Create and release your Profile on Zintellect – Postdoctoral applicants must create an account and complete a profile in the on-line application system. Please note: your resume/CV may not exceed 2 pages.
Complete your application – Enter the rest of the information required for the IC Postdoc Program Research Opportunity. The application itself contains detailed instructions for each one of these components: availability, citizenship, transcripts, dissertation abstract, publication and presentation plan, and information about your Research Advisor co-applicant.
There is currently no method available to verify the trustworthiness of devices in the Software Defined Network (SDN) infrastructure. The goal of this research is to develop and apply methods that provide a Root of Trust (RoT) for all SDN entities back to a common point for trust establishment.
Assume an SDN is operational and a new switch connects to the network. Before that switch is allowed to route network packets, it must be validated that the new switch is in a known trusted state. The new device boots, collects measurements of its BIOS, operating system, and applications and updates Platform Control Registers (PCR) within the switch’s TPM. The switch sends a message to the trusted device requesting connection to the network. The trusted device queries the new switch its measurements from the PCR’s through a Measurement and Attestation (M&A) protocol. The switch assembles and encrypts the information with the nonce provided and sends it to the trusted device that examines the returned contents. Upon satisfactory information being provided, the trusted device signals the SDN controller that the switch may join the network and route packets.
Research is needed to develop and analyze the protocols for the exchanges and evaluation. If the returned values are satisfactory, operation of the switch proceeds. If the values indicate a problem, processes that deny connection are instituted. This process is also applied for revalidation during operation in which the switch will be queried periodically for trusted operation. Should corruption be apparent, the device is disconnected from the network and quarantine procedures take place for evaluation. Other devices within the SDN infrastructure are also updated that the corrupted device is no longer part of the network.
Example Approaches:
Scenarios to consider include making sure that all SDN entities are vetted; one method is through M&A protocols using the Trusted Platform Module (TPM) on the device remotely by a trusted entity. Upon establishment of trust, the entity is permitted to join the network. Periodic M&A activities could revalidate that the entity is in a trusted state.
Entities typically associated with the SDN in this research include SDN Controllers, applications servers, white switches, hybrid switches, M&A networks, and other support applications. Most of the devices run a Linux OS upon which all applications are run in Virtual Machines (VM's) or containers. Each physical device contains a TPM, and each of the VM's has an associated virtual TPM (vTPM) for trust establishment.
Communications among the physical and virtual devices is via secure channels. Numerous protocols travel among the communications paths among the entities that necessitate a formal analysis of the messages exchanged for non-interference verification.
ORISE GO
The ORISE GO mobile app helps you stay engaged, connected and informed during your ORISE experience – from application, to offer, through your appointment and even as an ORISE alum!
You gave a rating of 0 star(s)
SECURITY/PRIVACY NOTICE
By continuing to use this system you indicate your awareness of and consent to the following terms and conditions of use. LOGOUT IMMEDIATELY if you do not agree to the conditions stated in this warning.
SECURITY NOTICE
This system is part of a Federal information system. This system is monitored for security purposes to ensure it remains available to all users and to protect information in the system. The system employs software programs to monitor network traffic to identify unauthorized activities. By accessing this system, you are expressly consenting to these monitoring activities. Unauthorized attempts to defeat or circumvent security features; to use the system for other than intended purposes; to deny service to authorized users; to access, obtain, alter, damage, or destroy information; to upload or change information; to otherwise cause system or information damage; or otherwise to interfere with the system or its operation, is prohibited. Evidence of such acts may be dis-closed to law enforcement authorities and result in prosecution under the Computer Fraud and Abuse Act of 1986 and the National Information Infrastructure Protection Act of 1996, or other applicable laws.
PRIVACY NOTICE
This system is for authorized use only. Use of this system constitutes consent to security monitoring and testing. All activity is logged with your host name and IP address. Users (authorized or unauthorized) have no explicit or implicit expectation of privacy. Any or all uses of this system and all files on this system may be intercepted, monitored, recorded, copied, audited, inspected, and dis-closed to authorized site and law enforcement personnel, as well as authorized officials of other agencies, both domestic and foreign. By using this system, the user consents to such interception, monitoring, recording, copying, auditing, inspection, and disclosure at the discretion of authorized site or law enforcement personnel. Unauthorized or improper use of this system may result in administrative disciplinary action and civil and criminal penalties.
You have been inactive on this page for . You will be logged out after 03:00:00.
Select an icon below to visit the website and download an appropriate browser.
For help, please email Zintellect@orau.org.
Question: What is the deadline for submitting an application?
Answer: Not all opportunities have application deadlines. Some opportunities remain open until they are filled. If an opportunity has an application deadline, then it will be listed in the opportunity details or in the opportunity catalog.
Question: How do I reset my password?
Answer: If you have forgotten your password or wish to reset your password, use the "Forgot password or username?" tab on the login to reset it.
Question: I forgot my username. How do I retrieve it?
Answer: Use the "Forgot password or username?" tab on the login. You will receive an email containing your username.
Question: What do I need to submit an application?
Answer: Typically, applicants are required to submit a resume or CV, an official copy of their transcripts or academic record, and a minimum of two references at the time they apply. Additional requirements such as a writing sample, thesis or dissertation, etc. may be required. Review the opportunity details for additional information about the requirements for applying for an opportunity.
Question: Where do I upload my transcripts?
Answer: If required, you will be asked to upload your transcript as a part of the application process.
Question: Where do I submit a writing sample?
Answer: If required, you will be asked to upload a writing sample as part of the application process.
Question: Can a family member serve as a reference?
Answer: No; family members may not serve as references. References must be able to speak to your educational and/or professional experience. At least one academic reference is preferred.
Our Zintellect A.I. is constantly learning how to Match you to our opportunities! So, we want to know when we get it right or when we get it wrong. This will help us make our better! Plus, as a potential applicant to one of our many opportunities across the country, we value you and want to help you on your career path!
