Developing Our Capability in Cyber Security

Total Page:16

File Type:pdf, Size:1020Kb

Developing Our Capability in Cyber Security Developing our capability in cyber security Academic Centres of Excellence in Cyber Security Research Updated July 2020 2 Developing Our Capability in Cyber Security Developing Our Capability in Cyber Security 3 Contents Developing our knowledge and capability to secure cyber space Ministerial Foreword: Jeremy Fleming, Director, GCHQ .......................................................................3 Much has changed since the and recognition of the UK’s academic research first Academic Centres of excellence on an international stage. The ACE- Academic Centres of Excellence in Cyber Security Research .............................................................4 Excellence in Cyber Security CSR universities are testament to what can be Key areas of expertise and specialism ................................................................................................5 Research (ACE-CSR) call was achieved when the public, private and academic launched in late 2011. The UK’s sectors unite to achieve a common goal. It is University of Birmingham ....................................................................................................................8 first National Cyber Security this sense of innovation, enthusiasm, shared Strategy was in its infancy; endeavour and deep expertise which is the University of Bristol ........................................................................................................................... 10 the concept of a National Cyber Security Centre hallmark of the ACE-CSR community. (NCSC) had not even been conceived, and cyber University of Cambridge ................................................................................................................... 12 security research in UK universities was often I would like to thank colleagues in the NCSC Cardiff University .............................................................................................................................. 14 fragmented along the fault lines of academic and our partners in the Engineering and Physical disciplines. Sciences Research Council (EPSRC) for their De Montfort University ...................................................................................................................... 16 collaboration and leadership in this space. I am Fast forward to 2020, two successive Cyber grateful to industry leaders who continue to look University of Edinburgh ..................................................................................................................... 18 Security Strategies and a decade of sustained for ways to harness academic research, support government investment have seen the UK researchers and develop our research base. Imperial College London ...................................................................................................................20 develop into an international Cyber Power. And finally, I would like to thank and congratulate University of Kent .............................................................................................................................22 This has led to enormous advances in the the Vice Chancellors and their senior leaders for nation’s ability to benefit from the opportunities their continued investment in and support of the King’s College London ..................................................................................................................... 24 of new technologies and in keeping its citizens ACEs-CSR within their universities, as well as all safe online. The NCSC has played a central role the academic and support staff for their ongoing University of Lancaster .....................................................................................................................26 in that and is now a thriving organisation, with a dedication to this important discipline. broad customer base and a record of innovative Newcastle University ........................................................................................................................28 ways of working, backed by deep expertise. The challenges facing us are immense, Northumbria University .....................................................................................................................30 but the excellence demonstrated by the ACE- In 2012, an initial group of eight universities CSR universities gives me confidence we are in University of Oxford ..........................................................................................................................32 were recognised as Academic Centres of a strong position to build on the success to date Excellence in Cyber Security Research. and cement the UK’s position as a world leader Queen’s University Belfast ................................................................................................................34 This has now grown to an active community in creating a safe, resilient and prosperous of 19 universities encompassing hundreds of cyber nation. Royal Holloway, University of London ...............................................................................................36 academics and spanning disciplines as diverse University of Southampton ...............................................................................................................38 as computer science, engineering, psychology, sociology, maths, law and humanities. University of Surrey...........................................................................................................................40 The impact of their work has been far-reaching: University College London ................................................................................................................42 from expert academic input to government policy, to training the next generation of University of Warwick .......................................................................................................................44 Jeremy Fleming, researchers through vibrant Doctoral training Director GCHQ Contact Address Book ..................................................................................................................... 47 programmes; from the establishment of mutually beneficial partnerships between ACEs-CSR Glossary of terms ............................................................................................................................. 51 and private sector companies, to the promotion 4 Developing Our Capability in Cyber Security Developing Our Capability in Cyber Security 5 Academic Centres of Key areas of expertise Excellence in Cyber and specialism Security Research Page Name of centre Key Areas of expertise/specialism 08 - 09 University of Birmingham • Design of secure systems • Security of embedded systems Academic Centres of Excellence in Cyber Developing our capability in • Cloud computing security • Privacy technologies for individuals Security Research (ACEs–CSR) have been cyber security • Network security and malware part of the UK Government’s National Cyber • Analysis and verification of systems Security Strategies since 2011 and continue By recognising the ACEs-CSR, the UK 10 - 11 University of Bristol • Cryptography to play a key role in helping Government make Government aims to: • Cyber-Physical Systems • Human Factors the UK secure and resilient in cyberspace. • Adversarial Behaviours • Enhance the quality and scale of academic • Privacy & Online Rights The ACEs–CSR are based at UK universities cyber security research and postgraduate • Network Security • Software Security which have been recognised as having an training undertaken in the UK. • Secure Software Lifecycle established critical mass and pedigree of good • Hardware Security quality cyber security research. The initiative • Make it easier for potential users of research • Risk Management & Governance is led by the National Cyber Security Centre to identify the best cyber security research 12 - 13 University of Cambridge • Socio-technical security, including human factors, user authentication, education (NCSC), which is a part of GCHQ and is the UK’s and postgraduate training that the UK has • Hardware security and anti-tampering Technical Authority for cyber security, and the to offer. • Network and operating system security Engineering and Physical Sciences Research • Strategic technologies including processors, architectures, compilers, operating systems Council (EPSRC), which is a part of UK Research • Develop a shared vision and objectives • Methodologies including static and dynamic analysis and Innovation (UKRI). among all those involved in cyber security • Cybercrime, frauds and phishing • Privacy and anonymisation research in the UK. • Compromising electromagnetic emanations From small beginnings, the community of ACEs- 14 - 15 Cardiff University • Artificial Intelligence-driven Security Operations CSR has grown to 19 universities which regularly • Showcase UK academia’s internationally- & Incident Management meet, hold conferences, collaborate, challenge leading research expertise. • Malware & Attack Technologies • Risk Management & Governance and support one another. In partnership with • Human Factors – susceptibility, individual differences and public and private sector organisations, our aim This document contains details of all 19 organised cybercrime is to build and maintain a flourishing community ACEs–CSR and is intended to be a useful • Privacy and Online Rights • Web Security of commissioners, producers
Recommended publications
  • Techne, Technology, and the Refashioning of Contemporary Memory Kimberly Lacey Wayne State University
    Wayne State University Wayne State University Dissertations 1-1-2011 Making memory: techne, technology, and the refashioning of contemporary memory Kimberly Lacey Wayne State University, Follow this and additional works at: http://digitalcommons.wayne.edu/oa_dissertations Part of the Databases and Information Systems Commons, Other Communication Commons, and the Rhetoric Commons Recommended Citation Lacey, Kimberly, "Making memory: techne, technology, and the refashioning of contemporary memory" (2011). Wayne State University Dissertations. Paper 246. This Open Access Dissertation is brought to you for free and open access by DigitalCommons@WayneState. It has been accepted for inclusion in Wayne State University Dissertations by an authorized administrator of DigitalCommons@WayneState. MAKING MEMORY: TECHNE, TECHNOLOGY, AND THE REFASHIONING OF CONTEMPORARY MEMORY by KIMBERLY LACEY DISSERTATION Submitted to the Graduate School of Wayne State University, Detroit, Michigan In partial fulfillment of the requirements for the degree of DOCTOR OF PHILOSOPHY 2011 MAJOR: ENGLISH (Composition Studies) Approved by: ____________________________________ Advisor Date ____________________________________ ____________________________________ ____________________________________ ____________________________________ © COPYRIGHT BY KIMBERLY LACEY 2011 All Rights Reserved DEDICATION To Mom and Dad ii ACKNOWLEDGEMENTS Remembering to thank everyone who helped me write a dissertation about memory seems a little too cutesy for my tastes, but I want to be sure to give a few shout- outs to those who, without their encouragement, I could not have made it this far. First, I’d like to thank Richard Marback for his honest and helpful advice at every step of the process. I became a stronger and more confident writer, researcher, and professional because of his help, and I am gratefully indebted to him for that.
    [Show full text]
  • Is Digital Hoarding a Mental Disorder? Development of a Construct for Digital Hoarding for Future IS Research Completed Research Paper
    Development of a Construct for Digital Hoarding Is Digital Hoarding a Mental Disorder? Development of a Construct for Digital Hoarding for Future IS Research Completed Research Paper Darshana Sedera Sachithra Lokuge Monash University Monash University Caulfield, Melbourne, Australia Caulfield, Melbourne, Australia [email protected] [email protected] Abstract By the time you finish reading this paper, approximately in 90 minutes, over 150,000 TB of new data will be created in the world (IBM 2017). The advent of digital devices such as smart mobile phones, wearables, the engagement in social media networks and content sharing platforms, the growth of digitized personal and business interactions and the access to free or affordable digital storage have increased the propensity of an individual to acquire and store digital content without carefully considering its repercussions. This research posits that this increasingly common behavior can lead to a condition that parallels the hoarding disorder, called digital hoarding. The study defines digital hoarding as the acquisition of and failure to discard or effectively manage digital content regardless of its use, leading to the accumulation of digital clutter. The paper conceptualizes digital hoarding as a composite construct. Using a sample of 846 individuals, the study makes valuable insights on digital hoarding and how it could lead to personal stress. Keywords: Digital Hoarding, Hoarding Disorder, Survey, Personal stress Introduction The proliferation of devices such as smart mobiles, drones, lifestyle digital cameras (e.g., go-pro) has provided us with much potential to obtain and collect digital content. The availability of digital media and affordable storage options have opened new avenues for individuals to accumulate a morass of documents, music files, pictures, videos, emails and web pages (Beck 2012).
    [Show full text]
  • Wa Atsa 2017
    2/10/17 #digitaldeviance Assessment, Management and Treatment of Sex Offenders Online David Delmonico, PhD Elizabeth Griffin, MA 412-396-4032 952-451-0771 [email protected] [email protected] ` www.internetbehavior.com/watsa2017 Questions? Considerations • Terminology – Cybersex – Cybersex Compulsivity – Cybersex Addiction – Problematic Online Sexual Behavior – Out of Control Online Sexual Behavior – Online Sex Offenders vs Sex Offenders Online • Child Porn – Child Sexual Abuse Images or Child Victim Image Treatment • CSAI Word Web • CP vs CSAI – What is your emotional response? – Explain how you would define the difference? – Which is more difficult to use and why? • What types of images did you view 1 2/10/17 Online Offending (Seto 2013) • Online sexual offending is another version of contact sexual offending • Online sexual offending is the result of factors associated with problematic Internet use • Online sexual offending is the result of factors associated with sexual addiction/sexual compulsivity/ hypersexuality • Online sexual offending is a new form of sexual offending that requires the development of new explanatory models TQ Lesson • Social Media – Facebook • Looking for Pics • Facebook Groups – Communicating/Sharing CP – Twitter/Yik Yak – Snapchat (Sneak a Boo) – YouNow Risk/Needs/Responsivity • Risk/Needs/Responsivity Principles – Level of Risk • The intensity of the intervention (resources) should be matched to the level of risk posed by the clients – Resource Demand Level (RDL) (Delmonico and Griffin 2013) – Criminogenic Needs of Offending • The most effective interventions (resources) are those that target offenders’ criminogenic needs or dynamic risk factors. Can be changed through intervention, and when changed, are associated with changes in risk and recidivism.
    [Show full text]
  • The Dark Data Quandary
    American University Law Review Volume 68 Issue 3 Article 2 2019 The Dark Data Quandary Daniel J. Grimm Georgetown University Law Center Follow this and additional works at: https://digitalcommons.wcl.american.edu/aulr Part of the Internet Law Commons Recommended Citation Grimm, Daniel J. (2019) "The Dark Data Quandary," American University Law Review: Vol. 68 : Iss. 3 , Article 2. Available at: https://digitalcommons.wcl.american.edu/aulr/vol68/iss3/2 This Article is brought to you for free and open access by the Washington College of Law Journals & Law Reviews at Digital Commons @ American University Washington College of Law. It has been accepted for inclusion in American University Law Review by an authorized editor of Digital Commons @ American University Washington College of Law. For more information, please contact [email protected]. The Dark Data Quandary This article is available in American University Law Review: https://digitalcommons.wcl.american.edu/aulr/vol68/ iss3/2 ARTICLES THE DARK DATA QUANDARY DANIEL J. GRIMM* The digital universe remains a black box. Despite attaining high-technology capabilities like artificial intelligence and cognitive computing, “Big Data” analytics have failed to keep pace with surging data production. At the same time, the falling costs of cloud storage and distributed systems have made mass data storage cheaper and more accessible. These effects have produced a chasm between data that is stored and data that can be readily analyzed and understood. Enticed by the promise of extracting future value from rising data stockpiles, organizations now retain massive quantities of data that they cannot presently know or effectively manage.
    [Show full text]
  • Hoarding the Ethereal: How We Have More Things (And More Problems) but with Less Clutter by Gayle Gatchalian
    Gatchalian, Digital hoarding DRAFT: Hoarding the ethereal: How we have more things (and more problems) but with less clutter By Gayle Gatchalian ―21st century minimalism‖ may find a metaphorical equivalence to Martin Luther‘s 95 theses, a radical reaction to the excess of information in the 21st century as much as the 95 theses were a reaction to the excesses of religious authority in the 16th. Our world is one of informational abundance. There are more books, television shows, websites, and all sorts of other media messages, created every second than we can process in ten lifetimes, so 21st century minimalism emerges as a counter to this deluge. Adam Boettiger, a digital marketing veteran is writing a book entitled ―Digital Minimalism‖ and put the sentiment behind the movement quite aptly: ―In a World of More, Better, Faster, Cheaper, Less is More. Less is Better‖1. But why is less better? Kelly Sutton, founder of the website CultofLess.com which wasmade famous by a BBC News feature, said simply that ―I‘ve found that more stuff equates to more stress. Each thing I own came with a small expectation of responsibility‖2. At bottom, the essence of 21st century minimalism is a simple attempt to simplify life, to recover a sense of control from the inundation of information. Now that Kelly Sutton has divested himself of his possessions save two boxes and two suitcases, is his life infinitely simpler than before? While the project of reducing the clutter of one‘s property is a minimalist endeavor, it appears to skip an essential component of purging one‘s property.
    [Show full text]
  • Perfectionism As a New Technology Driven Mental Disorder
    Perfectionism as a new technology driven mental disorder Flaws in Flawlessness: Perfectionism as a New Technology Driven Mental Disorder Completed Research Paper Darshana Sedera Sachithra Lokuge Southern Cross University RMIT University Gold Coast, Australia Melbourne, Australia [email protected] [email protected] Abstract Today, technologies, devices and systems play a major role in our lives. Anecdotal commentary suggests that such technologies and our interactions with them create a false sense of perfectionism about life, events and its outcomes. While it is admirable to strive for better outcomes; constant and sometimes unrealistic expectations create a psychological condition commonly known as ‘Perfectionism’– the fear of not doing something right or the fear of not being good enough. In this paper, based on the Diagnostic Statistical Manual of Mental Disorders (DSM-III), we conceptualize ‘digital perfectionism’ as an emerging disorder, that is specific to our increasing interactions with tools and technologies. By using a sample of 336 individuals, this study makes valuable early insights on digital perfectionism, its conceptualization and its effects on the individuals. Keywords: Digital perfectionism, dark side of IT, Atelophobia, survey Introduction Since the dawn of civilization, individuals are relentlessly attempting to improve themselves and how others perceive them (Chua and Chang 2016; Salleh et al. 2009). In such endeavors, information technologies (IT) play a major role in mimicking nearly all daily activities of one’s life, ranging from personal events to professional activities (Carter and Grover 2015; Chua and Chang 2016). Therein, the information systems (IS) scholars highlight the role of technologies in providing individuals with a plethora of technology options to increase their productivity, efficiency, minimize errors, increase quality of outcomes, manage and track their engagements (Yoo 2010).
    [Show full text]
  • AIDAS - (E - Afk.) - RICE - (E - Afk.) - Exception Handling - (E - St
    mei 2019 mei 2019 april 2019 - ADM - (E - afk.) - Reliable, Innovative, Creative & - Ethics of Recommendation - (E - - Adoption - (E - zn. ev.) Entrepreneurial - (E - st. ev.) st. mv.) - AIDAS - (E - afk.) - RICE - (E - afk.) - Exception handling - (E - st. ev.) - Analysetool - (E - zn. ev.) - Robustness - (E - zn. ev.) - File management system - (E - st. ev.) - Analysis of Interconnected - Self-documentation - (E - st. ev.) - Decision Areas - (E - st. ev.) - Te Ontwikkelen Item - (NL - st. Functional entity - (E - st. ev.) - Architecture Development - (E - ev.) - Gebruiksovereenkomst - (NL - st. ev.) - Technical Protecion zn. ev.) - Autoriteitturbulentie - (NL - zn. Mechanism - (E - st. ev.) - HFMS - (E - afk.) ev.) - Technological Readiness Level - - Hierarchical file management - Beveiligingsincident - (NL - zn. (E - st. ev.) system - (E - st. ev.) ev.) - Telkaart - (NL - zn. ev.) - Improve - (E - ww.) - Breakdown Structure - (E - st. - TOI - (NL - afk.) - Information collection - (E - st. ev.) - TRL - (E - afk.) ev.) - Complexity - (E - zn. ev.) - Turbulentie - (NL - zn. ev.) - Information property - (E - st. ev.) - Dequisitie - (NL - zn. ev.) - Virtuele bibliotheek - (NL - st. ev.) - Information property description - (E - st. ev.) - DERA - (NL - afk.) - Virtuele collectie - (NL - st. ev.) - Ingest functional entity - (E - st. - Digitaal Erfgoed Referentie - Wangedrag - (NL - zn. ev.) Architectuur - (NL - nnr.) ev.) - WBS - (E - afk.) - Ethics Bluewashing - (E - st. ev.) - Intact - (NL - bv.) - Work Breakdown Structure - (E - - Ethics Dumping - (E - st. ev.) - Inter-proces communication - st. ev.) (E - st. ev.) - Ethics Lobbying - (E - st. ev.) - ISO 14721:2002 - (E - nnr.) - Ethics Shirking - (E - st. ev.) april 2019 - ISO 14721:2012 - (E - nnr.) - Ethics Shopping - (E - st. ev.) - Access functional entity - (E - st. - Lange termijn - (NL - st. ev.) - Fast Moving Consumer Goods - ev.) - (E - st.
    [Show full text]
  • From Personal Data to Digital Legacy: Exploring Conflicts in the Sharing, Security and Privacy of Post-Mortem Data
    Northumbria Research Link Citation: Holt, Jack, Nicholson, James and Smeddinck, Jan (2021) From Personal Data to Digital Legacy: Exploring Conflicts in the Sharing, Security and Privacy of Post-mortem Data. In: WWW '21: Proceedings of the Web Conference 2021. Association for Computing Machinery, New York, pp. 2745-2756. ISBN 9781450383127 Published by: Association for Computing Machinery URL: https://doi.org/10.1145/3442381.3450030 <https://doi.org/10.1145/3442381.3450030> This version was downloaded from Northumbria Research Link: http://nrl.northumbria.ac.uk/id/eprint/45486/ Northumbria University has developed Northumbria Research Link (NRL) to enable users to access the University’s research output. Copyright © and moral rights for items on NRL are retained by the individual author(s) and/or other copyright owners. Single copies of full items can be reproduced, displayed or performed, and given to third parties in any format or medium for personal research or study, educational, or not-for-profit purposes without prior permission or charge, provided the authors, title and full bibliographic details are given, as well as a hyperlink and/or URL to the original metadata page. The content must not be changed in any way. Full items must not be sold commercially in any format or medium without formal permission of the copyright holder. The full policy is available online: http://nrl.northumbria.ac.uk/policies.html This document may differ from the final, published version of the research and has been made available online in accordance
    [Show full text]