Target-based Security Model: Mapping Network Attacks to Security Controls

Presented at BSides Austin 2018, March 8, 2018, 10 a.m. (60 minutes)

This talk will present a categorization of network-based attacks for the purpose of mapping to appropriate security controls. Using a layered security-zone model allows easy visualization of how/where various security controls can be applied to protect against network-based attacks at different layers. Categorizing network-based attacks according to the targeted zone then allows for direct mapping of security controls to the types of attacks they can be used to prevent. The goal is a simple, publicly available reference model, allowing vendors, customers, and 3rd-party testers to all speak the same language.

Presenters:

• Garett Montgomery
  I've been working in InfoSec for the past 10+ years, first as a blue-teamer (Security Analyst) followed by IPS-Signature developer, and now as a red-teamer developing attacks for BreakingPoint. I've spent the last couple of years raising awareness around problems with IPS devices, but now I'm actively trying to help improve the situation.

Links:

• https://bsidesaustin2018.sched.com/event/DuFy/target-based-security-model-mapping-network-attacks-to-security-controls

Similar Presentations:

• Texas Cyber Summit 2019 / IR-1005 CSA IoT Security Controls Framework
• AppSec USA 2017 / Measuring End-to-End Security Engineering