Securing the Future

2 November New Babylon The Hague

keynote presentation by Chris Kruegel, Professor UC Santa Barbara,

Exploring Challenges and Opportunities for Research in Computer Security

In this talk, we look at emerging areas that might pose significant security and privacy threats in the future. Of course, it is tough to make predictions, especially about the future. However, looking at the typical technology lifecycle, we know that the wide adoption of new services and products trails initial R&D by several years. As a result, it is worth examining areas that are currently in an early adoption phase and that experience rapid growth. By foreseeing future threats, we can ensure that the necessary security mechanisms and policy frameworks are in place.

The talk cannot provide a complete coverage of all future threats. Instead, we will focus on a few areas that deserve particular attention. One example are the rise of ubiquitous, embedded systems, commonly referred to as the Internet of Things. Another example are attacks that do not target computers but the minds of computer users -- attempts to manipulate information to trick people into actions or beliefs that benefit the adversary. Finally, we will briefly discuss areas that are sometimes considered "solved" by the academic community, but that, in the real world, are major vectors for compromise. Advanced malware and targeted attacks are two such examples.

Christopher Kruegel is Professor in the Computer Science Department at the University of California, Santa Barbara. Currently, he serves as the Chief Scientist at Lastline, Inc. His research interests are computer and communications security, with an emphasis on malware analysis and detection, web security, and intrusion detection. Christopher has published more than 120 conference and journal papers. Christopher is a recent recipient of the NSF CAREER Award, the MIT Technology Review TR35 Award for young innovators, an IBM Faculty Award and several best paper awards. Moreover, he served as an associate editor for several journals and on program committees of leading computer security conferences, most recently as the program chair of the ACM Conference on Computer and Communications Security (CCS).