Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

•Transferir como PPTX, PDF•

0 gostou•220 visualizações

Les équipes de sécurité ont besoin de solutions de cyber sécurité de pointe (Arbor Edge Defense) , capables de détecter et d’arrêter tous les types de menaces cybernétiques - qu’elles soient des menaces entrantes (DDOS & Advanced Threat) ou des communications malveillantes sortantes à partir de périphériques internes compromis. De manière aussi importante, ces solutions doivent également pouvoir s'intégrer dans la pile de sécurité existante d'une organisation et / ou consolider des fonctionnalités afin de réduire les coûts, la complexité et les risques. La conférence a pour objectif de montrer l’évolution des menaces DDOS et Advanced threat sur le volet de la complexité et aussi la volumétrie. Cette évolution a un impact directe sur les solutions à mettre en place pour faire face à ce changement. NETSCOUT AED (Arbor Edge Defence) est une telle solution pour répondre efficacement à cette problématique. La position unique d'AED sur le bord du réseau (c'est-à-dire entre le routeur et le pare-feu), son moteur de traitement de paquets sans état et les informations de menace basées sur la réputation qu'elle reçoit du flux ATLAS Threat Intelligence de NETSCOUT lui permettent de détecter et d'arrêter automatiquement les menaces entrantes et les communications sortantes. des hôtes internes compromis - agissant essentiellement en tant que première et dernière ligne de défense pour les organisations. Moncef ZID - Arbor Networks Sales Manager France and North Africa - Netscout

Tecnologia

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 1
ALGER ACS 2019
Moncef ZID
Territory Manager North Africa
Avoiding The Storm
AED First and Last Line Defense

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 2
Imagine if we could stop the storm
before it got started?

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 3
Imagine if we could stop the storm
before it got started?
We can.
____

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 4
Cyber Storms
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 4
We all take the weather for
granted…just like cyber attacks
We all agree that climate changes
are happening…so is the nature of
cyber attacks

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 5
Early Warning System:

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 6
Cyber Storms
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 6
Application
Attacks
Volumetric
Attacks
Multi-Vector
Attacks

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 7
Inside Out - The Storms Within
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 7
There Is A Storm Brewing That We Are Monitoring Closely.
Command &
Control
Compromised
Systems
Outbound
Communications

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 8
Weather Satellite
Early Warning
System
Weather Satellite
Early Warning
System
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 8

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 9
Early Warning
from 400+
Systems
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 9

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 10
Early Warning System:
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 10
400+ Service Providers
& customers sharing
anonymous data
Global Source

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 11
Early Warning System:
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 11
Indexing 250K indicators of compromise
Analysis / Data

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 12
Early Warning System:
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 12
The smart people behind the data

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 13
Early Warning System:
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 13
CORRELATION
Isolating where and who
is driving the attack

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 14COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 14
Interconnecting
Threats for a
Safer Internet

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 15
Preventing the Perfect
Storm Inside and
Outside

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 16
First & Last Line of Smart
Automated Defense
Unique
Global Threat
Intelligence
Inbound Threats
Outbound Threats
AIF = ATLAS INTELLEGENCE FEED

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 17
Arbor Edge Defense
First Line of Defense Last Line of Defense
COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 17
AED

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 18
Summary

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 19
Guardians of the Connected World
• The Action :
Intelligence sharing
to keep the Internet
SAFE FROM STORMS
• The Mission : To
continue cleaning up
the Internet for a
SAFER CYBER
WORLD
A global problem requires a global partner : Only with NETSCOUT.
• The Strategy :
Leveraging global and
local visibility building an
INTELLIGENT DEFENSE

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 20
• Stateless, high performance
blocking of all types of
inbound DDoS attacks
• volumetric attacks
• state exhaustion attacks
• application layer DDoS
attacks, reconnaissance,
Geo-location, known bad
IoCs.
What about on-premise DDoS Defense?
Sandbox, Etc. …
End Points
Firewall
TIG
DDoS
IDPS

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 21
Arbor Edge Defense: Combining DDoS and TIG
Sandbox, Etc. …
End Points
Firewall
TIG
DDoS
AED
Reputation-
based
blocking
DDoS API or
SIEM
TIP
Threat
Intelligence
Feeds
IDPS

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 22
The first and last line of defense
First Line of Defense:
• protects availability and performance of
network and service from DDoS;
• takes pressure off downstream security
stack.
Last Line of Defense:
 detects and stops missed IoCs before
the data breach occurs.
Integrated into security workflows:
 Continuously armed with highly curated
ATLAS Threat Intelligence and 3rd party
IoCs via STIX & TAXII
 Automatically obtains additional context
related to blocked IoCs enabling security
teams to hunt using other tools
Sandbox, Etc. …
End Points
Firewall
AED
Reputation-
based
blocking
DDoS
IDPS
DDoS
OutboundThreat
Communication
Inbound
Threats

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 23
Forecasting the future?

COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 24

Mais conteúdo relacionado

Mais procurados

Cyber response to insider threats 3.1

David Spinks

Accelerating Digital Leadership

M2M Alliance e.V.

MITRE ATT&CKcon 2.0: ATT&CK Updates - Controls Mapping; Mike Long, MITRE

MITRE - ATT&CKcon

Keynote address by Rami Dawoodi (Regional Sales Manager, Thales) at Two Become One Conference held on 20th November 2019 at Movenpick Hotel, Karachi Pakistan. The conference was hosted by Access Group in collaboration with its strategic global partner and data protection leader - Thales. Be in the know of how Thales acquired Gemalto and now stands as a global leader in digital identity and security.

Two Become One Conference Keynote: When Two Become One: A New leader in Data ...

Access Group

From the Arsenal of Democracy, to Democratizing Security

Dug Song

Cisco Connect 2018 Indonesia - Building a secure data center

NetworkCollaborators

Network as a sensor

Cisco do Brasil

Modern Security the way Equifax Should Have

Eric Vanderburg

Managing and insuring cyber risk - a risk perspective

IISPEastMids

Japan’s data protection law, the Act on the Protection of Personal Information (APPI) requires that companies have sufficient data protections for data transfers out of Japan. Since APPI went into effect in May 2017, companies, including subsidiaries of U.S.-headquartered companies in Japan, are liable for any violation and are subject to enforcement. APPI recognizes that the APEC Cross Border Privacy Rules (CBPR) system is one mechanism to demonstrate that required data protections are in place. An APEC CBPR Certification can support companies’ compliance efforts with APPI and show their commitment to secure U.S . -Japan data transfer. This webinar covered the following: -International data transfer requirements under APPI and who they apply to along with how the APEC CBPR system fits in with these requirements -Introduction to APEC CBPR certification, including benefits in the context of APPI requirements -Real-world examples from industry experts on how APEC CBPR certification can fit in with your global compliance strategy

Feb13 webinar the path to u.s. - japan data transfer compliance - final

TrustArc

Cisco Connect 2018 Vietnam - data center transformation - vn

NetworkCollaborators

Qonex - Securing the IoT

IISPEastMids

Cisco Live Cancun PR Session

Felipe Lamus

Cisco Live Cancun Collaboration Press

Felipe Lamus

Protegendo sua rede

Cisco do Brasil

Cisco Connect 2018 Indonesia - Cybersecurity Strategy

NetworkCollaborators

Bitdefender Whitepaper AntiRansomware

Jose Lopez

Ministry of Foreign Affairs

Cisco Case Studies

Reduciendo su riesgo cibernético midiendo su Cyber Exposure

Cristian Garcia G.

Mais procurados (19)

Cyber response to insider threats 3.1

Accelerating Digital Leadership

MITRE ATT&CKcon 2.0: ATT&CK Updates - Controls Mapping; Mike Long, MITRE

Two Become One Conference Keynote: When Two Become One: A New leader in Data ...

From the Arsenal of Democracy, to Democratizing Security

Cisco Connect 2018 Indonesia - Building a secure data center

Network as a sensor

Modern Security the way Equifax Should Have

Managing and insuring cyber risk - a risk perspective

Feb13 webinar the path to u.s. - japan data transfer compliance - final

Cisco Connect 2018 Vietnam - data center transformation - vn

Qonex - Securing the IoT

Cisco Live Cancun PR Session

Cisco Live Cancun Collaboration Press

Protegendo sua rede

Cisco Connect 2018 Indonesia - Cybersecurity Strategy

Bitdefender Whitepaper AntiRansomware

Ministry of Foreign Affairs

Reduciendo su riesgo cibernético midiendo su Cyber Exposure

Semelhante a Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

NetNordic_DDoS-War-Room_25-april-2019.pptx

MansurAli32

Scrapping for Pennies: How to implement security without a budget

Ryan Wisniewski

0Day to HeroDay: Surviving an Attack and Establishing a Security Organization

Ryan Wisniewski

In March 2018, the UK launched its Secure by Design report in order to help defend against security threats, especially for consumer Internet of Things products and services. Over the past few years, poorly secured IoT devices have been hijacked in both targeted as well as large-scale DDoS attacks such as Mirai. In addition to this, poor security can threaten both privacy and safety. The speaker, David Rogers authored the UK’s ‘Code of Practice for Security in Consumer IoT Products and Associated Services’, in collaboration with DCMS, NCSC, ICO and industry colleagues with extensive support from the security research community. David will discuss the guidelines within the Code of Practice, why these were prioritised and why the top three became dealing with the password problem, implementing vulnerability disclosure and acting on it and addressing software updates. David will also look at what’s next: what will the challenges be and will the Code of Practice succeed in its aims? How can IoT products possibly be certified and how will the threat landscape change in response to improving security?

The UK's Code of Practice for Security in Consumer IoT Products and Services ...

44CON

End to End Security - Check Point

Harry Gunns

Ensure Every Customer Matters With End User Monitoring at AppD Global Tour Lo...

AppDynamics

MASSIVE SCALE SECURITY FOR THE IoT

Juanjo MARTINEZ PAGAN

apidays LIVE New York 2021 - Simplify Open Policy Agent with Styra DAS by Tim...

apidays

Brink sanders cisco architecture keynote

Nur Shiqim Chok

[Cisco Connect 2018 - Vietnam] Brink sanders cisco connect opening_keynote_vn_v4

Nur Shiqim Chok

Symantec Webinar | Tips for Successful CASB Projects

Symantec

Atelier Technique ARBOR NETWORKS ACSS 2018

African Cyber Security Summit

NETSCOUT has released the latest Threat Intelligence Report which provides insight into orchestrated attacks and activities analyzed through the first half of the 2019 calendar year. Cybercrime has entered the mainstream, and the operational model being used has become efficient and effective at invading corporate networks, accessing government agencies and spreading misinformation to the public. While sophisticated malware continues to advance, deceptive practices and social engineering continue to lead the intrusion race.

NETSCOUT Threat Intelligence Report 1H 2019: Cybercrime’s Innovation Machine

NETSCOUT

At AWS, security is a top priority. Join us to discuss how to use AWS IoT services, such as AWS IoT Core, AWS IoT Device Management, and AWS IoT Device Defender, to improve the security of IoT applications. We discuss IoT security best practices and cover how to manage security across IoT fleets, including monitoring and auditing of devices. Hear from AWS IoT experts, AWS customer Rachio, and AWS partner Eseye on their experience in securing devices.

Security Management for IoT devices - SRV202 - Chicago AWS Summit

Amazon Web Services

IoT Microcontrollers and Getting Started with Amazon FreeRTOS (IOT338-R1) - A...

Amazon Web Services

Fundamentals of Information Systems Security Chapter 2

Dr. Ahmed Al Zaidy

Three Networks, Different Risks - IT, OT and Engineering

Waterfall Security Solutions

FIRST CTI Symposium: Turning intelligence into action with MITRE ATT&CK™

Katie Nickels

Migration to microsoft_azure_with_zscaler

Zscaler

Gary Wong, Consultant Engineer, APAC, Juniper Networks Complexity is always one of CXO's concerns when enterprises consider moving workloads to the cloud. Learn how Juniper tackles such problem with a unified management approach. Solutions to address challenges in deploying hybrid cloud model, particularly in connectivity, orchestration, analytics and security will also be discussed in this session.

Accelerating Your Cloud Innovation

Amazon Web Services

Semelhante a Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019 (20)

NetNordic_DDoS-War-Room_25-april-2019.pptx

Scrapping for Pennies: How to implement security without a budget

0Day to HeroDay: Surviving an Attack and Establishing a Security Organization

The UK's Code of Practice for Security in Consumer IoT Products and Services ...

End to End Security - Check Point

Ensure Every Customer Matters With End User Monitoring at AppD Global Tour Lo...

MASSIVE SCALE SECURITY FOR THE IoT

apidays LIVE New York 2021 - Simplify Open Policy Agent with Styra DAS by Tim...

Brink sanders cisco architecture keynote

[Cisco Connect 2018 - Vietnam] Brink sanders cisco connect opening_keynote_vn_v4

Symantec Webinar | Tips for Successful CASB Projects

Atelier Technique ARBOR NETWORKS ACSS 2018

NETSCOUT Threat Intelligence Report 1H 2019: Cybercrime’s Innovation Machine

Security Management for IoT devices - SRV202 - Chicago AWS Summit

IoT Microcontrollers and Getting Started with Amazon FreeRTOS (IOT338-R1) - A...

Fundamentals of Information Systems Security Chapter 2

Three Networks, Different Risks - IT, OT and Engineering

FIRST CTI Symposium: Turning intelligence into action with MITRE ATT&CK™

Migration to microsoft_azure_with_zscaler

Accelerating Your Cloud Innovation

Mais de African Cyber Security Summit

Bilan & Perspectives #ACSS2019

African Cyber Security Summit

Rapport de Visibilité #ACSS2019

African Cyber Security Summit

Presque toutes les entreprises sont engagées dans un processus de transformation digitale. Cette transformation génère de nouveaux risques et les attaques ciblant les applications web sont actuellement la cause principale des violations de données. Si la plupart des WAF (pare-feu applicatif) permettent de faire face aux menaces les plus courantes et déjà identifiées, ils sont pourtant inadaptés pour contrer les attaques avancées qui ne cessent de se développer à un rythme effréné. Karim ZGUIOUI - Systems Engineer North Africa - F5

Atelier Technique - F5 - #ACSS2019

African Cyber Security Summit

Les entreprises qui cherchent à maîtriser les défis liés à la gestion d’accès doivent établir des politiques d’accès granulaires pour différents services en prenant en compte non seulement l’identité d’un utilisateur mais également un contexte. F5 Access Policy Manager permet d’évaluer le niveau de sécurité d’un utilisateur, de procéder à une authentification à l’aide de mécanismes avancés comme SAML, NTLM, OAuth, MFA, etc. et d’assurer le SSO auprès de certaines applications pour garantir l’accès à une ressource particulière. Karim ZGUIOUI - Systems Engineer North Africa - F5

Atelier Technique - F5 - #ACSS2019

African Cyber Security Summit

Séduites par une vaste gamme d'applications de productivité, réunies sur une même plate-forme, de nombreuses entreprises s’intéressent à Office 365. Mais celles qui franchissent le pas se rendent compte que les enjeux de sécurité du cloud ne sont pas aussi simples à résoudre qu’elles le pensaient. La plate-forme Office 365 réunit des outils de communication, de création de contenu et de partage au sein d’un environnement cloud ouvert à tous les utilisateurs et compatibles avec tous les appareils. Cette plate-forme unique concentre ainsi tous les enjeux de sécurité auxquelles l’entreprise doit faire face. Il est donc impératif de bien réfléchir à cette question. Retrouvez nous pour ce workshop pour en savoir plus sur les implications de sécurité et les éléments clés à prendre en considération pour toute entreprise ayant adopté ou prévoyant de passer à Office 365. Abderezak OUARET - Business Development Manager North Africa - SYMENTEC

Atelier Technique - Symantec - #ACSS2019

African Cyber Security Summit

Conférence - Les enjeux et la vision de Veritas sur la protection des donnée...

African Cyber Security Summit

Le 10 Juin 2018, l’Algérie promulguait la loi sur la protection des données à caractère personnel. Pour les entreprises, cette loi induit un changement de paradigme dans la protection des données personnelles et induit un profond changement dans leur organisation, où la protection des données personnelles devra désormais faire partie intégrante de leur stratégie (privacy by design, cartographies des données et des processus de traitement , etc.). Cela suscite de nombreuses réflexions, notamment : Sommes nous prêts à adapter nos activités pour se conformer aux nouvelles exigences?, sommes-nous contient de ce qui nous attend en terme de charge det ravail et d'investissements?, avons nous les personnes pour le faire? par où commencer ? et surtout quelles démarches adopter? Un spécialiste de la sécurité des SI vient d'entamer cette mission dans son entreprise et propose de partager avec nous son approche et la démarche adoptée. Rabah HACHICHI - Spécialiste Cyber Securité et Data Protection - BNP PARIBAS EL DJAZAIR

Conférence - Loi 18-07 du 10 Juin 2018 : la protection des données à caractèr...

African Cyber Security Summit

Cela fait une dizaine d’année que la fonction RSSI a été créée, mais à ce moment-là les RSSI ne se doutait pas qu’ils seraient un jour à la fois managers, techniciens, gestionnaires des risques organisationnels, réglementaires, stratégiques et opérationnels et souvent-même gestionnaires de projets, et ce, pour pouvoir garantir un niveau de sécurité optimal. Pour cela, les compétences techniques d’un RSSI ainsi que ses qualités organisationnelles et managériales doivent être au rendez-vous pour pouvoir être l’interlocuteur des managers, des techniciens, des utilisateurs lambda, des partenaires et des tiers, mais aussi, pour prendre en charge les aspects juridiques, réglementaires et normatifs De plus, il est connu que le RSSI change souvent de rythme : un jour en situation de crise pour la gestion d’un incident de sécurité avéré, et le lendemain, en rédaction de procédures et en sensibilisation des utilisateurs. Samir ALLILOUCHE - RSSI - CNEP BANQUE

Conférence - Le métier du RSSI en pleine évolution - #ACSS2019

African Cyber Security Summit

Aujourd'hui, il devient de plus en plus possible aux employés de travailler n'importe où et n'importe quand, ainsi la mobilité et le cloud computing font désormais une partie intégrante de toutes les organisations. Les navigateurs deviennent naturellement l'outil d'accès au travail, au même titre que les appareils mobiles. Avec un certain nombre de navigateurs sur le marché utilisant un certain nombre de modules complémentaires, il devient presque impossible d'assurer la sécurité contre les menaces et les attaques basées sur un navigateur, comme le ransomware par exemple. Les navigateurs aussi constituent un point d'entrée principal pour les cyber-attaques. Il est temps de penser à gérer les navigateurs comme les terminaux pour sceller la sécurité de notre environnement. Amine BEYAOUI - Consultant Senior, Afrique Francophone - ManageEngine

Conférence - Vecteurs d'attaques basées sur les navigateurs et comment se pro...

African Cyber Security Summit

L’explosion du périmètre de l’infrastructure informatique impose d’en redéfinir sa sécurisation. Les usages des utilisateurs sont de plus en plus pointus et les métiers imposent des contraintes de production, bien sûr, mais aussi de flexibilité, d’agilité et d’expérience utilisateur. Nous y voilà : c’est tout simplement grâce à ces utilisateurs que nous allons pouvoir redéfinir notre périmètre. Les actions et les permissions qui leurs seront accordés vont constituer la base d’une stratégie IAM. Celle-ci devient essentielle et de plus en plus stratégique car elle impacte et lie directement l’expérience des utilisateurs avec l’infrastructure informatique. Le PAM est une composante cruciale de l’IAM, puisque s’agit des accès et des permissions qui sont accordés aux utilisateurs « à hauts privilèges » : ceux qui peuvent tout faire, tout détruire… ceux que recherchent les hackers ! On pense bien sûr, à protéger les admin internes, et autres équipes IT, mais maitrisez-vous vraiment tous ces utilisateurs privilégiés ? Alexis SERRANO - Channel Manager - South EMEA- BeyondTrust

Conférence - Pourquoi le PAM (Privileged Access Management) doit-il être le s...

African Cyber Security Summit

Pour prioriser efficacement vos efforts, vous devez d'abord comprendre vos applications - ses composantes clés et ses domaines de vulnérabilité. Considérez les plates-formes sur lesquelles l'application réside ; les données qui transitent entre un utilisateur et une application ; le DNS qui résout l'adresse IP pour accéder à l'application; les serveurs Web et d'application ; et les API associées qui sont utilisées par d'autres applications et systèmes. F5 améliore de façon unique la stratégie de sécurité que votre entreprise souhaite adopter avec des solutions et des services de sécurité définis par des politiques et des contrôles robustes et simplifie la gestion efficace des facteurs de risque qui sont en constante évolution. « Si vous voulez protéger les outils qui pilotent votre business, cela signifie protéger les applications qui les font fonctionner » Karim ZGUIOUI - Systems Engineer North Africa - F5

Conférence - Adopter une approche de sécurité applicative avancée - #ACSS 2019

African Cyber Security Summit

Tout système sécurisé doit pouvoir identifier tous ses aspects et la partie principale de tout système est les utilisateurs. Internet est le système mondial le plus utilisé de la période actuelle. Cependant, en raison de l'absence de réglementation, l'identification des utilisateurs d'Internet est un processus difficile. Les technologies émergentes telles que le blockchain peuvent être utilisées pour introduire une identité numérique dans la sécurisation de nos données et pour rendre l'utilisation d'Internet plus fiable. Ayham Ahmed MADI - Software engineer - GEP TECHNOLOGIES

Conférence - Digital Identity and Blockchain - #ACSS2019

African Cyber Security Summit

Bilan & Perspectives - ACSS 2018

African Cyber Security Summit

Rapport de Visibilité ACCS 2018

African Cyber Security Summit

Atelier Technique CISCO ACSS 2018

African Cyber Security Summit

Atelier Technique SYMANTEC ACSS 2018

African Cyber Security Summit

Atelier Technique MANAGE ENGINE ACSS 2018

African Cyber Security Summit

Atelier Technique EXTREME NETWORKS ACSS 2018

African Cyber Security Summit

Atelier Technique WALLIX ACSS 2018

African Cyber Security Summit

Atelier Technique RAPID7 ACSS 2018

African Cyber Security Summit

Mais de African Cyber Security Summit (20)

Bilan & Perspectives #ACSS2019

Rapport de Visibilité #ACSS2019

Atelier Technique - F5 - #ACSS2019

Atelier Technique - Symantec - #ACSS2019

Conférence - Les enjeux et la vision de Veritas sur la protection des donnée...

Conférence - Loi 18-07 du 10 Juin 2018 : la protection des données à caractèr...

Conférence - Le métier du RSSI en pleine évolution - #ACSS2019

Conférence - Vecteurs d'attaques basées sur les navigateurs et comment se pro...

Conférence - Pourquoi le PAM (Privileged Access Management) doit-il être le s...

Conférence - Adopter une approche de sécurité applicative avancée - #ACSS 2019

Conférence - Digital Identity and Blockchain - #ACSS2019

Bilan & Perspectives - ACSS 2018

Rapport de Visibilité ACCS 2018

Atelier Technique CISCO ACSS 2018

Atelier Technique SYMANTEC ACSS 2018

Atelier Technique MANAGE ENGINE ACSS 2018

Atelier Technique EXTREME NETWORKS ACSS 2018

Atelier Technique WALLIX ACSS 2018

Atelier Technique RAPID7 ACSS 2018

Último

In this session, we will delve into strategic approaches for optimizing knowledge management within Microsoft 365, amidst the evolving landscape of Copilot. From leveraging automatic metadata classification and permission governance with SharePoint Premium, to unlocking Viva Engage for the cultivation of knowledge and communities, you will gain actionable insights to bolster your organization's knowledge-sharing initiatives. In this session, we will also explore how to facilitate solutions to enable your employees to find answers and expertise within Microsoft 365. You will leave equipped with practical techniques and a deeper understanding of how there is more to effective knowledge management than just enabling Copilot, but building actual solutions to prepare the knowledge that Copilot and your employees can use.

Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...

Drew Madelung

The presentation explores the development and application of artificial intelligence (AI) from its inception to its current status in the modern world. The term "artificial intelligence" was first coined by John McCarthy in 1956 to describe efforts to develop computer programs capable of performing tasks that typically require human intelligence. This concept was first introduced at a conference held at Dartmouth College, where programs demonstrated capabilities such as playing chess, proving theorems, and interpreting texts. In the early stages, Alan Turing contributed to the field by defining intelligence as the ability of a being to respond to certain questions intelligently, proposing what is now known as the Turing Test to evaluate the presence of intelligent behavior in machines. As the decades progressed, AI evolved significantly. The 1980s focused on machine learning, teaching computers to learn from data, leading to the development of models that could improve their performance based on their experiences. The 1990s and 2000s saw further advances in algorithms and computational power, which allowed for more sophisticated data analysis techniques, including data mining. By the 2010s, the proliferation of big data and the refinement of deep learning techniques enabled AI to become mainstream. Notable milestones included the success of Google's AlphaGo and advancements in autonomous vehicles by companies like Tesla and Waymo. A major theme of the presentation is the application of generative AI, which has been used for tasks such as natural language text generation, translation, and question answering. Generative AI uses large datasets to train models that can then produce new, coherent pieces of text or other media. The presentation also discusses the ethical implications and the need for regulation in AI, highlighting issues such as privacy, bias, and the potential for misuse. These concerns have prompted calls for comprehensive regulations to ensure the safe and equitable use of AI technologies. Artificial intelligence has also played a significant role in healthcare, particularly highlighted during the COVID-19 pandemic, where it was used in drug discovery, vaccine development, and analyzing the spread of the virus. The capabilities of AI in healthcare are vast, ranging from medical diagnostics to personalized medicine, demonstrating the technology's potential to revolutionize fields beyond just technical or consumer applications. In conclusion, AI continues to be a rapidly evolving field with significant implications for various aspects of society. The development from theoretical concepts to real-world applications illustrates both the potential benefits and the challenges that come with integrating advanced technologies into everyday life. The ongoing discussion about AI ethics and regulation underscores the importance of managing these technologies responsibly to maximize their their benefits while minimizing potential harms.

Artificial Intelligence: Facts and Myths

Joaquim Jorge

This presentations targets students or working professionals. You may know Google for search, YouTube, Android, Chrome, and Gmail, but did you know Google has many developer tools, platforms & APIs? This comprehensive yet still high-level overview outlines the most impactful tools for where to run your code, store & analyze your data. It will also inspire you as to what's possible. This talk is 50 minutes in length.

Powerful Google developer tools for immediate impact! (2023-24 C)

wesley chun

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Tata AIG General Insurance Company - Insurer Innovation Award 2024

The Digital Insurer

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Created by Mozilla Research in 2012 and now part of Linux Foundation Europe, the Servo project is an experimental rendering engine written in Rust. It combines memory safety and concurrency to create an independent, modular, and embeddable rendering engine that adheres to web standards. Stewardship of Servo moved from Mozilla Research to the Linux Foundation in 2020, where its mission remains unchanged. After some slow years, in 2023 there has been renewed activity on the project, with a roadmap now focused on improving the engine’s CSS 2 conformance, exploring Android support, and making Servo a practical embeddable rendering engine. In this presentation, Rakhi Sharma reviews the status of the project, our recent developments in 2023, our collaboration with Tauri to make Servo an easy-to-use embeddable rendering engine, and our plans for the future to make Servo an alternative web rendering engine for the embedded devices industry. (c) Embedded Open Source Summit 2024 April 16-18, 2024 Seattle, Washington (US) https://events.linuxfoundation.org/embedded-open-source-summit/ https://ossna2024.sched.com/event/1aBNF/a-year-of-servo-reboot-where-are-we-now-rakhi-sharma-igalia

A Year of the Servo Reboot: Where Are We Now?

Igalia

What are drone anti-jamming systems? The drone anti-jamming systems and anti-spoof technology protect against interference, jamming, and spoofing of the UAVs. To protect their security, countries are beginning to research drone anti-jamming systems, also known as drone strike weapons. The anti-jam and anti-spoof technology protects against interference, jamming and spoofing. A drone strike weapon is a drone attack weapon that can attack and destroy enemy drones. So what is so unique about this amazing system?

What Are The Drone Anti-jamming Systems Technology?

Antenna Manufacturer Coco

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

With more memory available, system performance of three Dell devices increased, which can translate to a better user experience Conclusion When your system has plenty of RAM to meet your needs, you can efficiently access the applications and data you need to finish projects and to-do lists without sacrificing time and focus. Our test results show that with more memory available, three Dell PCs delivered better performance and took less time to complete the Procyon Office Productivity benchmark. These advantages translate to users being able to complete workflows more quickly and multitask more easily. Whether you need the mobility of the Latitude 5440, the creative capabilities of the Precision 3470, or the high performance of the OptiPlex Tower Plus 7010, configuring your system with more RAM can help keep processes running smoothly, enabling you to do more without compromising performance.

Boost PC performance: How more available memory can improve productivity

Principled Technologies

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Handwritten Text Recognition for manuscripts and early printed texts

Maria Levchenko

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

A Call to Action for Generative AI in 2024

Results

Building Digital Trust in a Digital Economy Veronica Tan, Director - Cyber Security Agency of Singapore Apidays Singapore 2024: Connecting Customers, Business and Technology (April 17 & 18, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...

apidays

Imagine a world where information flows as swiftly as thought itself, making decision-making as fluid as the data driving it. Every moment is critical, and the right tools can significantly boost your organization’s performance. The power of real-time data automation through FME can turn this vision into reality. Aimed at professionals eager to leverage real-time data for enhanced decision-making and efficiency, this webinar will cover the essentials of real-time data and its significance. We’ll explore: FME’s role in real-time event processing, from data intake and analysis to transformation and reporting An overview of leveraging streams vs. automations FME’s impact across various industries highlighted by real-life case studies Live demonstrations on setting up FME workflows for real-time data Practical advice on getting started, best practices, and tips for effective implementation Join us to enhance your skills in real-time data automation with FME, and take your operational capabilities to the next level.

From Event to Action: Accelerate Your Decision Making with Real-Time Automation

Safe Software

Automating Google Workspace (GWS) & more with Apps Script

wesley chun

BooK Now Call us at +918448380779 to hire a gorgeous and seductive call girl for sex. Take a Delhi Escort Service. The help of our escort agency is mostly meant for men who want sexual Indian Escorts In Delhi NCR. It should be noted that any impersonator will get 100 attention from our Young Girls Escorts in Delhi. They will assume the position of reliable allies. VIP Call Girl With Original Photos Book Tonight +918448380779 Our Cheap Price 1 Hour not available 2 Hours 5000 Full Night 8000 TAG: Call Girls in Delhi, Noida, Gurgaon, Ghaziabad, Connaught Place, Greater Kailash Delhi, Lajpat Nagar Delhi, Mayur Vihar Delhi, Chanakyapuri Delhi, New Friends Colony Delhi, Majnu Ka Tilla, Karol Bagh, Malviya Nagar, Saket, Khan Market, Noida Sector 18, Noida Sector 76, Noida Sector 51, Gurgaon Mg Road, Iffco Chowk Gurgaon, Rajiv Chowk Gurgaon All Delhi Ncr Free Home Deliver

08448380779 Call Girls In Civil Lines Women Seeking Men

Delhi Call girls

CNv6 Instructor Chapter 6 Quality of Service

giselly40

Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

4. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 4 Cyber Storms COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 4 We all take the weather for granted…just like cyber attacks We all agree that climate changes are happening…so is the nature of cyber attacks

6. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 6 Cyber Storms COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 6 Application Attacks Volumetric Attacks Multi-Vector Attacks

7. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 7 Inside Out - The Storms Within COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 7 There Is A Storm Brewing That We Are Monitoring Closely. Command & Control Compromised Systems Outbound Communications

8. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 8 Weather Satellite Early Warning System Weather Satellite Early Warning System COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 8

10. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 10 Early Warning System: COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 10 400+ Service Providers & customers sharing anonymous data Global Source

11. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 11 Early Warning System: COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 11 Indexing 250K indicators of compromise Analysis / Data

12. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 12 Early Warning System: COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 12 The smart people behind the data

13. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 13 Early Warning System: COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 13 CORRELATION Isolating where and who is driving the attack

16. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 16 First & Last Line of Smart Automated Defense Unique Global Threat Intelligence Inbound Threats Outbound Threats AIF = ATLAS INTELLEGENCE FEED

17. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 17 Arbor Edge Defense First Line of Defense Last Line of Defense COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 17 AED

19. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 19 Guardians of the Connected World • The Action : Intelligence sharing to keep the Internet SAFE FROM STORMS • The Mission : To continue cleaning up the Internet for a SAFER CYBER WORLD A global problem requires a global partner : Only with NETSCOUT. • The Strategy : Leveraging global and local visibility building an INTELLIGENT DEFENSE

20. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 20 • Stateless, high performance blocking of all types of inbound DDoS attacks • volumetric attacks • state exhaustion attacks • application layer DDoS attacks, reconnaissance, Geo-location, known bad IoCs. What about on-premise DDoS Defense? Sandbox, Etc. … End Points Firewall TIG DDoS IDPS

21. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 21 Arbor Edge Defense: Combining DDoS and TIG Sandbox, Etc. … End Points Firewall TIG DDoS AED Reputation- based blocking DDoS API or SIEM TIP Threat Intelligence Feeds IDPS

22. COPYRIGHT © 2018 NETSCOUT SYSTEMS, INC. | CONFIDENTIAL & PROPRIETARY 22 The first and last line of defense First Line of Defense: • protects availability and performance of network and service from DDoS; • takes pressure off downstream security stack. Last Line of Defense:  detects and stops missed IoCs before the data breach occurs. Integrated into security workflows:  Continuously armed with highly curated ATLAS Threat Intelligence and 3rd party IoCs via STIX & TAXII  Automatically obtains additional context related to blocked IoCs enabling security teams to hunt using other tools Sandbox, Etc. … End Points Firewall AED Reputation- based blocking DDoS IDPS DDoS OutboundThreat Communication Inbound Threats

Notas do Editor

So imagine if we could stop the storm before it got started.
Replace storm with attack. Imagine if we could do that. Imagine if that was at all possible. Well, guess what? We can. It isn't an exact science, but we can.
Do we have an early warning system to prevent this?
The analogy-- Weather Satellites. Over the last decades, weather satellites orbiting the earth are constantly feeding information back to centralized computer systems and some of the largest computer systems on the planet, doing analysis at to what's happening, where, when, why, and how and trying to predict the storms that are coming.
Closer analysis
Preventing the perfect storm as you who have seen me present before there’s always a bit of drama that I like to add to these things.
Let’s see what a typical on-premise anti-DDoS device does. Speak a bit about architecture that is most suitable to fight DDoS attacks on-prem.
The architecture of on-prem DDoS appliances suits very well for TIG. This is why we at Netscout Arbor evolved our APS appliances into AED.
Can we forecast the future? I leave that as an open question for all of you. Thank you.

Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (19)

Semelhante a Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

Semelhante a Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019 (20)

Mais de African Cyber Security Summit

Mais de African Cyber Security Summit (20)

Último

Último (20)

Conférence - Arbor Edge Defense, Première et dernière ligne de défense intelligente et automatisée - #ACSS2019

Notas do Editor