The Evolving Security Threat Landscape
Joint meeting with IEEE Computer and Communications Societies
Internet and network security threats evolve rapidly in both their nature and techniques. The attacker community and their motivations are also evolving, driving the adoption of new and different tactics. Media hype and user paranoia result in a significant lack of understanding about what these threats really mean and how they can be mitigated. As more and more of our lives are linked to network connectivity, it's important to understand the types of risks and be able to weigh them intelligently. Many tools are available to protect network connected resources, but their strengths and weaknesses are often not well understood. New threats, such as targeted attacks are already changing the way modern defenses need to be deployed. This talk will explore today's realities and identify emerging trends in network security. Details of the attacker community will be discussed. Attack techniques will be presented with technical explanations. Attention will be given to practical solutions to reduce attack surfaces. The pros and cons of different tools will be examined, as will best practices for their implementation. Both personal and professional topics in information security will be discussed.
Eric Hanselman is network protection architect for Internet Security Systems, Inc. (ISS), a public company. With over twenty years of communications security experience, he is responsible for understanding and translating the network security problem space for both ISS product strategy and designed security solutions. Prior to joining Internet Security Systems, Mr. Hanselman worked with technology leaders including Nortel/Bay Networks and NEC where he was involved in the introduction of many new communications technologies ranging from moving SNA systems onto IP-based networks to roll-outs for IPv6. He holds a patent in facsimile systems design and has spoken extensively on communications security technology and its applications.