Presentation is loading. Please wait.

Presentation is loading. Please wait.

EMERGING TOPICS IN DATA, APPLICATION AND INFRASTRUCTURE PROTECTION Taher Elgamal ITU 12-2011.

Published byMercedes Platter Modified over 9 years ago

Similar presentations

Presentation on theme: "EMERGING TOPICS IN DATA, APPLICATION AND INFRASTRUCTURE PROTECTION Taher Elgamal ITU 12-2011."— Presentation transcript:

1 EMERGING TOPICS IN DATA, APPLICATION AND INFRASTRUCTURE PROTECTION Taher Elgamal ITU 12-2011

2 Agenda The current security model Gaps and threats Protecting assets Better security models The future

3 The Internet Growth Everything is connected to everything else Security controls were added after the fact – except, perhaps, SSL (without user authentication!) Conducting business on the same Internet is very appealing from an economic point of view The old architecture and the system vulnerabilities created a new economy with much higher fraud rates The vast majority of new applications use the web – or are simply “web applications”

4 The Current Security Model Network A Edge Protection Network A Network B Network C Internet Web Security Controls Edge Protection Anti Virus and IPS

5 Advance Persistent Threats – (APT) The Next Wave 5 Solution Gap Current Technologies FW/IPS/Web Security APTs have a 100% penetration rate 2

6 Better Security Models Understand the business and the important assets Build a threat model – Important assets, vulnerable elements, prioritized attacks Ensure flexibility, ongoing management and communicate!

7 Protecting Assets Information Applications Infrastructure Application security controls Firewalls, antivirus, IDS Access Control, encryption Advanced Attack defense

8 The Mobile Internet The level of functionality and access to content from smart mobile devices will very soon equal that of stand alone computers Mobile applications vs. browser access on PCs Large scale malware attacks are certainly possible – although so far we have not experienced many Likely to be different from computer malware Exposure of private, confidential and otherwise important data can be accomplished easily The degree of connectivity to enterprise networks is still less than what computers can accomplish – but for how long?

9 Social Networking In a very short time, interactions between individuals have changed – quite dramatically These same individuals are, or soon will be, part of the work force The social network paradigm is in fact quite suitable for business interactions – but with a better security model perhaps

10 Cloud Computing Another movement to continue to lower the cost of implementing various applications Time to market will in fact drive many businesses to pursue cloud implementations Many efforts in the industry to provide guidance to secure cloud applications – but for the most part use existing techniques Authentication and authorization will have to be correctly implemented

11 Connecting “Things” Connecting “all home appliances” to the Internet provides for great utility to consumers In this case we never really considered threats – unlike the early e-commerce days Almost all the newly or the to-be connected devices are special purpose -- they run a very specific set of functions

12 Summary This is only the beginning of a new world The best way is to manage the change Connectivity will change the world – yet again Different applications need different security measures that address the specific threats Managing security will continue to be a process – no silver bullets Taking a different look maybe useful

13 “There is no reason anyone would want a computer in their home.” - Ken Olson, president, chairman and founder of DEC, 1977

Download ppt "EMERGING TOPICS IN DATA, APPLICATION AND INFRASTRUCTURE PROTECTION Taher Elgamal ITU 12-2011."

Similar presentations

Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.

Innovation Towards a next generation secure internet Private Application Ecosystems Sanjay Deshpande CEO and Chief Innovation Officer Center.
CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
Beyond Compliance: Advanced SmartGrid Authentication Paul Miller Uniloc.

Beyond Compliance: Advanced SmartGrid Authentication Paul Miller Uniloc.
© Blue Coat Systems, Inc. 2011. All Rights Reserved. APTs Are Not a New Type of Malware 1 Source: BC Labs Report: Advanced Persistent Threats.

© Blue Coat Systems, Inc All Rights Reserved. APTs Are Not a New Type of Malware 1 Source: BC Labs Report: Advanced Persistent Threats.
SCENARIO PLANNING & SPEAR Sue Morris Scenario Manager 15th July 2002.

SCENARIO PLANNING & SPEAR Sue Morris Scenario Manager 15th July 2002.
IT INFRASTRUCTURE AND EMERGING TECHNOLOGIES

IT INFRASTRUCTURE AND EMERGING TECHNOLOGIES
Network Security Introduction Security technologies protect mission-critical networks from corruption and intrusion. Network security enables new business.

Network Security Introduction Security technologies protect mission-critical networks from corruption and intrusion. Network security enables new business.
Protection of Information Assets I. Joko Dewanto 1.

Protection of Information Assets I. Joko Dewanto 1.
Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, 2007. This work is the intellectual property rights of the author.

Lynn Ray ISO Towson University Strategic Planning for IT Security Copyright Lynn Ray, This work is the intellectual property rights of the author.
Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –

Introducing WatchGuard Dimension. Oceans of Log Data The 3 Dimensions of Big Data Volume –“Log Everything - Storage is Cheap” –Becomes too much data –
Implications and Security Issues of the Internet By Neelesh Patel.

Implications and Security Issues of the Internet By Neelesh Patel.
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Demo of Some Security Tools Jeffy Mwakalinga.
Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.

Firewall Security Chapter 8. Perimeter Security Devices Network devices that form the core of perimeter security include –Routers –Proxy servers –Firewalls.
Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.

Know the Client Own the Problem Share the Solution The 2005 Case for Information Technology Security October 14, 2004.
Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.

Lesson 11-Virtual Private Networks. Overview Define Virtual Private Networks (VPNs). Deploy User VPNs. Deploy Site VPNs. Understand standard VPN techniques.
Business Data Communications, Fourth Edition Chapter 10: Network Security.

Business Data Communications, Fourth Edition Chapter 10: Network Security.
Network Access Management Trends in IT Applications for Management Prepared by: Ahmed Ibrahim S09761197.

Network Access Management Trends in IT Applications for Management Prepared by: Ahmed Ibrahim S
Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Contact Center Security Strategies Grant Sainsbury Practice Director, Dimension Data.

Similar presentations

Ads by Google