Presented at
BSides Austin 2018,
March 8, 2018, 10 a.m.
(60 minutes).
This talk will present a categorization of network-based attacks for the purpose of mapping to appropriate security controls. Using a layered security-zone model allows easy visualization of how/where various security controls can be applied to protect against network-based attacks at different layers. Categorizing network-based attacks according to the targeted zone then allows for direct mapping of security controls to the types of attacks they can be used to prevent.
The goal is a simple, publicly available reference model, allowing vendors, customers, and 3rd-party testers to all speak the same language.
Presenters:
-
Garett Montgomery
I've been working in InfoSec for the past 10+ years, first as a blue-teamer (Security Analyst) followed by IPS-Signature developer, and now as a red-teamer developing attacks for BreakingPoint. I've spent the last couple of years raising awareness around problems with IPS devices, but now I'm actively trying to help improve the situation.
Links:
Similar Presentations: