Breaking Bread with SPIEs!

No Gravatar

Lunch two Thursdays ago was a unique experience.  We got to meet and present to Calgary‘s SPIE – a special interest group made up of the who-is-who in Calgary’s Internet Security Profession.  Calgary, Canada’s Oil Capital, and without a doubt, companies in this sector fare the toughest – from hacktivism to pure evil crime with financial and business motives.

We discussed several topics (Presentation can be found here), but the most important points were:

  1. Rules of the Malware game have changed, from a focus 0n generating publicity to a multi-billion dollar industry funded by very organized and savvy criminals (you can read more about the malware industry’s business model here).  And yes, they do have websites that sell botnets and that do provide support too!

    Website that advertises Botnets For Sale

    To this end, malware being written these days are designed to “hide” in compromised systems so that hackers can continue to use the computers’ resources for criminal activity while remaining undetected as long as possible.

  2. Newest attack vector is Application Vulnerabilities, and even more so web-applications, as shown in the diagram.  Notice that Operating System/Browser Vulnerabilties are now taking a back seat, with Application (e.g., Adobe Reader) vulnerabilities becoming the vector of choice for malware writers.

    Frequency of Application-based Attacks

  3. Deep Content Inspection is the logical choice for combating this evolving threat- it is no longer sufficient to scan some packets against a limited set of viruses and to believe that is good enough.  I will address this in next week’s blog.
  4. Layered approach to security is needed with network security being a lifecycle, and not a process.

I found this seminar to be very, very beneficial.  Thanks to security vendors, CIOs are now marketing-shielded (yes, you heard it here first!).  When the rubber hits the road, network security is accuracy and without performance compromise.  It is good to break bread with SPIEs, ISSAs, etc.

About Wedge Chief Scientist

Husam Kinawi, Chief Scientist Dr. Kinawi has a PhD and MSc in Computer Science from the Universities of Calgary, Canada and London, UK. In 1997, he co-founded Mpower Technologies Inc., a wireless telecommunications software company. In 1999, Dr. Kinawi co-founded (NASDAQ: AIQT), a Boston-based e-Business applications firm. Dr. Kinawi has over seventeen years of research and development experience working with industry leaders such as Newbridge (Alcatel), Siemens, United Technologies, and Apple in the areas of distributed information systems, embedded applications and wireless Internet solutions. Dr. Kinawi has also spoken at several major conferences, published several research papers, and is the holder of several patents in the area of mobile and wireless devices.
This entry was posted in Industry News, Wedge News. Bookmark the permalink.

1 Response to Breaking Bread with SPIEs!

  1. Roane 96No Gravatar says:

    Nice post ! Thank you for, writing on this blog page mate! I’ll email you some time.

Leave a Reply

Your email address will not be published. Required fields are marked *

Before you submit form:
Human test by Not Captcha