2023 NSF Cybersecurity Summit Agenda
October 23-26, 2023
All times are listed in Pacific Standard Time.
Talks that will be live-streamed for remote participants are highlighted by a Green Background
Early check-in will be available at Hotel Shattuck Plaza on Sunday, Oct 22, from 4-6 p.m PT. Lobby area, by the front desk.
DAY 1 Monday, October 23, 2023 | Workshops/Trainings | |||||||
Track 1 | Track 2 | Track 3 | Track 4 | ||||
8:00AM | Sign-In and Continental Breakfast- Building 59 Lobby | ||||||
9:00AM–1:00PM (Refreshment break at 10:30) | Zeek Training: Hands-on Zeek Scripting (In-Person Only)
(Aashish Sharma) Room 59-3101 | Zeek Training: Intermediate to Zeek (In-Person Only) (Fatema Bannat- Wala, Christian Kreibich and Keith Lehigh) Room 59-4102 | Jupyter Security Workshop (In-Person Only) (Rick Wagner) Auditorium- 50 | ||||
1:00–2:00 PM | Lunch 59-Patio | ||||||
2:00 PM–5:00 PM (Refreshment break at 3:30) | Zeek Training: Hands-on Zeek Scripting (In-Person Only) | Zeek Training: Intermediate to Zeek (In-Person Only) | Jupyter Security Workshop (In-Person Only) | WISE Community Workshop (In-Person Only) (David Kelsey and Romain Wartel) Room 59-3104 | |||
DAY 2 Tuesday, October 24, 2023 | Plenary and Workshops/Trainings | ||||||
7:00 AM | Sign-In and Continental Breakfast | Building 59 Lobby | |||||
8:00 AM | Update from the NSF Office of Advanced Cyberinfrastructure (Rob Beverly) | Auditorium-50 | |||||
8:25 AM | Cybersecurity at Major Facilities: Current Directions and Issues (Michael Corn) | Auditorium-50 | |||||
8:50 AM | Berkeley & ESNet Welcome (Sean Peisert and Adam Slagell) | Auditorium-50 | |||||
9:05 AM | Trusted CI Update (Jim Basney) | Auditorium-50 | |||||
9:30 AM | Keynote: “Social Engineering Manifestations as Ransomware Attacks Unfold” - Dr. Aunshul Rege Auditorium-50 | |||||
10:30 AM | Refreshment Break | Auditorium-50 | |||||
11:00 AM | Plenary Session | Implementing NIST 800-171 in a both decentralized and centralized environment (Laura Elkin) | Auditorium-50 [Slideset] | |||||
11:30 AM | Plenary Session | Unmasking Shadows: Investigating MICI-BICA, an Incident Involving IRC-Based Malware Deployment, Rootkit Stealth, and Self-Hiding Cryptominers (Pau Cutrina Vilalta & Romain Wartel) Auditorium-50 | |||||
12:00 PM | Plenary Session | Black Hole Locker Ransomware : Affiliate program (Romain Wartel & Pau Cutrina) Auditorium-50 | |||||
12:30–2:00 PM | Lunch | 59-Patio | |||||
Track 1 | Track 2 | Track 3 | ||||
2:00–5:00 PM (coffee break at 3:30) | Securing your Code with Better Coding Practices and Tools (In-Person Only) (Bart Miller and Elisa Heymann) Auditorium-50 | Jupyter Network Monitoring with Zeek Workshop (In-Person Only) (Rick Wagner, Christian Kreibich, Fatema Bannat Wala) Room 59-3101 | Security intrusion at the Zebra Scientific Alliance (In-Person Only) (Romain Wartel) Room 59-4101 + 59-4102 | |||
5:30-7:30 PM | Social night Residence Inn Study Hall Rooftop 2121 Center St. | ||||||
DAY 3 | Wednesday October 25, 2023 | Plenary and Workshops / Trainings / BoFs / Project Mtgs | |||||||
7:00 AM | Sign-In and Continental Breakfast | Building 59 Lobby | ||||||
8:00 AM | Plenary Session | Principles of Decentralized Cyberinfrastructure (John Haverlack) | Auditorium-50 [Slideset] | ||||||
8:30 --9:30 AM | Plenary Session | Inclusion, Diversity, Equity and Accountability (IDEA) Panel Auditorium-50 | ||||||
Track 1 | Track 2 | Track 3 | Track 4/Project Meetings | ||||
9:30 –12:30 PM (coffee break at 10:30) | Deep Machine Learning for Intrusion Detection in Cyber-Physical Critical Infrastructures (Muhammad Ismail) Auditorium-50 | Physical Security is Important Um'k (Adrian Crenshaw, Susan Sons) Room 59-4102 | Regulatory Compliance for Research: DFARS/CMMC, HIPAA, GDPR, NSPM-33 (Anurag Shankar, Will Drake, Tim Daniel, Scott Russell) Room 59-3101 | SAFER Member Meeting (Members Only) Room 59-3104 | |||
12:30–2:00 PM | Lunch | 59- Plaza | ||||||
2:00 PM | Catch Me If You GPT: Tutorial on Deepfake Texts (Adaku Uchendu, Thai Le, Dongwon Lee) Auditorium-50 | BOF: Research Security Compliance collaborations to support PI research (In-Person Only) (Laura Elkin, Lauren Schroeder, Maria Bunch) Room 59-4102 | The Trusted CI Framework: Strategies for Getting Started (In-Person Only) (Scott Russell, Craig Jackson) Room 59-3101 | ACCESS CONECT Cybersecurity Group and invited guests. (2:00-4:00 PM) (Derek Simmel) Room 59-3104 | |||
3:30 PM | Refreshment Break | ||||||
4:00 PM | Catch Me If You GPT: Tutorial on Deepfake Texts (Adaku Uchendu, Thai Le, Dongwon Lee) | BoF: NICE Workforce Framework Adoption: Cybersecurity Teaching Innovations (Lori Sussman) Room 59-4102 | The Trusted CI Framework: Strategies for Getting Started (In-Person Only) (Scott Russell, Craig Jackson) | SAFER Member Meeting CONTINUED (Members Only) | |||
5:00 PM | Conclude | ||||||
DAY 4 | Thursday October 26 - Plenary and Workshops/Trainings/BoFs | |||||
7:00 AM | Sign-In and Continental Breakfast | Building 59 Lobby | ||||
Track 1 | Track 2 | Track 3 | |||
8:00 AM | Trusted CI Framework Community of Practice (CoP) Quarterly Meeting (8:00 – 11:00 AM) (CoP members only) (Ranson Ricks) Room 59-4102 | Security Log Analysis (8:00 – 11:00 AM) (In-Person Only) (Mark Krenz, Ishan Abhinit, Phuong Cao) Room 59-3101 | |||
8:30 AM | [TLP:RED] How we failed to handle a triple-combo attack against the R&E HPC community worldwide...in the middle of a pandemic (In-Person Only) (Romain Wartel) Auditorium-50 | ||||
9:00 AM | [TLP:RED] Monero mining, with love, from space (In-Person Only) (Romain Wartel) Auditorium-50 | ||||
9:30 AM | [TLP:RED] Reserved (In-Person Only) Open floor for attendees to share TLP related information. Auditorium-50 | ||||
10:00 AM | [TLP:RED] Reserved (In-Person Only) Open floor for attendees to share TLP related information. Auditorium-50 | ||||
10:30 AM | pDNSSOC: Correlating DNS logs with threat intel from MISP as a poor man’s SOC. (10:30–12:00 PM) (Romain Wartel, Pau Cutrina Vilalta and Christos Arvantitis) Auditorium-50 | ||||
11:00 AM | Panel Session | Experiences from SIO (CCRV), OSU (RCRVs), OOI, and USAP in Cybersecure-by-Design Maritime and Polar Design and Construction (11:00 AM–12:00 PM) (Sean Peisert) Room 59-3101 | ||||
12:00–1:30 PM | Lunch Plaza 59 | ||||
1:30 PM | Plenary Session | US Academic Research Fleet (ARF) Cyber Risk Management Program (CRMP) (Mikeal Jones) | Auditorium-50 [Slideset] | ||||
2:00 PM | Plenary Session | Cyber Forensics In Everyday Business (Chris Lauderbaugh) | Auditorium-50 [Slideset] | ||||
2:30 PM | Poster Session / Ice Cream Break / Refreshments | Lobby-59 [Community Posters] [Student Posters] | ||||
3:30 PM | Plenary Session | Trusted CI Fellows Panel (Rick Wagner) | Auditorium-50 [Slideset] | ||||
4:00 PM | Plenary Session | Conference Round-up (Open mic for comments on recent conferences such as: PEARC, NIST HPC Security, NSF Research Infrastructure Workshop) | Auditorium-50 | ||||
4:30 PM | Summit observations and feedback | Auditorium-50 | ||||
5:00 PM | Adjourn | ||||