The Seven Axioms of Security

Presented at Black Hat Asia 2017, March 31, 2017, 9 a.m. (60 minutes).

<p>"Today's attacks succeed because the defense is reactive.”</p><p>As the defenses have caught up and closed open doors, we attackers have looked for new avenues and vectors. Looking back on the state of defenses from One-Way Web Hacking in 2001 to Stegosploit in 2016, a common pattern emerges. Defense boils down to reacting to new attacks and then playing catch-up.</p><p>It is time to transition defense from being reactive to proactive. This talk discusses seven axioms for implementing proactive defense strategy and measures for the future, concluding with a blueprint of the next evolution of pro-active defense architecture.</p>

Presenters:

  • Saumil Shah - CEO, Net Square
    Saumil Shah, a veteran Black Hat instructor, is the founder and CEO of Net Square, providing cutting edge information security services to clients around the globe. Saumil is an internationally recognized speaker and instructor, having regularly presented at conferences like Black Hat, RSA, CanSecWest, 44CON, Hack.lu, Hack-In-The-Box, NoSuchCon, REcon, and others. Saumil has been the co-developer of the wildly successful "Exploit Laboratory" courses that he teaches all over the world. He has also authored two books titled "Web Hacking: Attacks and Defense" and "The Anti-Virus Book." Saumil graduated with an M.S. in Computer Science from Purdue University and a B.E. in Computer Engineering from Gujarat University. He spends his leisure time breaking software, flying kites, traveling around the world, and taking pictures.

Links:

Similar Presentations: