Software Engineering Institute

In this presentation, Greg Shannon discusses the goals of the IEEE Cybersecurity Initiative (CybSI) to accelerate innovative research, development, and the use of efficient cyber security and privacy technologies that protect commerce, innovation and expression.

As highlighted at the White House Summit on Cybersecurity and Consumer Protection, cyber security & privacy (S&P) are pervasive and growing concerns that affect individuals, companies, and nations.  Many IEEE members created, sustain, and grow the Internet, and IEEE has a decades-long history of forming and leading technical communities dedicated to engineering a cyberspace that provides security and privacy.  To more directly address these challenges, IEEE has launched a multi-year Cybersecurity Initiative (CybSI); its goal is to accelerate innovative research, development and use of efficient cyber security & privacy technologies that protect commerce, innovation and expression.

The first project, started last year, is the IEEE Center for Secure Design, and has published a document on avoiding common design flaws, which complements the usual approach of finding bugs that are vulnerabilities.

This year’s new project, currently called try-cybsi, uses cloud-based, browser-accessible, virtualized containers (see try41 on github) to archive, curate and present cyber security & privacy technical artifacts (code, data, results, exploits, etc.) and high-fidelity technical experiences of those artifacts (examples, demos, experiments, measurements, evaluations).  We’re collaborating with CMU and others, and are looking for volunteers to create content in compatible Docker/OpenStack containers.

In addition to three other smaller CybSI projects, we’ll touch on the related IEEE Internet Initiative that has three pillars: governance, cybersecurity, and privacy.