[Cyber Security reading group] Next events

Story H.J. H.J.Story at soton.ac.uk
Wed Jun 27 12:17:16 BST 2018 


On 27 Jun 2018, at 09:00, Andrea Margheri <A.Margheri at soton.ac.uk<mailto:A.Margheri at soton.ac.uk>> wrote:

Dear all,
just to let you know that Henry’s slides are available in the shared folder. Thanks Henry for the useful notes you made.

Henry will be around till next Wed., don’t hesitate to drop him an email to arrange a chat.

Thanks Andrea for your invitation to speak,

I welcome all feedback, and would be happy to meet up.
I have put the slides up on my server too so that I can add improvements
  http://bblfish.net/blog/2018/06/25/

Let me know what security issues you see with this proposal, or you think I need
to address if I am going to convince the larger cyber security community.

Intuitively the linked chain of trust seems secure. But to go beyond that I was
starting to look into a category theoretic model of the web, in order to see if
one can prove this to be secure or at least make the concepts as clear as possible.

The difficulty in security is to prove a negative: "what are the unknown attacks
that could be used against this?" An important question but one that risks leading
to complete skepticism. (Which is why I have started to build up a parallel with
epistemology [1]). Because one can always find attacks, and this needs to be
balanced with the question as to how vulnerable one is without the feature.

Perhaps there are formal methods you think it would be helpful to look at?
I was going to start looking at logic as game theory too.

Henry

[1] http://bblfish.net/blog/2018/04/21/


Cheers,
Andrea



On 24 Jun 2018, at 08:45, Story H.J. <H.J.Story at soton.ac.uk<mailto:H.J.Story at soton.ac.uk>> wrote:

Thanks Andrea,

   I have changed the angle a little and will try to look at this from the perspective
of a way to address the 6x increase in https based phishing reported by
Anti Phishing Working Group in the year 2016-2017, as I think this makes it
of direct relevance to the current cyber security discussion (I may be wrong).

See my Tweet to Wendy Hall and Ben Laurie
   https://twitter.com/bblfish/status/1010783341627441152

I hope that you'll all be able to test this idea out enough in questions so that
the idea survives, I'll be able to write a very impactful blog post on the
cybsecsoton page.

Henry
PS. There should be a PhD by blog option :-)

On 22 Jun 2018, at 13:19, Andrea Margheri <A.Margheri at soton.ac.uk<mailto:A.Margheri at soton.ac.uk>> wrote:

Dear all,
please find below the info on Henry’s talk

Title: The (World Wide) Web of Trust
Abstract: The Web of Trust concept has mostly been associated with PGP and has not succeeded: the criteria of success being that it should be used by everyone every day.
I will describe why the PGP WoT failed, and how one can build an
institutional web of trust based on W3C standards anchored in a web of nations,
in a way that this can be embedded into browsers chrome, whilst respecting the
Sovereignty of nations so as to get their full support.

When: Monday 25th June, 3:30 PM
Where: Demo Room R4240 B59

Have a nice week-end

Cheers,
Andrea

On 19 Jun 2018, at 11:24, Andrea Margheri <A.Margheri at soton.ac.uk<mailto:A.Margheri at soton.ac.uk>> wrote:

Dear all,
this a remainder of the forthcoming event

1. Monday 25th June 3:30PM (Demo room) - Henry’s presentation on his current phd research [Henry finalised the 9-month report and is now working on the next]

2. Tuesday 26th June  2:00PM (Hartley Suite B38) - Internal Launch event of the C-IoT centre. Posters of the group will be presented.

3. Tuesday 3rd July 2:00PM (Hartley Suite B38) - IoT Security event. Industry talks and poster presentation. Registration needed at this link https://www.eventbrite.co.uk/e/c-iot-afternoon-on-iot-security-tickets-46720929558


Cheers,
Andrea


--
Andrea Margheri
Senior research fellow
Cyber security
University of Southampton






Please note: Cyber Security Reading Group is presently run by Aneesha Sethi and Andrea Margheri. The events run as part of this group are sponsored by Cyber Security Academy.
_______________________________________________
Cyber-reading mailing list
Cyber-reading at ecs.soton.ac.uk<mailto:Cyber-reading at ecs.soton.ac.uk>
http://mailman.ecs.soton.ac.uk/mailman/listinfo/cyber-reading


Please note: Cyber Security Reading Group is presently run by Aneesha Sethi and Andrea Margheri. The events run as part of this group are sponsored by Cyber Security Academy.
_______________________________________________
Cyber-reading mailing list
Cyber-reading at ecs.soton.ac.uk<mailto:Cyber-reading at ecs.soton.ac.uk>
http://mailman.ecs.soton.ac.uk/mailman/listinfo/cyber-reading


-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ecs.soton.ac.uk/pipermail/cyber-reading/attachments/20180627/551a148b/attachment.html

More information about the Cyber-reading mailing list