Security and the Smarter Planet
Upcoming SlideShare
Loading in...5
×
 

Like this? Share it with your network

Share

Security and the Smarter Planet

on

  • 1,175 views

Presentation given by Matthias Kaiserswerth, Director, IBM Research - Zurich Laboratory, in Dresden, German, 8 October 2009. Overview of selected current projects at IBM Research - Zurich on IT ...

Presentation given by Matthias Kaiserswerth, Director, IBM Research - Zurich Laboratory, in Dresden, German, 8 October 2009. Overview of selected current projects at IBM Research - Zurich on IT security

Statistics

Views

Total Views
1,175
Views on SlideShare
798
Embed Views
377

Actions

Likes
0
Downloads
12
Comments
0

3 Embeds 377

http://www.zurich.ibm.com 369
http://stagetest.zurich.ibm.com 7
http://translate.googleusercontent.com 1

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Security and the Smarter Planet Presentation Transcript

  • 1. Dr. Matthias KaiserswerthDirector, IBM Research - ZurichSecurity and the Smarter Planet Text 1 © 2009 IBM Corporation
  • 2. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics 2 © 2009 IBM Corporation
  • 3. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics 3 © 2009 IBM Corporation
  • 4. IBM Research - ZurichThe sun never sets on IBM Research Zurich Watson (NY) Established in 1956 China Founded in New York in 1945 Established in 1995 Almaden (CA) Haifa Established in 1952 Established in 1972 Austin (TX) Tokyo Established in 1995 Established in 1982 India Established in 1998 4 © 2009 IBM Corporation
  • 5. IBM Research - ZurichThe sun never sets on IBM Research• Largest private research organization worldwide• More than 3,000 scientists and engineers Zurich at 8 labs in 6 (NY) Watson countries Established in 1956 China Founded in New York in 1945 Established in 1995•Almaden (CA) on R&D in 2008 IBM spent $6B Haifa• Patent leader for 16 years straight Established in 1952 Established in 1972 Austin (TX) Tokyo• 5 Nobel Prize Laureates Established in 1995 India Established in 1982 Established in 1998 5 © 2009 IBM Corporation
  • 6. IBM Research - Zurich16 Consecutive Years of Patent Leadership Worldwide 2008 US Patent Leaders 4500 4186 >2x Number of Patents 70% >20x Software and Services 2030 1776 1424 205 192 186 68 58 0 IBM Microsoft Intel HP Oracle EMC Apple Accenture Google Source: IFI Patent Intelligence 6 © 2009 IBM Corporation
  • 7. IBM Research - ZurichOpen CollaborationTo Expand and/or Leverage New Regions, Partners and Research Areas 7 © 2009 IBM Corporation
  • 8. IBM Research - ZurichIBM Research - Zurich Today - 350 Persons including employees, pre-docs and post-docs and visiting scientists - 30 different nationalities - 90 Collaborative projects with universities, industrial partners and governments - New Nanotech Center to open in 2011 8 © 2009 IBM Corporation
  • 9. IBM Research - ZurichOur Major Accomplishments 9 © 2009 IBM Corporation
  • 10. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics10 © 2009 IBM Corporation
  • 11. IBM Research - Zurich IBM Research - ZurichGlobal Technology Outlook Genetic Map 2000 2001 2002 2003 2004 2005 2006 2007 2008Technology Technology Technologyechnology T Technology Technology TechnologyNano- Systems, and Technology Technology, and Systems Systems and Software Modular Syste Internet Systems Storage Optimized ms Datace Systems Desig nter SW SW Legislati n Depend Post Quality/ on and ability 9/11 Securit Data y Characte Event- Real ristics Driven World Continu of On- Stochas Demand World Aware Optimi al Data tic ze to Optimiz and Analysi Managin Surviv Intellige Analytic s and ation g e nt s Optimiz Metada Busines Informa ation ta s tion Integrity Virtual People Identity Proxies Embed Pervasi Enterpri ded ve Pervasi Dynami Pervasi Softwa Connec Speak to IT se ve c ve re tivity Mobile e- On- Archite Innovati SW Busines Deman cture on Service Layers Next s d of in s 2.0 CiC Gen Frame Busines Service Web Web work s s Enterpri Web Platfor Intellige se SW 2.0 Digital m nt Autono Intellect Communities Infrastru Utilities mic ual cture Property 11 © 2009 IBM Corporation
  • 12. IBM Research - ZurichSmarter Planet Our world is becoming INSTRUMENTED Our world is becoming INTERCONNECTED Virtually all things, processes and ways of working are becoming INTELLIGENT12 © 2009 IBM Corporation
  • 13. IBM Research - ZurichSmarter Planet Our world is becoming INSTRUMENTED Smarter planet: Thinking and acting in new ways to make our Our world is becoming INTERCONNECTED systems more efficient, productive and responsive, but this doesn’t Virtually all things, processes and ways of working are becoming come without risk. INTELLIGENT13 © 2009 IBM Corporation
  • 14. IBM Research - ZurichWith growth and connectivity, comes increased risk 99% OF ALL FINANCIAL ONLINE FRAUD TARGETS THE USA AND EUROPE 50%INCREASE IN THENUMBER OF MALICIOUSWEB SITES IN 200814.5B14 MESSAGES A DAY ARE CONSIDERED SPAM IBM Internet Security Systems X-Force® 2008 Trend & Risk Report, http://www.spamlaws.com/spam-stats.html © 2009 IBM Corporation
  • 15. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics15 © 2009 IBM Corporation
  • 16. IBM Research - ZurichIdentity MixerThe flexible RSA problem: Given an RSA modulus n and a number z ∈ Zn find an e ≥ 2and a u ∈ Zn suchue≡z (modn)Strong RSA assumption: solving the flexible RSA problem is hard for big n.Remember : FACTORING ≥ RSA ≥ S-RSASystemparameters: integer invervals Γ, ∆, Λ and length lnOrg Oʼs pk: RSA mod nO > 2ln and (aO, bO, dO, gO, hO) ∈R QRnOUser Uʼs master secret key: xU ∈ ΓUʼs nym with O: P(U,O) = aOxUbOs(U,O), where s(U,O) ∈R ∆ (s(U,O) = Uʼs secret)Credential by O on P(U,O): (c(U,O), e(U,O)) where – e(U,O) ∈R Λ and prime.– c(U,O)e(U,O) ≡ P(U,O)dO ≡ aOxUbOs(U,O)dO (mod nO) Theorem: Given an oracle O that on input xi ∈Γ outputs(si, ei, ci) s.t. si ∈R ∆, prime ei ∈R Λ and ciei ≡ aOxibOsidO , then computing (c, e, x, s) s.t.c2e ≡ (aOxbOsdO)2& (mod nO) and (x, s, e, c) = (xi, si, ei, ci) is infeasible under the SRSA. ̸U has established pseudonym P(U,Oi) = aOixUbOis(U,Oi) with Oi. U want to prove to Oipossession of a credential by Oj, i.e., valuess(U,Oj), c(U,Oj), e(U,Oj)! s.t.! c(U,Oj)e(U,Oj)! ≡ aOjxUbOjs(U,Oj)dOj 1. U sends A = c(U,Oj)hOjr1 and B = hOjr1gOjr2 to Oi,where r1, r2 ∈R {0, 1}2ln PK{(α,β,γ,δ,ε,ζ,ξ,η) : dOj2 = (A2)α(a1 2)β(b1 2)γ(h1 2)δ ∧Oj Oj OjB2 = (hOj2)ε(gOj2)ζ ∧ 1 = (B2)α(h1 2)δ(g1 2)ξ ∧ Oj! OjP(U,Oi)2 =(aOi2)β(bOi2)η ∧ β∈Γ ∧ γ∈∆ ∧ α∈Λ} .16 © 2009 IBM Corporation
  • 17. IBM Research - ZurichIdentity Mixer • Anonymous sharing of data • On the Internet or via Smart Cards • Data owner controls who sees the data, for how long and who they can share it with17 © 2009 IBM Corporation
  • 18. IBM Research - ZurichIdentity Mixer Friend Call Center Auto Insurance Company Family Doctor Health You Insurance DNA 18 Database © 2009 IBM Corporation
  • 19. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics19 © 2009 IBM Corporation
  • 20. IBM Research - ZurichTypical online banking scenario USB Bank You Bank Token sign(message) SSL/TLS connection20 © 2009 IBM Corporation
  • 21. IBM Research - ZurichMan in the Middle online banking breach Spoofed email (phishing) You Bank Trojan Horse Virus Impersonation Fake Client21 © 2009 IBM Corporation
  • 22. IBM Research - Zurich22 © 2009 IBM Corporation
  • 23. IBM Research - ZurichZone Trusted Information Channel (ZTIC) Back End Server User PC (possibly under attack) (Bank) ZTIC Proxy Looks at/ interacts with ZTIC (secure display) Maintains all asymmetric keys and TLS session keys for server connection Separate ZTIC hardware23 © 2009 IBM Corporation
  • 24. IBM Research - ZurichAGENDA • Introduction to IBM Research • What is a smarter planet? • Innovations for a smarter planet • Identity Mixer • Zone Trusted Information Channel • Fighting Crime with Analytics24 © 2009 IBM Corporation
  • 25. IBM Research - ZurichBusiness Analytics Business Optimization Business Intelligence Resource planning Business Automation25 © 2009 IBM Corporation
  • 26. IBM Research - ZurichNYPD Real Time Crime Center26 © 2009 IBM Corporation
  • 27. IBM Research - ZurichFighting Crime with Analytics27 © 2009 IBM Corporation
  • 28. IBM Research - ZurichSummary • Progress always comes with great risk. For this reason security needs to be a top priority from the start • Open collaboration between corporations, academia and government are critical in reducing this risk • Happy 60th Birthday28 © 2009 IBM Corporation
  • 29. IBM Research - Zurich Zurich Research Lab29 29 © 2009 IBM Corporation