The Intel Collaborative Research Institute for Secure Computing (Intel CRI-SC) is hiring!

2012/07/04 by Leave a Comment Print This Post Print This Post


Open Positions and QualificationsWe are searching for new talent at three levels of experience:

  • Research assistants: A research assistant (doctoral student) drives research in a well-defined area that is embedded in one of the three themes of our institute under the guidance of more senior researchers.
  • Post-docs:  A post-doc has finished its PhD/Dr. in computer security or a closely related field and has a proven research track record.  A post-doc will lead a team and take responsibility for research and technology transfer for one theme in our institute.
  • Research Staff Members:  A research staff member is a post-doc who who ideally has gathered additional experience in Industry. A RSM is responsible for the research strategy in one of our fields and needs to ensure that our research is in line with real-world needs and product roadmaps. He ensures that we maintain a sound balance between research and product impact.

All candidates should possess technical depth and research experience in the areas of operating systems and systems architecture. In addition, the candidate should possess in-depth knowledge of secure systems engineering. Familiarity with cryptography & related protocols, access control models, and secure OS is required. Technical breadth in the areas of Mobile and Embedded Systems architecture as well platform HW design experience is a strong plus.
The candidates should have strong communication and interpersonal skills. In particular he/she should be self-motivated, show initiative, and drive closure of technical issues. He/she should be able to present complex issues with clarity to drive decisions.
In particular senior candidates should be able to collaborate effectively with a diverse cross-organization team (comprising individuals from industry and academia). Prior experience and successful participation in cross-EU hardware security project is a strong plus.

The Intel Collaborative Research Institute for Secure Computing

The Institute is a research cooperation between Darmstadt Technical University and Intel Labs. It is lead by Prof. Ahmad Sadeghi and Dr. Matthias Schunter.  Its mission is to create advanced research that demonstrates how to dramatically advance the trustworthiness of an networked ecosystem of mobile devices. Through rapid time-to-market we will ensure that society will quickly benefit from these important and strategic results. We will focus on embedded and mobile systems

How to apply:

You can follow the instructions at our homepage (http://www.icri-sc.tu-darmstadt.de/) or you can apply for job #613470 at http://www.intel.com/jobs

 PDF Version

 

Filed under News & Events, Projects Tagged with , ,

Intel Collaborative Research Institute for Secure Computing (ICRI-SC) has been launched

2012/05/29 by Leave a Comment Print This Post Print This Post

I have the honor and pleasure to act as Chief Technologist and Principal Investigator for the  Intel Collaborative Research Institute for Secure Computing (ICRI-SC) that has been launched on May 23, 2012:

The semiconductor manufacturer Intel and the Technische Universität (TU) Darmstadt
 have opened the Intel Collaborative Research Institute for Secure Computing (ICRI-SC). This institute is the first Intel research center for IT security outside the USA and will be located at the Center for Advanced Security Research in Darmstadt (CASED). Research focuses on the security of embedded systems and mobile devices such as smartphones and tablets.

Intel Chief Technology Officer (CTO) Justin Rattner together with Steffen Saebisch, the State Secretary of the Hessian Ministry for Economics, Transport, Urban and Regional Development, and Dr. Manfred Effinger, Chancellor of TU Darmstadt, presented the new institute in the opening ceremony. The institute will be headed by the institute’s director Prof. Ahmad-Reza Sadeghi, who also holds the System Security chair at the TU Darmstadt, and by Dr. Matthias Schunter from Intel as its chief technologist.

”Modern IT systems have to be equipped with the highest security possible. This is ever more important because modern information and communication technologies are permeating as interdisciplinary technologies all industrial sectors and are thus becoming the motors for economic and social developments”, says Steffen Saebisch. “This transfer to products and processes is very important to us. The Hessian Ministry of Economy therefore supports the institute’s transfer activities with EU structural funds amounting to a total of 180,000 Euro over the next 3 years“.

The institute is already part of Intel’s new research strategy as of today: A worldwide network of academic research cooperations, the Intel Collaborative Research Institutes (ICRI). The ICRI program is based on the successful U.S.-based Intel Science and Technology Centers (ISTCs), and will bring together experts from academia and industry to help explore and invent in the next generation of technologies that could impact the lives of many in the future. “Forming a multidisciplinary community of Intel, faculty and graduate student researchers from around the world will lead to fundamental breakthroughs in some of the most difficult and vexing areas of computing technology.”, said Intel CTO Justin Rattner.

“The Future IT technology will be one in which many hidden processors will provide users over a distributed operating system, a sort of “Super-Cloud”, with various services and business models: from the ’cloud of devices‘ up to car-to-x communication“, says the institute’s director Ahmad-Reza Sadeghi. „In Darmstadt Intel’s scientists and we will be looking for new for new ways to improve significantly the reliability of mobile devices, embedded systems and connected ecosystems“.

Intel and the Technische Universität Darmstadt will explore ways to dramatically advance the trustworthiness of mobile and embedded devices and ecosystems. For example, the joint research will seek ways to develop secure, car-to-device communications for added driver safety; new approaches to secure mobile commerce, and a better understanding of privacy and its various implementations. By grounding the research in the needs of future users, the institute will then research software and hardware to enable robust, available, survivable systems for those use cases.

 

Filed under News & Events, Projects Tagged with ,

New Challenges @Intel ahead…

2012/02/29 by Leave a Comment Print This Post Print This Post

After more than 10 very interesting and successful years at IBM Research – Zurich, I opted for a change and accepted a new challenge!

On June 01, 2012, I plan to join Intel Research in order to co-lead the Intel Collaborative Research Institute for Secure Computing (SCRI-SC). Besides doing research on my own, my main mission as Chief Technologist and Principal Investigatar is to align the research with the long-term vision and mid-term needs of Intel while managing the transfer of innovation from the center back into Intel’s products and services.

Filed under News & Events, Projects

Publication: Secure Cloud Maintenance – Protecting workloads against insider attacks

2012/03/02 by Leave a Comment Print This Post Print This Post

Our research on reducing insider threats for clouds has been accepted at AsiaCCS 2012:

Secure Cloud Maintenance – Protecting workloads against insider attacks
Sören Bleikertz, Anil Kurmus, Zoltan A. Nagy, and Matthias Schunter
ASIACCS 2012: ACM Symposium on Information, Computer and Communications Security

The submission version can be found here.

Abstract

Malicious insiders are a substantial risk for today’s cloud computing infrastructures. A single malicious cloud administrator can eavesdrop or damage business-critical or personally identifiable information and computations of thousands of cloud customers. To protect cloud users against such insiders, we propose a novel approach that enables a security team to protect privacy and integrity of cloud users’ workloads against attacks by system administrators during operation and maintenance. We achieve this by managing the privileges of administrators during operation and maintenance while re-establishing the security of a compute node once administration is completed. By default, administrators’ access to cloud servers is disabled since cloud operation is automated. For manual maintenance operations, we propose five fine-grained privilege levels that balance the security objectives of cloud users with the operational requirements of cloud administrators. We demonstrate how existing cloud architectures need to be extended to incorporate our approach.We prototyped our management approach using the OpenStack cloud platform. Policy enforcement has been prototyped by leveraging SELinux type enforcement in the KVM compute nodes, in order to demonstrate the practical feasibility of our approach.

Filed under Publications Tagged with , ,

CfP: ACM Symposium on Cloud Computing

2012/02/03 by Leave a Comment Print This Post Print This Post

I’ll participate in program committee of the 2012 ACM Symposium on Cloud Computing.

The ACM Symposium on Cloud Computing 2012 is the third in a new series of symposia that brings together researchers, developers, users, and practitioners interested in cloud computing. Co-sponsored by the ACM Special Interest Groups on Management of Data (SIGMOD) and on Operating Systems (SIGOPS), SoCC 2012 will take place from October 14th-17th in San Jose, CA. For the first time, ACM SoCC 2012 is being held independently, recognizing the growing research fertility and societal/commercial importance of cloud computing. (SoCC was previously held in conjunction with the SIGMOD and SOSP).

SOCC Logo

Important dates are:

Abstracts due: June 8, 2012
Papers due (submit here): June 15, 2012
Accepted papers notified: September 3, 2012
Camera ready copy due: September 28, 2012
Conference: October 14-17, 2012

Filed under Conferences Tagged with , , ,

3rd Face2Face of the W3C Do-Not-Track

2012/01/30 by Leave a Comment Print This Post Print This Post

On Jan 24 – Jan26 we had a very successful W3C DNT meeting with approx 40 attendants at the European Commissions headquarters in Brussels:

  • The meeting has been kicked off by by John Leibowitz (chairman of the US Federal Trade Commission; transcript)
  • Dr. Carl-Christian Buhr from the cabinet of Neelie Kroes introduced the EU perspective and brought this video message on Do Not Track from Neelie Kroes
  • The Art 29 group formally send Rob van Eijk as their delegate to our team
  • Members from the FTC as well as the EC attended large portions of the meeting.
  • We achieved wide attendance including (but not limited to) Adobe, Apple, CDT, Google, Microsoft, Mozilla, NAI, Opera, Paypal, W3C, and Yahoo.

We made substantial progress, have discussed and assigned all open issues (and closed many), and are now working on creating the corresponding text.

We were impressed by the wide coverage and the open and collaborative atmosphere that allowed us to achieve this progress.

More information can be found at the W3C Blog.

Filed under Projects Tagged with , ,

CfP: The 2nd Int. Workshop on Dependability of Clouds, Data Centers and Virtual Machine Tech (DCDV 2012)

2012/01/29 by Leave a Comment Print This Post Print This Post

I’ll participate in the Program Committee of DCDV 2012. Topics of particular interest include, but are not limited to:

  • Architecture and design of clouds and data centers for dependability
  • Faults, failure diagnosis, and recovery issues in clouds and data centers
  • Dependability challenges and solutions for cloud users and cloud providers
  • Dependability and security of virtual machine and multicore technology
  • Dependability metrics, analysis, and evaluation for clouds and data centers
  • Assured services, protocols and standards for clouds
  • Dependability benchmarking and measurements in clouds and data centers
  • Security and privacy issues in clouds and data centers
  • Sustainability issues and energy management in clouds/data centers
  • Trust, policy management and regulatory compliance issues

IMPORTANT DATES

  • Paper submission: Mar. 15, 2012
  • Acceptance notification: Apr. 15, 2012
  • Camera-ready version: May. 01, 2012
  • Workshop: June 25, 2012

The full Call for Papers can be found at http://www.cse.ust.hk/DCDV2012/cfp.html

Filed under Conferences Tagged with , ,

Publication: Article on “Clouds you can trust” in IEEE Spektrum

2011/11/30 by Leave a Comment Print This Post Print This Post

Christian Cachin and I published an overview on trusted clouds at IEEE Spektrum:

Christian Cachin, Matthias Schunter: A Cloud You Can Trust -
How to ensure that cloud computing’s problems—data breaches, leaks, service outages—don’t obscure its virtues, IEEE Spektrum, December 2011, pp 28-51.

Read it online at
http://spectrum.ieee.org/computing/networks/a-cloud-you-can-trust/0

Filed under Publications Tagged with ,

CfP: 9th International Conference on Trust, Privacy & Security in Digital Business (TrustBus 2012)

2011/11/22 by Leave a Comment Print This Post Print This Post

I’ll participate in the program committee of TrustBus 2012. The Call for papers can be found at http://www.ds.unipi.gr/trustbus12/CfPTrustBus2012.pdf:

Important Dates

Submission deadline : April 6, 2012
Notification to authors: May 11, 2012
Camera-ready version: June 10, 2012

Filed under Conferences Tagged with ,

CfP: 5th International Conference on Trust and Trustworthy Computing (Trust 2012)

2011/11/22 by Leave a Comment Print This Post Print This Post

I’ll participate in the Program Committee of Trust 2012. The Call for Papers can be found at http://trust.sba-research.org/CFP.html (as PDF)

TRUST 2012 is an international conference on the technical and soci-economic aspects of trustworthy infrastructures. It provides an excellent interdisciplinary forum for researchers, practitioners, and decision makers to explore new ideas and discuss experiences in building, designing, using and understanding trustworthy computing systems.

Important dates are

  • Submission due: 15 February 2012
  • Notification: 25 March 2012
  • Camera ready: 09 April 2012
  • Conference: 13-15 June 2012

 

Filed under Conferences Tagged with ,

Older posts