Will the Real Zero-Trust Please Stand Up

Presented at CircleCityCon 10.0 (2023), June 24, 2023, 10 a.m. (60 minutes)

The OSSTMM (Open Source Security Testing Methodology Manual), created in 2001, has become a name in Compliance and Security methodologies. The OSSTMM is referenced in many security books, by NIST and even included in PCI's penetration testing guidelines among many other sources. This talk will give a short intro to the OSSTMM for anyone unfamiliar with it but then break out into Trust (a vulnerability) and how to apply (the OSSTMM 10) controls relating to it. While it is impossible to educate someone on the whole methodology in 30 minutes or even a whole day, this will be set to peak interest and spark creative thought.

Presenters:

• Chris Griffin

Similar Presentations:

• Diana Initiative 2020 Virtual / Trust, No Trust or Zero Trust - Myth Demystifying
• H2K2 (2002) / Open Source Security Testing Methodology Manual
• PancakesCon 3 (2022) Virtual / Zero Trust Security: A hype-free, buzzword-free introduction grounded in reality. Also, Sous Vide cooking.