EVOLVING FROM BREACH PREVENTION TO BREACH ACCEPTANCE TO SECURING THE BREACH

Transcription

1 EVOLVING FROM BREACH PREVENTION TO BREACH ACCEPTANCE TO SECURING THE BREACH Jason Hart CISSP CISM VP Cloud Solutions Safenet Inc Session ID: Session Classification: SP0-W10 General Interest

2

3 Today s issues Data breaches are rampant Data is moving everywhere The approach to protecting data must change

4 THE LEADING EDGE OF BIG DATA: THEN AND NOW

5 THE LEADING EDGE OF BIG DATA: THEN AND NOW

6 IN 2000 THE WORLD GENERATED TWO EXABYTES OF NEW INFORMATION EVERY DAY

7 Structured + Unstructured = BIG Telemetry, Location-Based, etc. Structured in Relational Databases Managed, Unmanaged & Unstructured Internet of Things Non-Enterprise #RSAC

8 Global Flight Analysis 60,000 Aircraft Routes Sensors On Each Gas Turbine Engine = 1Tb/day

9 Big Data Analytics: Not New Used Already in Many Industries Risk Assessment Price Optimization Monte Carlo Regression Product Recommendation Finance Casino Retail Travel Online Insurance #RSAC

10 Security most keep up IT Evolution Cloud Virtual Big Data Mobile #RSAC

11 Your Organization s Security Professional?

12 Protection Requires A New Approach

13 Lets Start with the Basics Confidentiality Integrity Availability Accountability H O W D O I A C H I E V E T H I S I N A V I R T U A L W O R L D? Auditability #RSAC

14 Welcome to the next Generation 1 st Age: Servers Servers FTP, Telnet, Mail, Web. These were the things that consumed bytes from a bad guy The hack left a foot print 2 nd Age: Browsers: Javascript, ActiveX, Java, Image Formats, DOMs These are the things that are getting locked down Slowly Incompletely 3 rd Age: Virtual Hacking: - Simplest and getting easier Gaining someone's password is the skeleton key to their life and your business Accessing data from the virtual world can be simple #RSAC

15 Virtual World With Virtual Back Doors Welcome to the Future Cloud Computing Virtual Environment With Virtual Security holes During the past 15 years with learnt nothing #RSAC

16 Evolution of Threats

17 SOME FACTS

18 W i l l y o u r o r g a n i z a t i o n, or y o u r p a r t n e r, s u f f e r a s e c u r i t y b r e a c h t h i s y e a r? N o b o d y s i m m u n e, n o t a r g e t i s t o o s m a l l, o r t o o l a r g e.

19 T h e m e t h o d s u s e d b y h a c k e r s t o g a i n a c c e s s t o d a t a a r e n u m e r o u s, w i d e - r e a c h i n g a n d e v e r - g r o w i n g. H oweve r N o t h i n g H a s C h a n g e d

20 #RSAC

21 #RSAC

22 The Facts Verizon 2013 Data Breach Investigations Report #RSAC

23 The Facts Verizon 2013 Data Breach Investigations Report #RSAC

24 The Facts Verizon 2013 Data Breach Investigations Report #RSAC

25 The Facts Verizon 2013 Data Breach Investigations Report #RSAC

26 Threats Require A New Approach

27 This is about you forgetting what you know about InfoSec

28 You are still investing ~ 90% of your budget with the same mind set. Into Network / Perimeter defense

29 While everything around you has changed?

30 Just like my mother in the 60 s data was born to be free (or at least shared)

31 And the most scary part.

32 That The Problem and the Solution are out of sync

33 The new mindset?

34 Transform your mind from Breach Prevention To Breach Acceptance

35

36 Which means, assume a breach will happen.

37 Think like a bad guy What is he after?

38 Used by Hackers as a standard tool

39 That your perimeter (aka network) Might not have died but its not really doing well.

40 Ok, now what should I do?

41 How about. Kill the Data.

42 Kill the Data > Crypto

43 Is it really that simple?

44 SafeNet Secure Breach Survey. 31% admitted that their perimeter has been breached 20% were not sure if they d been breached. 38% believe unauthorized users currently have access to their networks. 65% think they will suffer a data breach within 3 years 59% believe if their perimeter is breached, their data would not be safe. 20% wouldn t trust their own company with their personal data. #RSAC

45 State of Data Security Persistent belief that perimeter defenses are effective. Significant acknowledgement of past breaches. #RSAC

46 State of Data Security Doubt in security industry s ability to detect and prevent breaches. #RSAC

47 State of Data Security Recognition that if perimeters failed, high value data would not be safe. #RSAC

48 A new prescription for the Secure Breach era Introspection Its time to try something new Acceptance You can t prevent a perimeter breach Understanding Know your enemies and what they are after Action Protect What Matters THE DATA! #RSAC

49 Control Access To Data?

50 Cloud/Virtualization Loves Crypto.

51 Compliance Loves Crypto

52 High Value Data loves crypto

53 Hackers? They HATE Crypto

54 Think breach acceptance Data is the new perimeter Kill The data Kill it The Right Way

55 Forget Everything InfoSec has (to) Changed SafeNet Confidential and Proprietary

56 Breach Prevention? How is that working for you? SafeNet Confidential and Proprietary

57 Breach Acceptance Accept a breach will happen SafeNet Confidential and Proprietary

58 Protect What Matters Where it matters SafeNet Confidential and Proprietary

59 Breaches Don t like Encrypted Data SafeNet Confidential and Proprietary

60 We can help And We ve done it before SafeNet Confidential and Proprietary

61 Thank you! Jason Hart CISSP CISM Safnet Inc #RSAC