Craig Shue is an assistant professor in the Computer Science Department and the Cyber Security Program at the Worcester Polytechnic Institute. He is co-director of WPI's Scholarship for Service Program, an NSF-funded cyber security scholarship program. Prior to joining WPI, Craig worked as a cyber security research scientist in the Cyber and Information Security Research Group at the Oak Ridge National Laboratory. He continues to collaborate with Oak Ridge as a Joint Faculty Appointee. Craig earned his B.S. in Computer Science from Ohio University in 2004 and his M.S. and Ph.D. in Computer Science from Indiana University in 2006 and 2009, respectively. His research interests are in networking, security, and systems.
Organizations are under constant attack and occasionally their computer systems are compromised by an adversary. For example, phishing and drive-by downloads attacks can be used to gain access into a network that is otherwise fortified. Healthcare networks following best practices, such as least-user privilege, can limit these attacks to a single user-level account and prevent a system-wide or kernel-level compromise. However, even these user-level compromises can be challenging to mitigate.
This talk will discuss ways to improve computer network security by making it easier to understand an enterprise network's traffic and detect activity that may be due to malware or a network intrusion. This session will describe ways to enhance networks with techniques from the software-defined networking field to get deeper insight and to distinguish user traffic from attacks.