Risk
10/1/2013
06:51 AM
50%
50%

$5.4M In Cybersecurity Grants Awarded To University Of Arizona Researchers

Grants from the National Science Foundation for projects that will address cybersecurity research and education challenges facing U.S. and international community

TUCSON, Ariz. – September 30, 2013 – Researchers in the University of Arizona's Eller College of Management have been awarded two grants from the National Science Foundation, totaling $5.4 million, for projects that will address significant cybersecurity research and education challenges facing the U.S. and the international community.

Hsinchun Chen, Regents' Professor and Thomas R. Brown Chair in Management and Technology in Eller's management information systems department, is principal investigator on both projects.

The first project, Cybersecurity Scholarship-for-Service at the UA, or AZSecure, has been funded through 2018 with $4.2 million in total.

"AZSecure will support about 40 undergraduate, graduate, and doctoral students over the next five years," Chen said. "The students will be immersed in advanced cybersecurity analytics and information assurance education for placement in government agencies and industry."

AZSecure is one of the largest Scholarship-for-Service grants awarded by the NSF in the nation.

Chen is joined on the project by fellow principal investigators Paulo Goes, head of the UA's MIS department; Salim Hariri, director of the UA's Autonomic Computing Laboratory and Mark Patton, director of Eller's MicroAge Lab.

Eller's MIS department is a Center of Academic Excellence in Information Assurance Education, a designation of the National Security Agency and the Department of Homeland Security.

The second NSF grant-funded project focuses on understanding cyber attackers and attacks via social media analytics. The project is funded through 2016 in the amount of $1.2 million.

"We have built an interdisciplinary team around the Hacker Web project," Chen said. "We aim to answer important questions about hacker behaviors, markets, community structure, communication contents, artifacts and cultural differences using big data analytics."

The proposed integrated computational framework and the resulting analytical algorithms and techniques will allow researchers, policymakers, and industries to better understand the hacker community and its highly complex ecosystem and impacts. Selected students in the AZSecure project will be embedded in the Hacker Web project.

Chen is joined on the Hacker Web project by fellow principal investigators Hariri; Ronald Breiger, UA professor of sociology at the UA; and Thomas Holt, associate professor of criminal justice at Michigan State University.

More details about Chen's research is available on his Artificial Intelligence Laboratory website.

The Eller College of Management at the University of Arizona is internationally recognized for pioneering research, innovative curriculum, distinguished faculty, excellence in entrepreneurship, and social responsibility. U.S. News & World Report ranks the Eller undergraduate program #12 among public business schools and two of its programs are among the top 25 -- Entrepreneurship and MIS. U.S. News & World Report ranks the Eller MBA full-time program #57 in the U.S. The College leads the nation's business schools in generating grant funds for research. In addition to a Full-Time MBA program, the Eller College offers an Evening MBA program, an Accelerated MBA program, and the Eller Executive MBA. The Eller College of Management supports more than 6,000 undergraduate and 800 graduate students on the UA campus in beautiful Tucson, Arizona.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2013-7401
Published: 2014-12-19
The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by use of the OPTIONS method.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

CVE-2014-2716
Published: 2014-12-19
Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.