“The Network Inside Out: New Vantage Points for Internet Security”

J. Alex Halderman, Computer Science and Engineering, University of Michigan, USA
9 Abril, 2015 - 12:00
Auditorio DCC, Piso 3
CLCERT y NIC Chile Research Labs.

Internet-wide network scanning has powerful security applications, including exposing vulnerabilities and tracking their mitigation.  Unfortunately, probing the entire Internet with standard tools like Nmap requires months of time or large clusters of machines. In this talk, I'll demonstrate ZMap, an open-source network scanner developed by my research group that is designed from the ground up to perform Internet-wide scans efficiently. We've used ZMap with a gigabit Ethernet uplink to survey the entire IPv4 address space in under 45 minutes from a single machine, more than 1300 times faster than Nmap. Data from more than 400 Internet-wide scans conducted over the past 2 years has allowed us to work towards the mitigation of several widespread vulnerabilities, including the OpenSSL Heartbleed bug and the FREAK attack. By tracking Heartbleed mitigation and notifying users and operators about unpatched systems, we were able to increase the rate of patching and gain unique insights into the world's response to the vulnerability.



J. Alex Halderman is the Morris Wellman Faculty Development Assistant Professor of Computer Science and Engineering at the University of Michigan, and Director of Michigan's Center for Computer Security and Society. His research spans software security, Internet security, and digital privacy. He is widely known for developing the "cold boot" attack against disk encryption, which altered widespread security assumptions about the behavior of RAM, influenced computer forensics practice, and inspired the creation of a new subfield of theoretical cryptography. A noted expert on electronic voting technology, Prof. Halderman helped lead the first independent review of the election technology used by half-a-billion voters in India, which prompted the national government to undertake major technical reforms. He is the author of more than 50 publications, and his work has won numerous distinctions, including a 2015 Alfred P. Sloan foundation research fellowship. His Coursera course about electronic voting, Securing Digital Democracy, has reached tens of thousands of students worldwide.


Website: https://jhalderm.com