Target-based Security Model: Mapping Network Attacks to Security Controls

Presented at BSides Austin 2018, March 8, 2018, 10 a.m. (60 minutes).

This talk will present a categorization of network-based attacks for the purpose of mapping to appropriate security controls. Using a layered security-zone model allows easy visualization of how/where various security controls can be applied to protect against network-based attacks at different layers. Categorizing network-based attacks according to the targeted zone then allows for direct mapping of security controls to the types of attacks they can be used to prevent. The goal is a simple, publicly available reference model, allowing vendors, customers, and 3rd-party testers to all speak the same language.

Presenters:

  • Garett Montgomery
    I've been working in InfoSec for the past 10+ years, first as a blue-teamer (Security Analyst) followed by IPS-Signature developer, and now as a red-teamer developing attacks for BreakingPoint. I've spent the last couple of years raising awareness around problems with IPS devices, but now I'm actively trying to help improve the situation.

Links:

Similar Presentations: