$30 off During Our Annual Pro Sale. View Details »

Connections and Intersections between Resilience Engineering and Security

John Allspaw
October 22, 2020
Technology
1
91

Connections and Intersections between Resilience Engineering and Security

SnykCon 2020
https://snyk.io/learn/snykcon-connections-and-intersections-between-resilience-engineering-and-security/

The interdisciplinary field of Resilience Engineering is over 20 years old, even though it’s only recently come into contact with the online software world. In this SnykCon keynote John Allspaw describes this critical field, lays out some of the few connections that have been made to security in software-centered environments, and suggests some directions this community might go in to pragmatically move these connections and concepts forward.

John Allspaw

October 22, 2020
Tweet

More Decks by John Allspaw

See All by John Allspaw
Findings From The Field - DevOps Enterprise London 2020
jallspaw
11
9.2k
Incident Analysis: How *Learning* is Different Than *Fixing*
jallspaw
3
4.5k
DevOpsDays NYC 2020: Can Resilience Engineering be sufficiently described in 5 minutes?
jallspaw
0
240
Resilience Engineering: How and What
jallspaw
2
4.2k
Taking Human Performance Seriously
jallspaw
1
760
Amplifying Sources of Resilience
jallspaw
1
370
“Problem Detection” (Klein, et. al., 2005) - Papers We Love (NYC)
jallspaw
0
140
In the Center of the Cyclone: Finding Sources of Resilience
jallspaw
0
95
Code For America Summit 2018
jallspaw
0
70

Other Decks in Technology

See All in Technology
幸運を科学する ~アジャイルチームの成功を再現する方法~
okamototakuyasr2
0
190
RAG Approach on AWS
hayaok3
4
540
分散型SNS最新状況
kojira
0
170
実践 脱Modifier.composed / Let's Modifier.Node
gya
2
220
Kotlin製のGraphQLサーバーをNode.jsでモジュラモノリス化している話
hokaccha
1
2k
【Python東海#44】Pydroid3で画像処理
kazuhitotakahashi
0
160
フロントエンドリアーキテクチャリングと開発チームのスキルトランスファーにおける9ヶ月間の奮闘記
wakamsha
5
3.8k
Railsアプリをコスパよく読むための環境整備
ikumatadokoro
1
130
Kaggle Tokyo Meetup2023 CommonLit Solutionの紹介と考え方 - Fulltrain戦略と(Seed/Model)Ensembleの可視化 -
chumajin
2
490
デザインシステム仕切り直し
chloe463
1
1.6k
GitHub Universe 主要アップデート
yuhattor
0
200
RDBを使う単体テストの前に 用意しておきたい環境を考え てみたの
bun913
0
390

Featured

See All Featured
Learning to Love Humans: Emotional Interface Design
aarron
265
39k
Designing the Hi-DPI Web
ddemaree
274
33k
Designing on Purpose - Digital PM Summit 2013
jponch
108
6.2k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
0
2.7k
Principles of Awesome APIs and How to Build Them.
keavy
119
16k
Git: the NoSQL Database
bkeepers
PRO
420
62k
Keith and Marios Guide to Fast Websites
keithpitt
407
21k
Bash Introduction
62gerente
603
210k
Why Our Code Smells
bkeepers
PRO
329
56k
Producing Creativity
orderedlist
PRO
336
38k
Robots, Beer and Maslow
schacon
154
7.7k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
44
12k

Transcript

  1. Connections and Intersections:
    Resilience Engineering and Security
    John Allspaw


    Adaptive Capacity Labs

    View Slide

  2. about me
    Consortium for Resilient
    Internet-Facing Business IT
    Adaptive


    Capacity


    Labs

    View Slide

  3. Early 2000s
    Human Factors
    Safety Science
    Cognitive Systems
    Engineering

    View Slide

  4. …a community emerges…
    Rail
    Maritime
    Surgery
    Intelligence Agencies
    Law Enforcement
    Aviation/ATM
    Space
    Mining
    Construction
    Explosives
    Fire
    f
    i
    ghting
    Anesthesia
    Pediatrics
    Power Grid & Distribution
    Military Agencies
    Mid 2000s

    View Slide

  5. View Slide

  6. what makes this work
    as well as it does?
    what makes this work dif
    f
    i
    cult for people?
    what makes them good at it?

    View Slide

  7. Resilience is the story of the
    accident that didn’t happen.
    security incident

    View Slide

  8. anticipating
    monitoring
    responding
    learning
    Hollnagel, E. (2016). Resilience Engineering Perspectives, Volume 2
    (C. P. Nemeth, Ed.). CRC Press.

    View Slide

  9. observing
    inferring
    planning
    troubleshooting
    diagnosing
    correcting
    modifying
    reacting
    anticipating
    adapting

    View Slide

  10. adaptation
    What:


    • conditions


    • investments


    • stances


    • activities
    …are necessary for effective
    adaptation to happen…. when/
    where/how it needs to?

    View Slide

  11. adaptation
    What:


    • conditions


    • investments


    • stances


    • activities
    …are necessary for e
    f
    f
    ective
    adaptation to happen….
    when/where/how it needs to?
    Resilience is something that you do,


    not something that you have.
    bit.ly/ResilienceIsAVerb

    View Slide

  12. incidents do not arrive with clear labels attached


    “I’m a garden-variety outage!”


    “I’m an attacker-led incident!”

    View Slide

  13. #warroo
    m


    2020-01-26 14:57:4
    0

    Steve Hey guys, why is this happening 3 times a day every
    last 3 days? Is this some continuous attack effort or some continuous issues with
    servers?
    #incident-48712

    2018-02-12 08:32:31 Lisa I’m not en
    t
    i
    rely sure we’re not being a
    t
    t
    acked at the moment…
    #emergency-room-3


    2019-10-07 05:34:22 Phil wait is it possible that we’re just seeing this
    because there might be a DDoS going on?

    View Slide

  14. What is the automation doing now?
    What will it do next?
    How in the world did we ever get into that mode?

    View Slide

  15. anticipating
    monitoring
    responding
    learning
    What new vulnerabilities — and exploits — might be coming?
    Is our data safe at the moment?
    Is anyone actively probing or attacking us right now?
    What happened?
    How exactly did that happen?
    How did we know what we knew, when we knew it?
    What is the automation doing now?
    What will it do next?
    How in the world did we ever get into that mode?
    attacker
    they

    View Slide

  16. what does it look like to understand
    RE through a security lens?

    View Slide

  17. Challenges to Adversarial Interplay Under High Uncertainty:
    Staged-World Study of a Cyber Security Event


    DISSERTATION


    Presented in Partial Fulfillment of the Requirements for the Degree Doctor of Philosophy in the Graduate School of the Ohio State
    University


    By

    Matthieu Branlat, B.S., M.S.

    Graduate Program in Industrial and Systems Engineering


    The Ohio State University 2011
    bit.ly/BranlatRedBlue

    View Slide

  18. Blue Team’s defense activity Red Team’s attack activity

    View Slide

  19. View Slide

  20. View Slide

  21. View Slide

  22. View Slide

  23. ALL work in security is cognitive work
    Effective security requires sustaining your ability to
    adapt on both short and long time scales
    20+ years of research in Resilience Engineering:


    resilience = sustained adaptive capacity

    View Slide

  24. Understanding


    Resilience Engineering will take time


    the concepts are not intuitive


    and also


    critically important


    View Slide

  25. Change Is Afoot
    2018
    2019
    J. Paul Reed
    2018
    Nora Jones Casey Rosenthal
    2020
    Jessica DeVita Chad Todd Tim Tischler
    2021
    Learning From Incidents In Software


    http://learningfromincidents.io

    View Slide

  26. Thanks!
    @allspaw


    Adaptive Capacity Labs

    View Slide