Berkeley Lab Computing Sciences Research is an active participant numerous projects areas of computer security. Its mission-driven emphasis has historically focused on security for science, including high-performance computing and high-throughput networking environments, and security of cyber-physical systems, notably in the power grid. These projects include collaborations with numerous other academic, National Lab, and industry partners. R&D sponsors have included the Department of Energy (DOE) Advanced Scientific Computing Research (ASCR) and Cybersecurity for Energy Delivery Systems (CEDS) R&D programs, the National Nuclear Security Administration (NNSA), the National Science Foundation (NSF) Secure and Trustworthy Computing (SaTC) program and Office of Advanced Cyberinfrastructure (OAC) office, the U.S. Department of Homeland Security’s Science and Technology Directorate, and the National Security Agency, among others.
Berkeley Lab has had a leadership role in security in scientific computing environments for many years, including the development of the Zeek (Bro) Network Security Monitor, as well as leading several DOE-sponsored activities related to defining a cybersecurity research program within the DOE. Berkeley Lab is a co-lead of Trusted CI, the NSF Cybersecurity Center of Excellence.
Recent highlights of LBNL Computing Sciences’ cybersecurity R&D activities include:
Developing findings reports and solutions guides for scientific data integrity, scientific data confidentiality, software assurance in science, the security of operational technology in science, and building security into maritime and polar NSF Major Facilities by design.
Development of secure computation architectures optimized for scientific computing to ensure trustworthiness of scientific data from the edge to the HPC center.
Development and application of differential privacy to power grid and vehicle mobility data and applications.
Development of security monitoring systems for cyber-physical systems that integrate insights about the physical limitations of those systems into network security monitoring and that leverage high-resolution physical sensors combined with SCADA to identify cyberattacks on power grid distribution systems.
Co-leading the development of the Open Science Cyber Risk Profile (OSCRP) — a document designed to help researchers understand the cyber risks to their work.
Development of the Medical Science DMZ design pattern as a method that allows data flows at scale while simultaneously addressing the HIPAA Security Rule and related regulations governing biomedical data and appropriately managing risk.
Updates on Trusted CI’s Efforts in Cybersecurity by Design of NSF Academic Maritime Facilities — Jul. 24, 2023
Registration Open for 3rd HPC Security Workshop at NIST NCCoE — Feb. 3, 2023
Announcing the 2023 Trusted CI Annual Challenge: Building Security Into NSF Major Facilities By Design — Jan. 25, 2023
Publication of the Trusted CI Roadmap for Securing Operational Technology in NSF Scientific Research — Nov. 16, 2022.
Scientific Data Division Summer Students Tackle Data Privacy - Sept. 15, 2022
Findings of the 2022 Trusted CI Study on the Security of Operational Technology in NSF Scientific Research — July 15, 2022
Berkeley Lab’s Sean Peisert Tapped to Take on Deputy Director Role — June 28, 2022
Better Scientific Software (BSSw) Helps Promote Trusted CI Guide to Securing Scientific Software — May 13, 2022
Publication of the Trusted CI Guide to Securing Scientific Software — Dec. 14, 2021