A genius approach to web security

dawn_song.top.jpgSong in a study area in her Berkeley office By Michael V. Copeland, senior writer


FORTUNE -- The prototypical computer security expert is some ponytailed guy with a three-day beard and an uncomfortable habit of telling hacker war stories that make you scared to go online for weeks. Then there's Dawn Song, a 36-year-old associate professor at the University of California at Berkeley and a MacArthur Foundation fellow (also known as a MacArthur genius). With her broad smile and laugh, Song puts a visitor at ease, then begins mapping the Internet out on a whiteboard. The whole genius thing quickly becomes apparent.

Song and her research team aren't looking to simply patch holes in the Internet that online baddies are constantly trying to penetrate. She takes a more holistic approach, designing technology tools that can act as building blocks for an overall secure computing experience -- on any device. The proliferation of smartphones and tablets means more people are trying to share sensitive information via the public Internet instead of private networks, a practice that makes Song shudder. "If I have uploaded my data naively into the cloud, the best I can do now is cross my fingers and hope that whoever is storing my data is doing a good job with their security," she says.

By studying the underlying patterns of how software, hardware, and networks interact, Song has become expert at understanding the flow of both "good" data and ill-intentioned hacks. Song's groundbreaking research has become the basis for two important platforms: BitBlaze, which analyzes malicious software code, and WebBlaze, which focuses on defending web-based applications and services against it. (The WebBlaze approach has been used in the design of mainstream web browsers.) Song is also working on the privacy side of things, so that people can trace where their sensitive data have been and know that it is either secure or has been sold or breached.

Song's hope is that BitBlaze, WebBlaze, and her privacy initiatives become fundamental Internet tools that are deployed when any person or company builds a new cloud-based service or overhauls an existing one. Her team is working on commercial versions of the security platforms that would offer custom analysis to paying customers.

Song is no fear monger, but she stresses that the risks are mounting as everything -- phones, tablets, even wireless health-monitoring gadgets -- gets connected to the web. "We are always playing catch-up," she admits. But if Song and her team are successful, consumers and companies won't have to simply keep their fingers crossed -- and she may even put a few of those ponytailed security experts out of business.  To top of page

Frontline troops push for solar energy
The U.S. Marines are testing renewable energy technologies like solar to reduce costs and casualties associated with fossil fuels. Play
25 Best Places to find rich singles
Looking for Mr. or Ms. Moneybags? Hunt down the perfect mate in these wealthy cities, which are brimming with unattached professionals. More
Fun festivals: Twins to mustard to pirates!
You'll see double in Twinsburg, Ohio, and Ketchup lovers should beware in Middleton, WI. Here's some of the best and strangest town festivals. Play
Company Price Change % Change
Facebook Inc 74.98 3.69 5.18%
Ford Motor Co 17.84 0.06 0.34%
Yahoo! Inc 36.16 1.45 4.18%
Apple Inc 97.03 -0.16 -0.16%
Bank of America Corp... 15.62 0.10 0.64%
Data as of 4:02pm ET
Index Last Change % Change
Dow 17,083.80 -2.83 -0.02%
Nasdaq 4,472.11 -1.59 -0.04%
S&P 500 1,987.98 0.97 0.05%
Treasuries 2.51 0.04 1.83%
Data as of 4:22pm ET

Sections

Would you pay $7.76 for a Big Mac? The Economist's iconic Big Mac index is a lighthearted way to compare currencies and buying power around the world. More

The government says health insurers are charging lower premiums, thanks to a provision in Obamacare. More

In New York City, business travelers have ditched meals at Starbucks in favor of Seamless takeout, according to a new report. More

Chinese buyers are now the biggest international players in the U.S. housing market and some states are seeing billions of dollars in real estate deals as a result. More

Market indexes are shown in real time, except for the DJIA, which is delayed by two minutes. All times are ET. Disclaimer Morningstar: © 2014 Morningstar, Inc. All Rights Reserved. Disclaimer The Dow Jones IndexesSM are proprietary to and distributed by Dow Jones & Company, Inc. and have been licensed for use. All content of the Dow Jones IndexesSM © 2014 is proprietary to Dow Jones & Company, Inc. Chicago Mercantile Association. The market data is the property of Chicago Mercantile Exchange Inc. and its licensors. All rights reserved. FactSet Research Systems Inc. 2014. All rights reserved. Most stock quote data provided by BATS.