Current research projects at LAS-IC-Unicamp

Friday, September 26, 2008 - 10:04am


      WEDNESDAY, OCTOBER 1, 2008
      3:30 – 4:30
      Computer Science Conference Room, Harold Frank Hall Rm. 1132


      SPEAKER: Paulo Licio de Geus
      Instituto de Computa̤̣o РUNICAMP

      Title: Current research projects at LAS-IC-Unicamp


      At the System Administration and Security Laboratory I currently run two
      main projects in computer security.

      The first one is about managing the configuration of security services,
      using the approach of Model-Based Management and and associated tool,
      MoBaSeC. Network security administrators need to design security into
      their networks by choosing convenient network topologies and by
      scrutinizing network traffic and application data flow. With this
      project we are able to start from security policies and refine them with
      the associated tool, so that in the final step configuration files for
      security services are automatically generated, in a correct way. The
      security administrator no longer has to master a number of security
      application types and possibly multiple, different implementations of
      the same kind, which is typical of large networks. Effectively, the
      security administrator is then able to compile security policies into
      security-application configuration files.

      The Imuno project aims to develop a computer security system that is
      inspired on the human immune system. I will first present motivations,
      then briefly introduce how the human immune system works and its analogy
      to computer security techniques, followed by the initial modelling and
      prototype results. Then I will present the Imuno framework developed for
      the Linux kernel.

      Bio: Paulo Lício de Geus is a professor with the Institute of Computing
      at the State University of Campinas, Campinas SP, Brazil (IC-Unicamp),
      since 1984. Research interests include network and system security and
      administration, particularly on firewalls, network security management
      and computer security immune systems.