Expanding the scope and impact of cybersecurity and privacy research

center’s mission is to explore every aspect of the new world that is opened up by encrypted functionalities,” Sahai said.

The project is a collaboration among researchers at UCLA, Stanford University, Columbia University, The University of Texas at Austin and Johns Hopkins University.

The second Frontier grant was awarded to the Modular Approach to Cloud Security (MACS) project, which aims to build information systems for the cloud with meaningful multi-layered security.

In the project, researchers will design and test a modular approach to cybersecurity. The project will build the cybersecurity system from smaller, separate functional components, each asserting its own security individually. As a result, the security of the system as a whole will be derived from the security of its components.

“Our goal is to build a cloud with clear and transparent security properties,” said Ran Canetti, a professor of computer science at Boston University and lead researcher on the project. “Furthermore, we intend to make it modular, thus enabling the construction of cloud services from basic components in a security-preserving way. If successful, this project will transform the way we currently build and argue about secure systems.”

The team — made up of researchers from Boston University, Massachusetts Institute of Technology, the University of Connecticut and Northeastern University — comprises experts in different aspects of information security and cryptography.

A key component of the MACS project is its integration into the Massachusetts Open Cloud, which provides the research team with a testbed for deploying and testing the mechanisms they develop at reasonable scale. The project continues NSF’s commitment to support the transition of great ideas from research to practice.

Members of the MACS team will interpret early research results and code them into a privacy-preserving solution to allow users of the Massachusetts Open Cloud to share systems data, a novel idea that has no precedent. Allowing multiple users access to such information will provide more choices for researchers conducting experiments on cloud computing and allow them to build high-performance systems at a fraction of the current cost.

Cybersecurity education and training
In addition to investments in cybersecurity research, the SaTC program has continued to expand opportunities and resources in cybersecurity education through its Cybersecurity Education Perspective. The goal of this perspective is to use fundamental cybersecurity research, together with research on learning, to expand educational opportunities and resources and nurture the next generation of cybersecurity professionals.

The SaTC education portfolio includes projects such as:

• INSuRE, a self-organizing, cooperative, multi-disciplinary and multi-institutional student research network mentored by, and working on problems proposed by, technical directors from federal agencies;
• Two informal learning projects that design and evaluate an environment that mimics the training that athletes undergo in preparation for major sporting competitions, including Cyber-gyms, coaches, mentors and Cyber Sports Federation, as well as state-wide, governor-sponsored Cyber Cups; and
• A research study on the overall impact of the seventy existing cyber competitions and on the psychological characteristics of people who are qualified and willing to pursue careers in cybersecurity.

This year’s two Frontier awards include strong education components as well. The Center for Encrypted Functionalities is developing free Massive Open Online Courses (MOOCs), to teach large numbers of learners the fundamental principles of encryption.

The MACS project plans to offer programs that familiarize technology professionals with cybersecurity and its central role in our society and economy.

Both projects will support new programs that will introduce K-12 students to cybersecurity and to computer science more broadly. The K-12 program will target students from both under-represented minorities and students with exceptional academic potential.

“Education investments in SaTC contribute to our mission to support the preparation of a diverse, globally component workforce,” said Joan Ferrini-Mundy, assistant director for NSF’s Directorate for Education and Human Resources.

“Cybersecurity professionals need to be critical-thinkers with strong STEM (science, technology, engineering and mathematics) foundations to respond to tomorrow’s challenges. These Frontier awards, together with our investments through the Cybersecurity Education Perspective, emphasize connections between cybersecurity and STEM education and the important role of mathematics and computational thinking.”

The 2014 SaTC awards continue NSF’s long tradition of supporting foundational research and preparing the future workforce in cybersecurity. The awards are intended not only to combat today’s threats, but to fundamentally “change the game” to enable long-term security and privacy.

Since 2008, NSF has invested more than $300 million in the fundamental theory, novel tools and technologies, and new education and workforce development approaches needed to secure our nation’s cyberspace.