« Malware from Craigslist | Main | Sana Security is hiring! »
August 08, 2006
Two talks for the price of one!
I gave two talks at the Vanguard Security Expo in San Diego. Get the slides by clicking the links
Resilient Infrastructure for Network Security
This covers a model that I originally wrote about in a paper in the Complexity journal (available here). I have updated the model somewhat in these slides. The talk argues that traditional security models (consisting of prevention, detection and response) fail in the face of very fast attacks (e.g. worms) or very slow ones (information stealing malware). The slides talk about possible technologies that can augment prevention, detection and response to give better performance on fast and slow attacks.
Combining Endpoint and Network Defenses
This looks at the properties of common defenses on the network and endpoint for malware, and looks at how they stack up when implemented in different places, to make sure that adding defenses in the network and the endpoint result in better security.