Add to collection(s) Add to saved
  1. Business

EMERGING TOPICS IN DATA, APPLICATION AND INFRASTRUCTURE PROTECTION Taher Elgamal ITU 12-2011

advertisement 
EMERGING TOPICS IN DATA, APPLICATION
AND INFRASTRUCTURE PROTECTION
Taher Elgamal
ITU 12-2011
Agenda
•
•
•
•
•
The current security model
Gaps and threats
Protecting assets
Better security models
The future
The Internet Growth
• Everything is connected to everything else
• Security controls were added after the fact
– except, perhaps, SSL (without user
authentication!)
• Conducting business on the same Internet
is very appealing from an economic point of
view
• The old architecture and the system
vulnerabilities created a new economy with
much higher fraud rates
• The vast majority of new applications use
the web – or are simply “web applications”
The Current Security Model
NetworkAA
Network
Edge Protection
Edge Protection
Web Security
Controls
Network C
Internet
Network B
Anti Virus and IPS
Advance Persistent Threats – (APT)
The Next Wave
APTs have a 100% penetration rate2
Solution Gap
Current Technologies
FW/IPS/Web Security
5
Better Security Models
• Understand the business and the important
assets
• Build a threat model
– Important assets, vulnerable elements, prioritized
attacks
• Ensure flexibility, ongoing management and
communicate!
Protecting Assets
Application
security
controls
Firewalls,
antivirus,
IDS
Advanced
Attack
defense
Applications
Infrastructure
Information
Access
Control,
encryption
The Mobile Internet
• The level of functionality and access to content
from smart mobile devices will very soon equal
that of stand alone computers
• Mobile applications vs. browser access on PCs
• Large scale malware attacks are certainly possible
– although so far we have not experienced many
• Likely to be different from computer malware
• Exposure of private, confidential and otherwise
important data can be accomplished easily
• The degree of connectivity to enterprise
networks is still less than what computers can
accomplish – but for how long?
Social Networking
• In a very short time, interactions between
individuals have changed – quite dramatically
• These same individuals are, or soon will be, part
of the work force
• The social network paradigm is in fact quite
suitable for business interactions – but with a
better security model perhaps
Cloud Computing
• Another movement to continue to lower the
cost of implementing various applications
• Time to market will in fact drive many
businesses to pursue cloud implementations
• Many efforts in the industry to provide
guidance to secure cloud applications – but
for the most part use existing techniques
• Authentication and authorization will have to
be correctly implemented
Connecting “Things”
• Connecting “all home appliances” to the
Internet provides for great utility to
consumers
• In this case we never really considered threats
– unlike the early e-commerce days
• Almost all the newly or the to-be connected
devices are special purpose -- they run a very
specific set of functions
Summary
• This is only the beginning of a new world
• The best way is to manage the change
• Connectivity will change the world – yet
again
• Different applications need different
security measures that address the specific
threats
• Managing security will continue to be a
process – no silver bullets
• Taking a different look maybe useful
“There is no reason anyone would want a computer
in their home.”
- Ken Olson, president, chairman and founder
of DEC, 1977
Related documents
Business Plan Scope Sheet - Cleveland Clinic Academy
Business Plan Scope Sheet - Cleveland Clinic Academy
Lesson-2 (1)
Lesson-2 (1)
How Cities Work - Urban Systems Collaborative
How Cities Work - Urban Systems Collaborative
Difference of AV and XDR
Difference of AV and XDR
What is proofpoint and what rea the features of it
What is proofpoint and what rea the features of it
Strategic Planning Using a Market Orientation
Strategic Planning Using a Market Orientation
One of the lead activities assigned to ITU-T Study Group... presentation gives an overview on the ongoing work of Study... SG13 Activities and Achievements Related to Cloud Computing
One of the lead activities assigned to ITU-T Study Group... presentation gives an overview on the ongoing work of Study... SG13 Activities and Achievements Related to Cloud Computing
Collaborative Security
Collaborative Security
marketing
marketing
A. Explain the nature of marketing plans. B. Explain the role of
A. Explain the nature of marketing plans. B. Explain the role of
IRJET- Security from Threats of Computer System
IRJET- Security from Threats of Computer System
infographic-9-steps-absolute-zero-trust-security
infographic-9-steps-absolute-zero-trust-security
NetworkSecuirtyAnalysisbyGPDCMJayasekaraResearchPaperSSRN2022
NetworkSecuirtyAnalysisbyGPDCMJayasekaraResearchPaperSSRN2022
TVL-EMPOWERMENT-TECHNOLOGIES-Q3-M3
TVL-EMPOWERMENT-TECHNOLOGIES-Q3-M3
Palo Alto Networks® Next-Generation Firewall Overview
Palo Alto Networks® Next-Generation Firewall Overview
Dell SonicWALL Capture ATP Service
Dell SonicWALL Capture ATP Service
Content Analysis System
Content Analysis System
Check Point Opswat Metascan Solution Brief
Check Point Opswat Metascan Solution Brief
SAFE Overview Guide Capabilities and Threats November 2015
SAFE Overview Guide Capabilities and Threats November 2015
ITI581 complete slides
ITI581 complete slides
Trends for 2015 - We Live Security
Trends for 2015 - We Live Security
PA WildFire
PA WildFire
Download
advertisement