Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Opening up security

Opening up security

Talk from Infosecurity World all the parallels between the emergence of devops over the past 10 years and the state of security today.

Gareth Rushgrove

June 09, 2016
Tweet

More Decks by Gareth Rushgrove

Other Decks in Technology

Transcript

  1. - The security stereotype - A story of the devops

    movement - A brief economics interlude - Opportunities for openness Gareth Rushgrove
  2. A widely held but fixed and oversimplified image or idea

    of a particular type of person or thing. Gareth Rushgrove stereotype noun plural noun: stereotypes
  3. The language and speech, especially the jargon, slang or argot,

    of a particular field, group or individual Gareth Rushgrove lingo noun plural noun: lingoes
  4. a fictional rogue systems administrator who takes out his anger

    on users and others who pester him with computer problems Gareth Rushgrove BOFH Bastard Operator from Hell
  5. Two-sided markets, are economic platforms having two distinct user groups

    that provide each other with network benefits Gareth Rushgrove
  6. What would we mean by - Open source security? -

    Security as a service? - Security as code? - Ruby on Rails for security? Gareth Rushgrove
  7. This guidance takes the view that no one particular type

    of software is inherently more, or less, secure than the other and does not favour one type over the other Gareth Rushgrove GPG38, UK Government ” “
  8. Marketplaces that sell: - DDOS attacks for $5 an hour

    - 300,000 airline points for $90 - American Express Cards for $30 - French driver’s license for $238 Gareth Rushgrove From SecureWorks 2016 Underground Hacker Markets Annual Report
  9. Products available like: - ATM skimming devices for $400 -

    Exploit Kits from $100 - RATs for as little as $5 - DDOS online tutorials from $20 Gareth Rushgrove From SecureWorks 2016 Underground Hacker Markets Annual Report