SIGSAC followed by a presentation by the SIGSAC chair, Ari Gordon-Schlosberg, entitlted, "Email sanity in the real world: how SourceForge.net deals with unwanted and malicious email."
1404 Siebel Center
This will be SIGSAC's first meeting. We'll have a short informational session about SIGSAC followed by a presentation by the SIGSAC chair, Ari Gordon-Schlosberg, entitlted, "Email sanity in the real world: how SourceForge.net deals with unwanted and malicious email."
Wednesday, Oct. 20th, 2004, 6:30 PM
1404 Siebel Center
SIGSAC@UIUC presents Susan Hinrichs and Charles Zhang of Cisco Systems as they give a talk entitled:
Firewall Services in the Cat6K Bladed Architecture
In the last year Cisco delivered a bladed architecture that enables delivery of various services through the Catalyst switch infrastructure. By inserting a hardware card, the customer can leverage the high bandwidth backplane of the switch to pump data through other services such as firewalling and instrusion detection. This one box deployment is very attractive model for many existing switch customers.
When developing the Firewall Service Module (the firewall blade), the development team started with the PIX software base and added some key features needed by high-end customers, including virtual firewalls and layer 2 firewalls. Adding these features introduced some interesting engineering challenges.
Susan Hinrichs and Charles Zhang of Cisco Systems will give an overview of the Catalyst bladed architecture and discuss some of the Firewall Service Module's feature enhancements.
Susan Hinrichs is the Technical Leader for PIX security management tools at Cisco Systems and Charles Zhang is a member of her team.
Refreshments will be provided after the talk, which is expected to last about an hour.
1404 Siebel Center
SIGSAC@UIUC presents Susan Hinrichs and Charles Zhang of Cisco Systems as they give a talk entitled:
In the last year Cisco delivered a bladed architecture that enables delivery of various services through the Catalyst switch infrastructure. By inserting a hardware card, the customer can leverage the high bandwidth backplane of the switch to pump data through other services such as firewalling and instrusion detection. This one box deployment is very attractive model for many existing switch customers.
When developing the Firewall Service Module (the firewall blade), the development team started with the PIX software base and added some key features needed by high-end customers, including virtual firewalls and layer 2 firewalls. Adding these features introduced some interesting engineering challenges.
Susan Hinrichs and Charles Zhang of Cisco Systems will give an overview of the Catalyst bladed architecture and discuss some of the Firewall Service Module's feature enhancements.
Susan Hinrichs is the Technical Leader for PIX security management tools at Cisco Systems and Charles Zhang is a member of her team.
Refreshments will be provided after the talk, which is expected to last about an hour.
Wednesday, Feb. 2nd, 2005, 6:00 PM
4403 Siebel Center
SIGSAC@UIUC presents Professor Carl A. Gunter giving a talk on the WSEmail project. Pizza will be served after the talk for those attending. Immediately following will be the first SIGSAC meeting for those interested in participating.
WSEmail: Secure Internet Messaging Based on Web Services
Internet messaging (email) faces a variety of challenges not envisioned in its original design. Efforts have been made to compensate for limitations in security, flexibility, and integration within the existing standards and software base, but many aspects of these objectives can be obtained more easily from a fresh design. A fresh design will be easier to deploy if it is based on an emerging suite of high-level standards. In this work we explore the idea of redesigning email as a family of web services, an approach we call WSEmail. Existing standards and software for web services provide a high-level foundation with many of the desired properties. We illustrate a design, some sample applications, steps toward a theoretical foundation for its security, and an implementation. Our prototype illustrates a number of useful features: messages secured under federated identities, flexible treatment of access control, on-demand attachments, semantic routing, modular extensibility, integration with instant messaging, and dynamic policy negotiation. This work is based on the WSEmail project http://wsemail.ws and will include a demo of our puzzle policy negotiation system.
4403 Siebel Center
SIGSAC@UIUC presents Professor Carl A. Gunter giving a talk on the WSEmail project. Pizza will be served after the talk for those attending. Immediately following will be the first SIGSAC meeting for those interested in participating.
Internet messaging (email) faces a variety of challenges not envisioned in its original design. Efforts have been made to compensate for limitations in security, flexibility, and integration within the existing standards and software base, but many aspects of these objectives can be obtained more easily from a fresh design. A fresh design will be easier to deploy if it is based on an emerging suite of high-level standards. In this work we explore the idea of redesigning email as a family of web services, an approach we call WSEmail. Existing standards and software for web services provide a high-level foundation with many of the desired properties. We illustrate a design, some sample applications, steps toward a theoretical foundation for its security, and an implementation. Our prototype illustrates a number of useful features: messages secured under federated identities, flexible treatment of access control, on-demand attachments, semantic routing, modular extensibility, integration with instant messaging, and dynamic policy negotiation. This work is based on the WSEmail project http://wsemail.ws and will include a demo of our puzzle policy negotiation system.