Yehuda Afek
Wednesday, December 11, 2019 at 2:00 PM in 373 Soda Hall
Title: White list-based IoT Security as a Managed Service
Abstract: Computer networks have undergone and continue to experience a major transformation, whereby billions of low-cost devices are being connected to the network to provide additional functionality and better user experience. Unlike traditional network devices, these devices, collectively known as the ``Internet of Things'' (IoT), typically have very limited computational, memory, and power resources. These IoT devices became a major security concerns, both due to human factors and to technical challenges in deploying security mechanisms on devices with low resources. The number and diversity of IoT devices creates a huge attack surface that is often exploited by attackers to launch large-scale attacks, sometimes exploiting well-known vulnerabilities. This talk will highlight the security concerns of IoT devices from a networking perspective and explore how to secure IoT devices using whitelists, in which communication between a device and an endpoint is prohibited unless that endpoint appears in the corresponding whitelist. Finally, we will discuss deployment options for such a solution (namely, within the internet gateway, as virtual network function within the ISP network, or a combination of the two).
Bio: B.A.in EE, Technion, M.Sc and Ph.D. in CS, UCLA 1983 and 1985. Member of Technical Staff at AT&T Bell-Labs 1985-88. Faculty of CS in Tel-Aviv University 1988-present. In 2001 he co-founded Riverhead Networks, developed the DDoS Guard enabling clean pipes mitigation of Distributed Denial of Service attacks on the Internet. Worked with tier one providers such as AT&T to start and design clean pipes managed service. Riverhead was acquired by Cisco in 2004, 2004-2009 Director of Technology in Cisco. Head of the Blavatnik School of Computer Science Tel-Aviv University 2014-16.