Securing the Insecure

21
Securing the Insecure Prabath Siriwardena Director of Security Architecture WSO2

TAGS:

description

Securing the Insecure - WSO2Con 2014 USA

Transcript of Securing the Insecure

Page 1: Securing the Insecure

Securing the Insecure

Prabath Siriwardena Director of Security Architecture

WSO2

Page 2: Securing the Insecure

Perception

Page 3: Securing the Insecure

Perception

Page 4: Securing the Insecure

Perception

Page 5: Securing the Insecure

Perception

Page 6: Securing the Insecure

Correctness

Page 7: Securing the Insecure

C-I-A

C-I-A

Confidentiality

Integrity

Availability

Page 8: Securing the Insecure

Attacks : RSA – March, 2011

Page 9: Securing the Insecure

Attacks : Adobe – October, 2013

Page 10: Securing the Insecure

Attacks : Target – November, 2013

Page 11: Securing the Insecure

The Weakest Link: Monoprix, France

Page 12: Securing the Insecure

The Defense in Depth: Los Angeles Airport

Page 13: Securing the Insecure

Insider Attacks: WikiLeaks, NSA

Page 14: Securing the Insecure

Insider Attacks: Cyber Insider Threat (CINDER)

Page 15: Securing the Insecure

Security by Obscurity: Microsoft NTLM

Page 16: Securing the Insecure

Software Security: Code is the Focus

Page 17: Securing the Insecure

Operating System Security

Page 18: Securing the Insecure

Firewalls and IDS

Page 19: Securing the Insecure

Heartbleed

Page 20: Securing the Insecure

Threat Modeling

Page 21: Securing the Insecure

Thank You


Meghan Cook | Rachel Kenny | Austin Richards · Did households ever intercrop? Reasons households intercropped: Severely food insecure Moderately food insecure Mildly food insecure

Meghan Cook | Rachel Kenny | Austin Richards · Did households ever intercrop? Reasons households intercropped: Severely food insecure Moderately food insecure Mildly food insecure

Alternative Approaches to Locating the Food Insecure

Alternative Approaches to Locating the Food Insecure

Docsis Insecure by Design

Docsis Insecure by Design

Insecure Mag Infosec2014

Insecure Mag Infosec2014

The Dimensions of Insecure Work: A Factbook

The Dimensions of Insecure Work: A Factbook

SESSION ID: ASD-T10 Securing the Internet of Things ... · Mapping Attack Surface Areas ... mobile insecure APIs, lack of encryption, etc. #RSAC ... that you’ve done your due diligence

SESSION ID: ASD-T10 Securing the Internet of Things ... · Mapping Attack Surface Areas ... mobile insecure APIs, lack of encryption, etc. #RSAC ... that you’ve done your due diligence

Securing the Insecure

Securing the Insecure

2019 - Securing the Future | ManTech Securing the Future

2019 - Securing the Future | ManTech Securing the Future

Finding and Fighting the Causes of Insecure Applications

Finding and Fighting the Causes of Insecure Applications

Security Risk Analysis for the Extreme Insecure Website

Security Risk Analysis for the Extreme Insecure Website

Insecure Mag 30

Insecure Mag 30

The insecure brand

The insecure brand

Securing Insecure Networks SSL/TLS & IPSec. 4-1: Cryptographic System Copyright Pearson Prentice-Hall 2010 2.

Securing Insecure Networks SSL/TLS & IPSec. 4-1: Cryptographic System Copyright Pearson Prentice-Hall 2010 2.

Review Paper The Insecure/Ambivalent Pattern of Attachment ...parentalalienationresearch.com/PDF/1994cassidy.pdf · Review Paper The Insecure/Ambivalent Pattern of Attachment: Theory

Review Paper The Insecure/Ambivalent Pattern of Attachment ...parentalalienationresearch.com/PDF/1994cassidy.pdf · Review Paper The Insecure/Ambivalent Pattern of Attachment: Theory

Insecure indexing

Insecure indexing

Women's Insecure Property Rights

Women's Insecure Property Rights

Securing the Insecure: A First-Line-of-Defense for ... · Securing the Insecure: A First-Line-of-Defense for Nanoscale Communication Systems Operating in THz Band Waqas Aman y, M.

Securing the Insecure: A First-Line-of-Defense for ... · Securing the Insecure: A First-Line-of-Defense for Nanoscale Communication Systems Operating in THz Band Waqas Aman y, M.

Insecure Mag 43

Insecure Mag 43

The Impact of Nationalization and Insecure Property Rights ...

The Impact of Nationalization and Insecure Property Rights ...

The Significance of Insecure Attachment and … · The Significance of Insecure Attachment and Disorganization in the Development of Children’s Externalizing Behavior: A Meta-Analytic

The Significance of Insecure Attachment and … · The Significance of Insecure Attachment and Disorganization in the Development of Children’s Externalizing Behavior: A Meta-Analytic