Cyber Security

 

Schedule and location

Tuesday September 2nd 9.15 AM - 4.00 PM
Wednesday September  3rd 9.15 AM - 4.00 PM
 
The auditorium Ag Gamma is located in the Agora building (Mattilanniemi 2, 40100 Jyväskylä). The Agora building is part of the Mattilanniemi campus of University of Jyväskylä.

 

Registration 

Closing date August 25th

Speakers

Professor Dipankar Dasgupta, University of Memphis, USA


Organizers

Professor Jari Veijalainen, University of Jyväskylä, Finland

Overview

 

Cloud Computing: Security, Privacy, Compliance and an Insurance Model

Cloud environments are becoming increasingly more attractive because of the possibilities in significant cost reduction in IT operations. Due to rapidly changing Information Technologies, it becomes more expensive to regularly update hardware and software licenses and also of having a big IT department with highly technical professional. It is being more challenging for government/industries to best use of their IT budget while securing the computing environment. Many organizations are adopting cloud services so that they can reduce the costs and increase the flexibility of their IT infrastructures. While different industry and sectors are moving to the cloud services for their IT need, they are also very concern about data security (both in storage and in transmission) and various compliance requirements such as PCI DSS, HIPAA, GLBA, SOX, ISO, etc.

 

As cloud services move to the mainstream to meet major computing needs, the issues of ownership and chain of custody of customer data are becoming primary responsibilities of providers. The 3 fundamental cloud service models form a hierarchy, with Software-as-a-Service (SaaS) on top of Platform-as-a-Service (PaaS) and Infrastructure-as-a-Service (IaaS) on the bottom. While security requirements are essential for all service models, they vary in degree of defensive measures. The compliance for each sector requires specific protection for online data such as Transparency, Respect for Context, Security, Focused Collection, Accountability, Access and Accuracy. For example, HIPAA (Health Insurance Portability and Accountability Act) requires insurance portability, administrative simplification and fraud enforcement like privacy and security. Another example, PCI-DSS compliance, was set up to improve the Information Security of financial transactions related to credit and debit cards. And GLBA (Gramm-Leach-Bliley Act) compliance requires analyzing the risks before moving customer information into emerging technology models.

 

This presentation will cover various aspects of cloud computing (opportunities, issues, and challenges), the market view of cloud computing in government, public sectors, and security, as well as compliance issues and implications. Prof. Dasgupta and others developed a Computational Intelligence-based software tool for Cloud Security Insurance (called MEGHNAD) i.e. estimating security coverage for different cloud services. Profossor Dasgupta will give a short demo of this tool. Here are two relevant research publications:
 

 

Sensemaking of Big Data and Security

Overview coming soon!

 

Detailed Program

 

Day 1

9.15 - 9.30        Opening of the seminar day
9.30 - 12.00      Professor Dipankar Dasgupta: Cloud Computing: Security, Privacy, Compliance and an Insurance Model 
12.00 - 13.00    Dividing into work groups and lunch
13.00 - 15.00    Work groups
15.00 - 16.00    Dismantling the work groups

 

Day 2

9.15 - 9.30        Opening of the seminar day
9.30 - 12.00      Professor John R. Williams: Sensemaking of Big Data and Security
12.00 - 13.00    Dividing into work groups and lunch
13.00 - 15.00    Work groups
15.00 - 16.00    Dismantling the work groups

 

Materials

 

Credit points              

Doctoral students participating in the seminar can obtain 2 credit points. This requires participating on both days and completing the assignments given at the seminar.

 

Registration fee

This seminar is free-of-charge for Inforte.fi member organization's staff and their PhD students. For others the participation fee is 750 € or 500 €/one day. The participation fee includes access to the event and the event materials. Lunch and dinner are not included.