BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:Attacks and defenses in decentralised botnets - Shishir Nagaraja (
 University of Birmingham)
DTSTART:20120531T150000Z
DTEND:20120531T160000Z
UID:TALK36941@talks.cam.ac.uk
CONTACT:Eiko Yoneki
DESCRIPTION:As corporations\, agencies\, and individuals continue to inves
 t in national infrastructure trusting it to withstand cyber-attacks\, it i
 s important to ensure that the this trust is warranted. In this talk\, I w
 ill present ISP level countermeasures that localise bots based on the uniq
 ue communication patterns arising from their overlay topologies used for c
 ommand and control. I will also present schemes that allow ISPs to coopera
 tively detect botnet attacks and other network anomalies without leaking p
 rivate traffic information. Experimental results on synthetic topologies e
 mbedded within Internet traffic traces from an ISP's backbone network indi
 cate that our techniques (i) can localize the majority of bots with low fa
 lse positive rate\, (ii) are resilient to the partial visibility arising f
 rom partial deployment of monitoring systems\, and measurement inaccuracie
 s arising from partial visibility and dynamics of background traffic\, and
  (iii) are scalable enough to show good promise as a key element of a wide
 r network anomaly detection framework.\n\nMotivation:\nhttp://www.guardian
 .co.uk/technology/blog/2009/mar/29/dalai-lama-china-malware\nThe snooping 
 dragon: Social malware surveillance of the Tibetan movement http://www.cl.
 cam.ac.uk/techreports/UCAM-CL-TR-746.pdf\n\nTechnical paper:\nhttp://www.u
 senix.org/event/sec10/tech/full_papers/Nagaraja.pdf\n\nBio: Shishir Nagara
 ja is a researcher in network security and privacy. He holds the position 
 of a Lecturer at the University of Birmingham\, as well as concurrent appo
 intments as Adjunct Professor at the University of Illinois at Urbana-Cham
 paign\, USA and Assistant Professor at IIITD\, India. He holds a PhD in Co
 mputer Security from the University of Cambridge. He has worked in the sof
 tware industry for several years as a Software Engineer at Novell Bangalor
 e. He holds several patents in the area of trust and security.\n\n
LOCATION:SS03\, Computer Lab\, William Gates Building
END:VEVENT
END:VCALENDAR