know your enemy know yourself - where the · pdf filesession id: spo session classification:...

Report

Post on 29-Mar-2018

229 Views

Category:

Documents

6 Downloads

Preview:

Click to see full reader

TRANSCRIPT

Session ID:

Session Classification:

JOHN ELLIS AKAMAI TECHNOLOGIES

SPO-W02A

Intermediate

KNOW YOUR ENEMY

KNOW YOURSELF

知彼知己,孙子兵法

► Attackers are moving to the cloud

► Increasingly malware is becoming FUD

► DDoS attacks increasing – just ask the US FSI

► Attacks are increasing in sophistication and automation

► Warfare is no longer symmetrical, it is now asymmetrical

► Your adversaries know your Achilles heel, do you?

Know your enemy 知彼

► What is my Achilles heel?

► Trends are eroding the effectiveness of the perimeter and other

security solutions

► What does normal look like for me?

► How do you make sense of all of this data? Do you have security

intelligence?

► How do I control access to my data and services?

► Do you federate with the CSP, do you encrypt, what do you

encrypt, how do you encrypt?

► How do I respond to a security breach in the cloud?

► Do you have a plan?

Know yourself 知己

Your CSP

Your CSP

Is the perimeter dead?

Your data center

Meet the enemy at ‘their’ front door

►Where’s the trouble maker?

DIY Cloud Security

Your CSP

Your CSP

DIY cloud security – legacy thinking

Your data center

►Challenge to manage policy

►Scalability and capacity issues

►Poor solution for DDoS attacks

Mega POP

Mega POP – struggle for scale

Your CSP

Your CSP Your data center

Cloud Security Network

Your CSP

Your CSP

Cloud Security Network Evaluate Denied Evaluate Allowed

Your data center

? ?

?

? ?

► 10,000s of servers

in 1000s of networks

► Integrated WAF

► Inherent DDoS

protection

►Centralized management of policy

►Scalability and capacity

►Performance not sacrificed

►Ability to block at the edge and

route around congestion

Cloud Security Network – DMZ Zero

Cloud Security Network

DMZ

Two

DMZ

Three

DMZ

One

DMZ

Zero

Web Tier App

Tier

Data

Tier

► There is no end-state with security, just milestones,

phases and stages

► Your adversaries have access to the same tools, same

information as you do….what is the differentiator?

► A fixed perimeter is increasing your security risk, not

reducing it!

The mythical silver bullet

Thank you

top related

cyber adversary characterization know thy enemy!
Documents
lt col srikant mantravadi, usaf. “know your enemy … know...
Documents
if you know the enemy and know yourself, you need not fear...
Documents
know your enemy slide show
Self Improvement
know your enemy battles without disaster.€¦ · 8/16/2012...
Documents
resisting the enemy - preach it, teach it...resisting the...
Documents
on culture: know the enemy and know thyself–– giap, …
Documents
excited deliriuminfoshop.io/media/excited delirium.pdf ·...
Documents
06.know yourself
Documents
tracking storms with gis toni mastropieri and jason pollack...
Documents
km-sec-off-20171016084111 - asis - intel... · you know the...
Documents
adopting a collaborative community of practice approach in...
Documents
know yourself choose yourself give yourself
Documents
the battle of cowpens “if you know your enemy and know...
Documents
know your enemy
Documents
transformers 3 know your enemy
Documents
know the enemy know the enemy eph 6:10-13 eph 6:10-13
Documents
know your enemy - the honeynet project
Documents
know yourself, be yourself
Documents
know your rights, know your enemy
News & Politics