Centre for Law, Technology and Society Université d'Ottawa / University of Ottawa

Workshop Title:
Botnets

(PPT file)

Overview
The recent growth of botnet activity in cyberspace has attracted in a significant way the attention of the research community. Botnets have become one of the biggest security threats, responsible for a large volume of malicious activities from distributed-denial-of-service (DDoS) attacks to spamming and phishing.
This tutorial will introduce the notion of botnet and trace the typical lifecycle of a botnet. It will discuss the types of attacks performed by botnets and potential damage they can cause.  The tutorial will also walk the participants through a process of creating a real botnet.
Intended audience:
The tutorial is targeted toward general audience interested in botnet threat. Audience is generally not required to have any background in botnet; however, it is expected to be familiar with the basic terms used in computer security.
Detailed outline of the presentation:

1. What is Botnet?

1. Brief overview of terminology (bot, zombie, communication channel, etc.)
2. How bots are installed and operate.
3. Botnet topologies
4. Cover-up techniques (fast flux, encryption)

1. What does a botnet do?

1. Type of attacks

1. Beyond theory: how to make your own botnet.  

A brief description of the instructor(s)
Ali Shiravi is a Ph.D. candidate at the University of New Brunswick, Faculty of Computer Science. He has started his PhD studies since September 2008. He is currently conducting research specifically in the area of Botnet defence and network security visualization.
Natalia Stakhanova is a Research Scientist at the Information Security Center of Excellence (www.ISCX.ca), Faculty of Computer Science, University of New Brunswick. She received her Ph.D. degree in Computer Science from Iowa State University, USA. She has extensive research experience in intrusion detection and general information security field. Natalia has published over 10 journal and conference papers and has been the recipient of the “Nokia Best Student Paper Award” at The IEEE International Conference on Advanced Information Networking and Applications (AINA)  in 2007. She has two pending patents in the  field of  computer security.
Hanli REN is a M.S. candidate at the Information Security Center of Excellence
(www.ISCX.ca), Faculty of Computer Science, University of New Brunswick. She received her B.Sc. degree in Electronic Engineering from Shanghai Jiaotong University. She worked with Alcatel Shanghai Bell Co., Ltd as a Software Engineer. Her current research focuses on Alert correlation and Simulation of Network Attacks.
Contact:
Natalia Stakhanova
natalia@unb.ca

Workshop Title:
Introduction to Usable Security
Short description:
This tutorial consists of two sections: a general overview of usable security and an introduction to human-computer interaction methodologies for evaluating usability and practical security.
Part 1 covers an overview of Usable Security, presents relevant design principles, highlights areas where Usable Security differs from standard human-computer interaction, and discusses active research areas.
Part 2 includes heuristic evaluations, cognitive walkthroughs, and different types of user studies. Discussion of user studies will include defining the experimental protocol and tasks, performing usability and statistical analysis, conducting practical security analysis, and getting ethics approval for the study.
Level: Introductory
Intended audience: Security researchers, students, practitioners
Brief description of the instructor:
Sonia Chiasson is an NSERC ISSNet Post Doctoral Fellow in the School of Computer Science at Carleton University in Ottawa, Canada. Her interdisciplinary research in human-computer interaction and computer security utilizes user-centered approaches to design, formal human-subject experiments, and both quantitative and qualitative data analysis to evaluate usability as well as theoretical and practical security of proposed systems. Her co-authored paper reporting on lab and field studies of an authentication scheme received the Best Paper award at the 2006 Symposium on Usable Privacy and
Security (SOUPS). Sonia was a full-time Computer Science instructor at the University of Saskatchewan for 4 years. She cotaught a full-day tutorial in usable security at the 2009 NSERC ISSNet Summer School and is co-chairing the Usable Security Experiment Reports (USER) Workshop at SOUPS in July 2010.
Tentative detailed outline:
The outline that follows lists the topics that will be covered during the tutorial. Interactive activities/exercises will be included throughout to illustrate concepts and practice new skills.

• Part 1:
  - What is usable security?
  - Factors that make usable security different from regular usability
  - Approaches to usable security
  - Design guidelines
  - Research areas
  
  
• Part 2:
  - Key HCI concepts
  - HCI evaluation methodologies
  - Types of user studies
  - Selecting appropriate methodology
  - Developing the experimental protocol
  - Pilot testing/running the study
  - Usability and statistical analysis
  - Practical security analysis
  - Getting ethics/IRB approval
  

Contact:
Dr. Sonia Chiasson
School of Computer Science
Carleton University
Ottawa, Canada
chiasson@scs.carleton.ca
fax: 1-613-520-4334

Tutorial Title:
Dwindling Consumer Trust in Online Transactions – Causation, Implications and Treatment.
Indication of the proposed length of the tutorial
Three Hours (3 hrs) 40 Minutes for each session with 20 minutes for questioning.

A Short Description Of The Tutorial. The financial crisis and the attendant economic downturn have far reaching impact on the developed and developing nations. Reduction in product exports, failed banks, fall in foreign direct and indirect investment and development assistance are notable consequences from the crisis. According to Okonjo (2009), although the developed world has deep pockets and were able to reach into their pockets for massive fiscal stimulus, developing countries do not have resources to counteract the effects of the crisis. Cybercriminals, all over the world have increased their activity in reaction to the global economic crisis and has reached levels not seen since 2006. Online crime is now being committed every 10 seconds. Andy (2008) opined newly unemployed skilled tech workers, especially those with system security and IT expertise are turning to computer theft and the exploitation of sensitive data to defraud consumer around the banking meltdown. Unfortunately, this trend is having tremendous impacts on consumer trust in online transactioons. Account takeover fraud, where a cybercriminal gains access to a bank account either as the result of phishing or banking Trojans, has risen by 207 percent (Garlik,2009). The research questions that emanates and to which the workshop will proffer answers are:

• (1) Is poverty and unemployment a driving force behind cyber crime in developed and developing countries
• (2) What factors account for success in social engineering attacks through scamming and phishing websites on citizens in these nations.
• (3) What are the current trends and techniques employed by cyber criminals to commit these crimes?
• (4) What are the immediate and long term implications of these criminal activities on consumer trust in online transactions
• (5) Are current policies, laws and technologies employed to fight these crimes effective?

Identification Of The Tutorial Level: Introductory, Intermediate Or Advanced.
The Tutorial serves the 3 purposes - introductory, intermediate or advanced

Detailed Outline For The Tutorial.
We intend to approach this problem using a multidisciplinary approach involving criminal justice, Information technology/Information systems/computer science and public policy. The sessions will provide opportunity for us to brainstorm on the subject matter and come up with ideas on causation and treatment. The intention is to come up with models and the theories that address the issue of consumer trust in online transactions as well as work on how these theories can be merged to form a multidisciplinary chunk that can be applied to mitigating the cyber crime problem. We expect to have three sessions designed to provide opportunity for researchers and scientists to address crime theories, trust models and public policy thoughts and their application to cybercrime.

• Session 1:
  Classical, Social Process, Integrated Crime Theories & their Application to Cybercrime Rational Choice Theory, General Deterrence Theory, Routine Activities Theory, Social Control Theories, Social Learning Theories, Label Theory, and Differential Enforcement Theory. Poverty and crime, Subculture theory Strength theory etc.
• Session 2:
  Computing and Information Security Models In the Age of Cyber Crime – Theories behind Trust Models, Technology Acceptance (TAM Model), Cyber Security Theories, Web technology/interface design theories, Spamming and Phishing etc
• Session 3: IT Policies, Legislation and Cyber Crime - New Wine in Old Bottles – Public Policy on technology usage, Consumer trust and security Policies, Security and user protection policies. IT Polices and Internet intermediaries. Policy issues as it relates to cross-boundary problems. Findings & Recommendations For Future Policy Research. We expect that our findings will promote and encourage multidisciplinary research in the subject area. We also hope to be able to make recommendations for future policy research based on the interactions and findings from the sessions.

Intended Audience. Academia, Practitioners, Students,

A Brief Description Of The Instructors
Olumide Babatope Longe (PhD) is on faculty at the Department of Computer Science, University of Ibadan, Ibadan, Nigeria. He holds a National Diploma in Electronics Engineering from the Federal polytechnic, Ado Ekiti, Nigeria, a B.Sc. in Computer Science from the University of Benin, Benin City, Nigeria, a Master of Technology Degree in Computer Science from the Federal university of Technology, Akure and a PhD in computer Science from the University of Benin City, Nigeria which focused on cybercrime prevention and control. His scholarly publications, over 50 in number, has appeared and has been quoted in reputable peer-refereed Journals, conference proceedings, Newsletters and edited books. Longe is a recipient of the prestigious John D. and Catherine T. MacArthur fellowship for Staff Development & Training at the University of Ibadan. He Heads the Cybercrime Institute of the International Center for Information Technology and Development (ICITD) Southern University and A & M College, Baton Rouge, Louisiana, USA. He is a member of the IEEE, ACM, ISOC. He is actively researching into cybercrime causation, information security models and social theories with several publications in view. He can be reached at longeolumide@icitd.org, olumide@longeolumide.com, longeolumide@yahoo.com +2348024071175
Richard Boateng, (PhD) . is the Director of Research and Operations at the International Center for Information Technology and Development at the College of Business, Southern University. Richard’s research interests embrace topics including e-learning; ICTs for development; and Multimedia technologies in resource poor environments. Richard has worked as a multimedia technologist and behavioral consultant for West African Project to Combat AIDS, (WAPTCAS) –A CIDA funded HIV/AIDs project, Ghana. He led a team of information technology and health professionals from diverse backgrounds to design and produce educational videos on fifteen health topics including HIV/AIDS in English and four local languages. Dr. Boateng also won a British Petroleum Dorothy Hodgkin’s award of £36,000 to examine the role and value of electronic commerce in resource-poor environments. Findings of this research has been published in 10 conference proceedings, books and journals including Internet Research, Development and Learning in Organizations, Journal of African Business, Journal of Internet Banking and Commerce, Information Development, and the Electronic Journal of Information Systems in Developing Countries. The broader impact of this project has been a development of a gender mentoring and development project, Ewuraba.com, which gives Professional African women the opportunity to share their profiles, creative ventures, business, talents and skills with other women and the world. Richard is also an editor of the African Journal of Information Systems and Conference planning chair of the International Conference of Information Technology and Development (www.ictforafrica.org). He can be reached at richard.boateng@gmail.com, richard@icitd.com, richard@ictforafrica.org +12254089618
Chanika Jones, (PhD) is on faculty in the Nelson Mandela School of Public Policy and Urban Affairs at Southern University and A&M College and is currently serving as chair for the Department of Criminal Justice. She holds a B.A. in General Studies with minors in Geography, Sociology, and African/African-American Studies, M.A. in Liberal Arts with a concentration in African/African- American Studies, and M.A. and PhD in Sociology/Criminology, all from Louisiana State University. She is an active member of the Academy of Criminal Justice Sciences (ACJS), American Society for Criminology (ASC), African Criminology & Justice Association (ACJA), and the Mid-South Sociological Association (MSSA). Dr. Jones has served as session organizer, presenter, discussant and participant at several professional meetings and conferences, as well as editor for academic journals in her field of study. Dr. Jones’ research interests are centered on African Diaspora Studies, labor market conditions as predictors for crime, the impact of social constructs on arrests, sentencing, and treatment of offenders, and more recently, Health Information Technology (HIT) in Correctional Facilities and rural and/or developing areas, and Sociological theories in the contexts of Information Technology (IT) applications. Dr. Jones has an active research agenda, with several research projects and publications underway in the following areas; cyber crime, crime severity index reporting, funding disparities for correctional facilities, and the impact of ICT’s on the Criminal Justice System. She can be reached at cj4su@yahoo.com +12257193648

Works Cited:

• (1) Andy Greenberg (2008) Economic Bust, Cybercrime Boom- Tough times boost the Internet's criminal markets--and buoy spending on IT security. http://www.forbes.com/2008/11/18/cybercrime-boom-fraud-tech-security-cx_ag_1119crime.html
• (2) Garlik , K (2009. Cybercrime boom fuelled by economic meltdown http://www.webuser.co.uk/news/top-stories/398345/cybercrime-oom-fuelled-by-economicmeltdown
• (3) http://www.webuser.co.uk/news/top-stories/398345/cybercrime-boom-fuelled-by-economicmeltdown
• (4) Okonjo, I (2009): World bank Director Attends EDD. http://www.se2009.eu/en/meetings_news/2009/10/22/world_bank_managing
  _director_attends _edd
• (5) USIC3 (2009)- Internet Crime Complaint Centre Report (2006-2008). www.ic3.gov/media/annualreports.aspx