cyberwarfare defense against penetration t esting and
play

CyberWarfare Defense against Penetration T esting and distributed - PowerPoint PPT Presentation

Sep 16, 2022 •23 likes •263 views

CyberWarfare Defense against Penetration T esting and distributed Denial-of-Service Attacks The Foundation of Network Security Stand-alone (ISP/Carrier Server Farm) modular TIPS for Perimeter Defense We brought a prototype for you!

  1. CyberWarfare Defense against Penetration T esting and distributed Denial-of-Service Attacks The Foundation of Network Security

  2. Stand-alone (ISP/Carrier – Server Farm) modular “TIPS” for Perimeter Defense We brought a prototype for you!

  3. Presentation Overview 1. Penetration Testing & dDoS Attacks - a quick overview 2. iSecure Technology – Overview of Core System 3. iSecure applied: Penetration Testing Defense 4. iSecure applied: dDoS Defense 5. iSecure Development: anti-Virus, anti-SPAM 6. Practical Applications in current production 7. More Information, White Paper, Demonstrations

  4. The Threat Penetration Testing & dDoS Attacks • Ongoing IP Scans to determine & exploit vulnerabilities • Penetration Testing provides the “road map” for subsequent attacks • dDoS attack take advantage of vulnerabilities • dDoS cause wide-spread outages and damages (economically, politically, etc).

  5. Defense against Penetration Testing? • None geared towards this purpose • Firewalls limit TCP/UDP ports, but leave those open which need to pass trafc (Web, E-Mail, FTP, SSH, …) • Scanning Tools (NMAP, Nessus, etc.) can map routers, frewalls, and all systems behind a frewall through open ports, determine Hardware, OSs, Confguration

  6. Existing Defense Approaches? • ALL existing solutions are re-active: • Signature-based trafc comparison/matching – fnds only known attacks • Bandwidth Averaging: requires “learning”, applies QoS methods, which cut of valid trafc spikes and aid dDoS attacks by “drowning out” the good trafc

  7. Existing Defenses? (Cont’d) • Router ACL modifcation works only against defnable trafc, very slow, may require manual SysAdmin interaction – dDoS damage is done within seconds • ICMP port blocking defends against some attacks, but application-level attacks share bandwidth with valid trafc, so port blocking does not help

  8. The iSecure CORE Technology • Real-time Performance (6ns to 6ms) • Signature-free • No Confguration, defends instantly • Stateless (!) – no attackable tables • Undetectable • Cannot be compromised • No MAC address / No IP Number

  9. Defending at Layer 2

  10. Works as In-Line-Scanner

  11. Real-Time Decisions Bit-Stream Engine “prepares” and slices Data for parallel Processing. Decision Engine applies the iSecure algorithm

  12. Prepared Data “Slices” are fed to the Decision Engine

  13. iSecure Decision Engine applies algorithm

  14. iSecure Algorithm “tags” data slices based on 3-dimensional model 2-dimensional model Slice of the decision matrix

  15. Re-Assembly of Data Slices

  16. Parallel Processing of Streams

  17. iSecure Technology Applied: • Penetration Testing Defense (“Infrastructure Cloaking”) • Distributed Denial-of-Service Defense In Development: • iSecure Anti-Virus • iSecure Anti-SPAM (UCE) E-Mail

  18. Penetration Testing Defense • Recognizes & Intercepts Penetration Testing probes • Reports all ports as “open” • Provides no Hardware/OS/Confguration • “Mirrors” the Attacker’s own confguration back • NMAP OS Guessing Score always the highest: 9,999,999 • Attacker does not know what the infrastructure looks like, and cannot target an attack or explore specifc vulnerabilities

  19. Denial-of-Service Defense • iSecure recognizes “good” from “bad” trafc, discards the bad, and allows the good trafc to go through • Defends against all three types of dDoS attacks: bandwidth fooding, TCP/IP stack attacks, application-level attacks • Defends against KNOWN and UNKNOWN dDoS attacks, incl. Synk4, etc.

  20. iSecure “TIPS” True Intrusion Prevention System

  21. Current Production Example: eCommerce • eCommerce Hosting Provider – Under constant dDoS attacks, web sites unavailable for days – iSecure deployment instantly defended against the dDoS attacks; web sites have been always available since

  22. Current Production Example Keeping E-Mail Flowing • SPAM Blacklist Provider OsiruSoft permanently shut down, resulting in e- mail outages for FTC and many other users • All other blacklist providers under dDoS attacks (SORBS, EazyNet, DSBL) • SoBig.F linked to Spam Blacklist attacks, exploiting the network of compromised machines

  23. Attacks on BlackList ISPs • iSecure systems are being deployed at SORBS in Brisbane, Australia, and Connecticut • Defending against dDoS attacks, keeping anti-SPAM blacklist providers on the net • Allowing Government and Corporate E- Mail systems to check against Blacklists to eliminate Spam

  24. More Information & Demo www.dDoS.com Demonstration WHITE PAPER s per request Live on the Internet Or On-Site Demo-Video Melior F.I.R.E CD Live on the Internet At www.dDoS.com For live comparison Or as DVD per and product testing request

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Cybersecurity for Future Presidents Lecture 14: Cyberwarfare and Other Topics for Future

Cybersecurity for Future Presidents Lecture 14: Cyberwarfare and Other Topics for Future

Cybersecurity for Future Presidents Lecture 14: Cyberwarfare and Other Topics for Future Presidents My office hours: Any Questions? Wed. afternoon, 12-3pm, 442 RH. About previous lecture? About homework? About reading? (Cyber

640 views • 22 slides
26 June 2020 Local Digital Landscape 58% 159% Unique mobile user SIM penetration penetration

26 June 2020 Local Digital Landscape 58% 159% Unique mobile user SIM penetration penetration

Rural Bankers Association of the Philippines 67 th Annual National Convention 26 June 2020 Local Digital Landscape 58% 159% Unique mobile user SIM penetration penetration Average time spent on internet 9 hours 67% and 45 Filipinos are

587 views • 16 slides
ts% 5.s% s.0% 1..9% November 730 3761 4825 1026 County Monthly Avg 45249 68984 ro2792

ts% 5.s% s.0% 1..9% November 730 3761 4825 1026 County Monthly Avg 45249 68984 ro2792

FY16 Quarter L Penetration Report Ethnicity State Penetration Rate 3.78% s.09% 10.134/o 3.81o/a 10.144/o 7.39o/o July 2015 1462 653 4534 119 2497 978 County Monthly Avg 70255 10662 140147 1046 33644 19089 County Penetration Rate

423 views • 9 slides
2007 Aurora Test Cyberwarfare is generally state-on-state action equivalent to an armed attack

2007 Aurora Test Cyberwarfare is generally state-on-state action equivalent to an armed attack

2007 Aurora Test Cyberwarfare is generally state-on-state action equivalent to an armed attack or use of force in cyberspace that may trigger a military response with a proportional kinetic use of force. Cyberterrorism can be considered

237 views • 12 slides
Tes esting O Over erview R ye C ity School District March 22, 2018 NYS Tes esting O Over

Tes esting O Over erview R ye C ity School District March 22, 2018 NYS Tes esting O Over

Tes esting O Over erview R ye C ity School District March 22, 2018 NYS Tes esting O Over erview ew Gr Grades 3 3-5: 5: State tests in ELA and Math Science grade 4 Gr Grades 6 6-8: 8: State tests in ELA and Math

150 views • 14 slides
Penetration testing auditability Alexandros Tsiridis & Stamatios Maritsas What is the purpose

Penetration testing auditability Alexandros Tsiridis & Stamatios Maritsas What is the purpose

MSc System and Network Engineering Penetration testing auditability Alexandros Tsiridis & Stamatios Maritsas What is the purpose of penetration testing auditability? Research questions What are the sources of penetration testing

554 views • 13 slides
Cone Penetration Test MoDOT moving in to the future . Cone Penetration Test (CPT) A method

Cone Penetration Test MoDOT moving in to the future . Cone Penetration Test (CPT) A method

Cone Penetration Test MoDOT moving in to the future . Cone Penetration Test (CPT) A method used to determine the Geotechnical properties of soils and delineating soil stratigraphy. CPT Program @ MoDOT The program got started To

383 views • 26 slides
All India Wind Penetration (in Energy terms) High Wind generation during June to August.

All India Wind Penetration (in Energy terms) High Wind generation during June to August.

All India Wind Penetration (in Energy terms) High Wind generation during June to August. All India level penetration 9% (max achieved) High Penetration in States: 1. Tamil Nadu 2. Rajasthan 3. Karnataka 4. Gujarat 5.

838 views • 17 slides
Web Application Penetration By: Frank Coburn & Haris Mahboob Testing Take Aways Overview

Web Application Penetration By: Frank Coburn & Haris Mahboob Testing Take Aways Overview

Web Application Penetration By: Frank Coburn & Haris Mahboob Testing Take Aways Overview of the web Web proxy tool Reporting Gaps in the process app penetration testing process Penetration testing vs vulnerability assessment What

301 views • 17 slides
S U H T L A E H Y C A G E L CoronavirusT esting: S U GuangzhouFenghua H

S U H T L A E H Y C A G E L CoronavirusT esting: S U GuangzhouFenghua H

S U H T L A E H Y C A G E L CoronavirusT esting: S U GuangzhouFenghua H Bioengineering CO.,L TD . T L A E H Y C SARS-CoV-2 Antibody Rapid Test A ReGenCoViD19, LLC G 460 Park Avenue E New York, New York L

911 views • 15 slides
Office Documents: New Weapons of Cyberwarfare Jonathan Dechaux dechaux@et.esiea-ouest.fr , Eric

Office Documents: New Weapons of Cyberwarfare Jonathan Dechaux dechaux@et.esiea-ouest.fr , Eric

Outline Introduction (Open)Office security architecture Fun and Profit - How to Bypass (Open)Office security Conclusion Office Documents: New Weapons of Cyberwarfare Jonathan Dechaux dechaux@et.esiea-ouest.fr , Eric Filiol filiol@esiea.fr ,

342 views • 30 slides
Challenges of Implementing Fair Defense Act Requirements & Indigent Defense Grant

Challenges of Implementing Fair Defense Act Requirements & Indigent Defense Grant

Challenges of Implementing Fair Defense Act Requirements & Indigent Defense Grant Opportunities Effective Post-Arrest and Indigent Defense Practices Longview, TX August 10, 2018 Scott Ehlers, Special Counsel T exas Indigent Defense

676 views • 30 slides
Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com

Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com

Penetration Testing for Certification: What we care about Marcel Medwed marcel.medwed@nxp.com Outline Common Criteria Evaluation Assurance Levels JHAS Penetration Testing and Countermeasures 2 Design and security of cryptographic

523 views • 40 slides
Agenda Wha hat t is A is ACT District CT District Testing esting? Why d hy do A o

Agenda Wha hat t is A is ACT District CT District Testing esting? Why d hy do A o

ACT CT, the , the Compa Company ny The he ACT CT Colle College ge and and Car Career eer Read eadiness iness Benchma Ben hmarks Agenda Wha hat t is A is ACT District CT District Testing esting? Why d hy do

422 views • 27 slides
W10 May 14, 2003 2:15 PM R E -E NGINEERING THE T ESTING O RGANIZATION : G ET I NTO THE F UTURE

W10 May 14, 2003 2:15 PM R E -E NGINEERING THE T ESTING O RGANIZATION : G ET I NTO THE F UTURE

BIO PRESENTATION W10 May 14, 2003 2:15 PM R E -E NGINEERING THE T ESTING O RGANIZATION : G ET I NTO THE F UTURE Clyneice Chaney Spherion Technology International Conference On Software Testing Analysis & Review May 12-16, 2003 Orlando,

605 views • 31 slides
Unit T esting Framework for T cl Unit T esting Framework for T cl What is Unit T

Unit T esting Framework for T cl Unit T esting Framework for T cl What is Unit T

Unit T esting Framework for T cl Unit T esting Framework for T cl What is Unit T esting? Why Unit T esting? Why do we need/want a framework? The TIP? Where to from here? 2017.10.18 Unit T esting Framework for T cl

454 views • 13 slides
WHO WANTS TO BE AN ETHICAL LAWYER? Prepared by: Prepared for: QUESTION #1: True or False:

WHO WANTS TO BE AN ETHICAL LAWYER? Prepared by: Prepared for: QUESTION #1: True or False:

WHO WANTS TO BE AN ETHICAL LAWYER? Prepared by: Prepared for: QUESTION #1: True or False: In-house counsel have a separate set of ethical rules by which they must abide . 2 Introduction Why the Landscape for In-House Counsel is Different:

514 views • 47 slides
Unidirectional Phenomena in Optic/Acoustic PT Materials 1 2 3 Xue-Feng Zhu, Jie Zhu &

Unidirectional Phenomena in Optic/Acoustic PT Materials 1 2 3 Xue-Feng Zhu, Jie Zhu &

Unidirectional Phenomena in Optic/Acoustic PT Materials 1 2 3 Xue-Feng Zhu, Jie Zhu & Xiang Zhang 1. Huazhong University of Science and Technology 2. The Hong Kong Polytechnic University 3. University of California at Berkeley

573 views • 19 slides
Configurations These slides will be casted into a poster form here is just an overview of

Configurations These slides will be casted into a poster form here is just an overview of

Metasurface Cloaks for Large Cylindrical Cluster Configurations These slides will be casted into a poster form here is just an overview of results that I would like to show. There are probably too many results/figures I would rather go for

860 views • 20 slides
The Guide Jason Stern Chief Execu5ve Officer Forward

The Guide Jason Stern Chief Execu5ve Officer Forward

Configure. Price. Quote. Contract. The Guide Jason Stern Chief Execu5ve Officer Forward Looking Statements Certain statements in this release and

381 views • 15 slides
EPiServer och Configuration Management EPiServer och Configuration Management Configuration

EPiServer och Configuration Management EPiServer och Configuration Management Configuration

EPiServer och Configuration Management EPiServer och Configuration Management Configuration Management in general Tools we use SCM Structure of folder and project Web.config Tips about Project Files and Assembly references 2 CM Tools used

347 views • 20 slides
Computational Location Privacy: Two Fundamental Problems Reza Shokri ETH Zurich Department of

Computational Location Privacy: Two Fundamental Problems Reza Shokri ETH Zurich Department of

Computational Location Privacy: Two Fundamental Problems Reza Shokri ETH Zurich Department of Computer Science They Profile You! They Track You! Loc ocation on-base sed S d Services es NSA L NSA Locati tion T Tracking Programs

399 views • 12 slides
Welcome www.phoenixdatacom.com Phoenix Datacom, our core competencies Now in our 30 th year,

Welcome www.phoenixdatacom.com Phoenix Datacom, our core competencies Now in our 30 th year,

Protection from DDoS attack is now your responsibility, but help is at hand Mark Tilston, Senior Cyber-Security Engineer PHOENIX DATACOM 2 nd December 2014 Welcome www.phoenixdatacom.com Phoenix Datacom, our core competencies Now in our 30 th

503 views • 48 slides
You Have No Right to Privacy Anyway. Get Over It!!! Dr. Wayne Summers TSYS School of Computer

You Have No Right to Privacy Anyway. Get Over It!!! Dr. Wayne Summers TSYS School of Computer

Constitution Day Lecture You Have No Right to Privacy Anyway. Get Over It!!! Dr. Wayne Summers TSYS School of Computer Science Columbus State University wsummers@columbusstate.edu http://csc.columbusstate.edu/summers 2 9/19/2013 Columbus

775 views • 52 slides

More recommend