计算机与信息技术好色tv 第2周学术报告(二)
发布时间:2014-09-23 阅读次数:
报告主题:Security from the ground up
报告主讲:Jean-Noël Colin
报告时间:2014-09-23下午15:00
报告地点:9教北307B
报告简介:There is not a single day without new security breaches being revealed in the press, with various impact on persons and businesses. In many cases, those issues arise from a weak design of the Information System, where security was not properly taken into account from the very beginning of its inception. In this talk, we will discuss the importance of adopting a 'Security by Design' attitude, and integrating the security dimension from the ground up. In the first part of the talk, we will address general considerations around security of information systems: motivations, objectives, methodology, measures; then, we will focus on two specific aspects:
· authentication and authorization, specifically in large distributed web environments
· expressing and enforcing policies, in particular in a privacy-aware context
Challenges related to those aspects will be discussed and solutions developed as the results of two different research projects will be presented.
报告人简介:Jean-Noël Colin is full professor at Computer Science Faculty of Namur University, Belgium. He owns a Master Degree in Computer Science from University of Namur (1989) and a PhD Degree in Parallel and Distributed Computing from University of Mons, Belgium (1995). After his PhD, he moved to a consulting career and worked on many large projects for various types of businesses (telco, finance,...) Since 2002, he has been working as a consultant on large-scale research projects funded by European Union, mainly in the field of eLearning. In parallel, he performed maturity, performance and security assessments in various large international institutions in the Education and Research domain. Based on a strong academic background and a wide experience of technologies and methodologies, he joined back the University of Namur in 2008 where he is now teaching 'Operating Systems' and 'Information Systems Security' classes. His research are in the fields of authentication and authorization protocols in large and complex web environments, and on expression and enforcing security policies in distributed systems. Between 2011 and 2014, he worked as head of Computing Department of the University.