Tutorial 3


Date/Time: Thursday October 20th, 2011 2:00pm to 3:30pm
Duration: 1.5 hours
Title: Benchmarking Computer Security through the Worldwide Intelligence Network Environment (WINE)

Presenters: Dr. Tudor Dumitras

Abstract:

The Worldwide Intelligence Network Environment (WINE) is an ongoing project at Symantec Research Labs for sharing comprehensive field data with external researchers. The ultimate goal of this project is to establish a rigorous benchmark for computer security that will take into account the ethical, legal and scientific challenges for sharing security-oriented data sets with the research community. WINE includes data, collected worldwide from Symantec's operational sensors, that covers the entire lifecycle of cyber threats. For example, WINE includes historical information on unknown binaries found on the Internet--providing unique insights into the zero-day attacks--as well as telemetry from Symantec's anti-virus products--indicating the effectiveness of defensive mechanisms (e.g., security patches, anti-virus signatures) against known vulnerabilities and attacks. WINE also includes the metadata required for establishing whether a data set is representative of the current cyber-threat landscape. The WINE experiments will be conducted on a platform designed for enabling the reproduction of prior results. In this tutorial, I will explain the nuts and bolts of benchmarking new security techniques through WINE, from a researcher's expression of interest to the publication of a paper that references the WINE data sets.

Bio:

Dr. Tudor Dumitras is a senior research engineer at Symantec Research Labs (SRL), currently building the Worldwide Intelligence Network Environment (WINE). Tudor's prior research focused on improving the dependability of large-scale distributed systems (addressing operator errors during software upgrades), of enterprise systems (addressing the predictability of fault-tolerant middleware), and of embedded systems (addressing soft errors in networks-on-chip). He received the 2011 A. G. Jordan Award, from the ECE Department at Carnegie Mellon University, for an outstanding Ph.D. thesis and for service to the community, the 2009 John Vlissides Award, from ACM SIGPLAN, for showing significant promise in applied software research, and the Best Paper Award at ASP-DAC'03. Tudor holds a Ph.D. degree from Carnegie Mellon University

Last modified: 2011-09-29 23:38:09 EDT