From koc@ECE.ORST.EDU Wed Nov 3 09:25:52 1999 Date: Wed, 03 Nov 1999 09:24:18 -0800 From: Cetin Kaya Koc To: ISLMAIL Subject: ECE Graduate Seminar 11-19 at 2:00 pm Department of Electrical and Computer Engineering Oregon State University GRADUATE SEMINAR Friday, November 19, 1999 2:00 pm in ECE 103 " Reflectons on Mobile Network Security Policy " Jim Binkley Portland State University Computer Science jrb@cs.pdx.edu . Abstract The talk will discuss lessons learned from the DARPA/ITO funded Secure Mobile Network research project at Portland State. The SMN project has been focused on making wireless networks, more secure, and reliable. SMN implemented Mobile-IP and closely integrated it with IP-layer security (IPSEC), and also introduced a number of mobile protocol enhancements aimed at security and redundancy. In the course of the project it became clear that given that security is supposed to be based top-down on policy, it was remarkably unclear what policies might make sense in terms of mobile security. In general, the world seemed to be creating mobile protocols on the fly, and as usual, ignoring security, to say nothing of the more difficult policy issues inherent in mobile computing. We will suggest a general policy approach for wireless and mobile security that we think has merit, and give examples of both what can and should not be done. Biography Jim Binkley is a network engineer and researcher in the Computer Science Department at Portland State University. He has a M.S. in Computer Science from Washington State University. Jim has nearly two decades worth of experience in local industry as a senior software engineer and network consultant working with TCP/IP networking, UNIX and real-time operating systems. Jim has worked for Tektronix, and as a consultant at Intel. He has taught graduate courses in operating systems and networking, including TCP/IP, IP routing, and network management and security at Portland State and the Oregon Graduate Institute. His specific areas of interest include mobile networking, routing, network security, and network management.