Secure information processing increases in importance as more of our daily transactions are carried out in cyberspace. Cyber security provides assurances and safeguards necessary for the smooth functioning of cyber space interactions and services. Such interactions and services are built upon hardware and software technology for computing, communications and storage. Yet hardware and software technology has not had secure or trustworthy operations as a fundamental design goal. Rather, the increase in transistors in chips, and our educational and research efforts, have been directed mainly towards improving performance, cost and power in hardware, and improving functionality, versatility and ease-of-use in software. Approaches to cyber security have focused on reactive measures, perimeter security and software implementations.
In contrast, we propose a proactive approach to cyber security, where every component, hardware, software or networking, has secure or trustworthy operation as a primary design goal. Architecture for cyber security must be defined at many levels. At the foundational level, if we want core hardware and software to be more responsible for cyber security, what architectural features must be included? How do we translate business and personal security needs, in addition to military and national security needs, into scalable technology features? In this talk, we focus on processors as the engines of the Information Age upon which all software runs. What does it mean for a processor to be security-aware? We illustrate with a few examples. In the area of e-commerce and e-business, we discuss how the processor can make cyber transactions more trustworthy. Can cryptography algorithms, and security protocols, be radically accelerated to provide needed confidentiality, data integrity, digital signatures and user authentication, in an automatic and painless way? In the area of service availability, we discuss whether the processor can provide defenses against misuse of computers by malicious third parties. Are there ways processor architecture can be enhanced to detect, prevent or mitigate potentially disastrous Distributed Denial of Service attacks? What are the processor and software vendors' responsibilities in providing best-effort security features? What are the technical, policy and social challenges in digital rights management (DRM) with regard to built-in anti-piracy mechanisms? Many of these issues have legal, economic, social and ethical aspects, in addition to technological possibilities and limitations. We propose that it is time to consider how technology in general, and processor architecture in particular, can be designed to facilitate greater security and trust in cyberspace transactions and services.
Biography:
Ruby B. Lee is the Forrest G. Hamrick Professor of Engineering and Professor of Electrical Engineering at Princeton University, with an affiliated appointment in the Computer Science department. She is the director of the Princeton Architecture Laboratory for Multimedia and Security (PALMS). Her current research is in designing security and new media support into core architecture.
Prior to joining the Princeton faculty in 1998, Dr. Lee served as chief architect at HewlettPackard, responsible at different times for processor architecture, multimedia architecture and security architecture for e-commerce and extended enterprises. She was a key architect in the initial definition and the evolution of the PA-RISC processor architecture used in HP servers and workstations. She was the technical lead in the first CMOS PA_RISC single-chip microprocessor. As chief architect for HP's multimedia architecture team, Dr. Lee led an inter-disciplinary team focused on architecture to facilitate pervasive multimedia information processing using general-purpose computers. She introduced innovative multimedia instruction-set architecture (MAX and MAX-2) in microprocessors, resulting in the industry's first real-time, high fidelity MPEG video and audio player, implemented in software on lowend desktop computers. Dr. Lee also co-led an Intel-HP multimedia architectural team for IA-64, recently released in Intel's Itanium microprocessors. Concurrent with full-time employment at HP, Dr. Lee also served as consulting professor of Electrical Engineering at Stanford University. Dr. Lee has a Ph.D. in Electrical Engineering and a M.S. in Computer Science, both from Stanford University, and an A.B. (with distinction) from Cornell University, where she was a College Scholar. She is a Fellow of ACM, a Fellow of IEEE, and a member of IS&T, Phi Beta Kappa and Alpha Lambda Delta. She has been granted 115 United States and international patents, with several patent applications pending. Dr. Lee has authored numerous journal and conference papers, and is on the editorial board of different IEEE magazines.
