Using Behavior to Protect Cloud Servers

Presented at BSidesSF 2016, Feb. 29, 2016, 3 p.m. (55 minutes)

Cloud server adoption has exploded in the last 5 years. Nearly every business is using some kind of IaaS, PaaS platform. Securing these cloud servers is challenging. The ease of access by developers, contractors, web admins and more needs to be balanced with security. Using rule based access security can only go so far. Once SSH keys and tokens are compromised, an attacker can wreak havoc.Behavior based real time analytics can help create a dynamic fingerprint of an automated service like Jenkins or of an employee. We will show an example of dynamic privilege management to identify and stop insider threats and privilege escalation attacks in real time. See how you can apply next generation privilege management principles to secure your assets.

Presenters:

• Anirban Banerjee - CEO and Founder - Onion ID
  Dr. Anirban Banerjee is a serial entrepreneur in the Internet security space. Anirban has a Ph.D. in Computer Science from the University of California at Riverside and specializes in computer security issues. Anirban has over 15 published scientific papers, 4 patents and 2 grants from the National Science Foundation. Anirban specializes in the fields of Artificial Intelligence and web security and has presented at hosting conferences, security conferences and at academic events.

Links:

• https://bsidessf2016.sched.com/event/660v/using-behavior-to-protect-cloud-servers

Similar Presentations:

• Black Hat USA 2022 / IAM The One Who Knocks
• BSidesDC 2017 / Secure Key Management in the Cloud
• Texas Cyber Summit 2019 / BT-1050 Shining a Light on Shadow IT in the Cloud