Evolving Ecosystem Security

Presented at Kiwicon 7: Cyberfriends (2013), Nov. 10, 2013, 11:45 a.m. (30 minutes).

Over the last decade Microsoft has invested heavily in security though initiatives like the SDL, and the result has been a reduction in the attack surface and vulnerabilities in our products and services. More recently Microsoft has focused on reducing the window of opportunity that attackers have to exploit vulnerabilities through the Microsoft Active Protections Program (MAPP) and releasing tools like EMET. Microsoft is now focusing its attention on reducing the lifespan of not only the vulnerabilities used by miscreants but also the infrastructure they use to conduct their attacks. This session will look at the new initiatives and tools coming out of the MAPP program. The mission for the MAPP team is simple: mitigate entire classes of attack and protect customers.

Presenters:

• Paul McKitrick / narc0sis   as Paul 'narc0sis ' McKitrick
  Paul is a Senior Security Strategist in the Microsoft Security Response Centre and is responsible for managing Microsoft's international relationships with the incident response community. Now residing in the beautifully misty shores of Seattle, Paul is originally from New Zealand and worked for the .NZ ccTLD, prior to that he worked the NZ government for the better part of a decade. Paul still gets warm fuzzies from the fact that he was the founding Chair of the New Zealand Internet Task Force (NZITF)

Links:

• https://2013.kiwicon.org/the-con/talks/#e118

Similar Presentations:

• GrrCON 2018 / Hacker Tools, Compliments of Microsoft
• AppSec USA 2014 / Keynote: Gary McGraw - Bug Parades, Zombies, and the BSIMM: A Decade of Software Security
• CanSecWest 2024 / Rolling in the Dough: How Microsoft Identified and Remediated a Baker’s Dozen of Security Threats in the Windows DNS Server