Operation Safety-Net: global best practices provide a secure path forward

Presented at VB2015, Oct. 2, 2015, 11 a.m. (90 minutes)

We will explore the second iteration of the M3AAWG.org's collaborative work with the civil law enforcement group the LondonActionPlan.org, a plain-language yet resource-intense report on the state of messaging and infrastructure abuse, underscoring pragmatic real-world solutions, and highlighting the recent publication of best practices by and for the hosting & cloud provider community, and an addendum reviewing aspects of online harassment. Originally released in 2012, Operation Safety-Net was revamped and renewed over the course of 18 months and published in June 2015. 90 subject-matter experts from private industry, government and law enforcement agencies, and non-governmental organizations lent their collective knowledge to the effort. OSN is a comprehensive, unbiased report and proposes substantiated best practices in the areas of phishing, DNS, domain & IP abuse, mobile & telephony, and malware & botnets. This talk will review the highlights, and delve a little deeper into areas of specific interest to those in attendance.

Presenters:

• Neil Schwartzman - Messaging - Mobile & Malware Anti-Abuse Working Group
  Neil Schwartzman Neil Schwartzman is a management consultant working with such clients as Apple Inc. and the world's largest sender of commercial marketing and transactional email, Mail Chimp Inc., and has been involved in cybersecurity since 1994, when he wrote the world's first distributed spam filtering software. Mr. Schwartzman is the Executive Director of the Internet's oldest end-use advocacy group, the Coalition Against Unsolicited Commercial Email (CAUCE.org). In this capacity, he is currently the Co-chair of the Messaging Anti-Abuse Working Group's (M3AAWG.org) Awards Committee, a founding member of the London Action Plan, a representative to the Anti-Phishing Working Group, Stop Spam Alliance and the Anti-Spyware Coalition, and an appointed member of Canada's Federal Ministerial Task Force on Spam. He has participated in working groups of the US Federal Communications Committee's 'Communications Security, Reliability and Interoperability Council' II and III specifically focused on the impact of malware and botnets. Schwartzman won the first annual M3AAWG.org Mary Litynski Award for lifetime achievement in his work in anti-abuse. He has spoken at conferences and to private groups throughout the world. In 2012, he helped spearhead a year-long external review and augmentation of cybersecurity and messaging anti-abuse best practices of the Organization of Economic Co-operation and Development's Anti-spam Toolkit undertaken by the London Action Plan, Industry Canada, MAAWG and CAUCE and presented these findings to the OECD, in Paris, France. Mr. Schwartzman is currently leading a comprehensive 'evergreen' review project of this document for international distribution.

Links:

• https://www.virusbulletin.com/conference/vb2015/abstracts/operation-safety-net-global-best-practices-provide-secure-path-forward

Similar Presentations:

• DEF CON 20 (2012) / Life Inside a Skinner Box: Confronting our Future of Automated Law Enforcement