1. InfoconDB
  2. Black Hat
  3. Black Hat Asia 2017
  4. Why We are Not Building a Defendable Internet

Why We are Not Building a Defendable Internet

Presented at Black Hat Asia 2017, March 30, 2017, 9 a.m. (60 minutes)

<div>In IT security, offensive problems are technical - but most defensive problems are political and organisational. Attackers have the luxury to focus only on the technical aspects of their work, while defenders have to navigate complex political and regulatory environments. In a previous talk ("<a href="https://drive.google.com/file/d/0B5hBKwgSgYFaTDlLellJX3Awc2s4c3VDQmNoQ0NDUUxOc2pZ/view?usp=sharing" data-mce-href="https://drive.google.com/file/d/0B5hBKwgSgYFaTDlLellJX3Awc2s4c3VDQmNoQ0NDUUxOc2pZ/view?usp=sharing">Rearchitecting a defendable internet</a>") I discussed what technical measures would yield defendable devices - and intentionally omitted the political and economics side. This talk, on the other hand, will explore the economics and incentive structures in IT security: Who is incentivized by who to do what - and how these incentives fail to produce the security level we desire.</div><div><br></div><div>The talk will look at different players in IT security: CISOs, security product vendors, computer manufacturers, cyber insurances - and examine their economic incentive structures, their interplay, and reasons for failure. The talk will also discuss an alternate reality where things work smoothly, and examine the differences to our current reality.</div>

Presenters:

  • Halvar Flake - Staff Engineer, Google
    Thomas Dullien / Halvar Flake started work in reverse engineering and digital rights management in the mid-90s, and began to apply reverse engineering to vulnerability research shortly thereafter. He pioneered early windows heap exploitaiton, patch diffing / bindiffing and various other reverse engineering techniques. In 2004, he started zynamics, a company focused on reverse engineering technologies. He continued to publish about reverse engineering, ROP gadget search, and knowledge management technologies in relation to reverse engineering. In 2011, zynamics was acquired by Google, and Halvar spent the next few years working on defensive technologies that leveraged the then hot buzzwords "big data" and "machine learning". In summer 2015, Halvar received the lifetime achievement Pwnie, and decided to take a year off to travel, read, and surf. Since November 2016, he is back at Google.

Links:

Similar Presentations: