Software Engineering Institute

In this presentation, Greg Shannon discusses the goals of the IEEE Cybersecurity Initiative (CybSI) to accelerate innovative research, development, and the use of efficient cybersecurity and privacy technologies that protect commerce, innovation, and expression.

As highlighted at the White House Summit on Cybersecurity and Consumer Protection, cyber security & privacy (S&P) are pervasive and growing concerns that affect individuals, companies, and nations.  Many IEEE members created, sustained, and grew the Internet, and IEEE has a decades-long history of forming and leading technical communities dedicated to engineering a cyberspace that provides security and privacy.  To more directly address these challenges, IEEE has launched a multi-year Cybersecurity Initiative (CybSI); its goal is to accelerate innovative research, development, and use of efficient cybersecurity & privacy technologies that protect commerce, innovation, and expression.

The first project, started last year, is the IEEE Center for Secure Design, which has published a document on avoiding common design flaws, which complements the usual approach of finding bugs that are vulnerabilities.

This year’s new project, currently called try-cybsi, uses cloud-based, browser-accessible, virtualized containers (see try41 on GitHub) to archive, curate and present cyber security & privacy technical artifacts (code, data, results, exploits, etc.) and high-fidelity technical experiences of those artifacts (examples, demos, experiments, measurements, evaluations).  We’re collaborating with CMU and others, and are looking for volunteers to create content in compatible Docker/OpenStack containers.

In addition to three other smaller CybSI projects, we’ll touch on the related IEEE Internet Initiative which has three pillars: governance, cybersecurity, and privacy.