Shifting Landscape of IT Security
Time 10/15/08 01:15PM-02:30PM
The information security community has seen several major paradigm shifts occur in the last several years. The first has been a fundamental shift in motivation of the attacker community, from fiercely independent vandals to organized criminals herding large groups of compromised systems to engage in illicit money-making activities. At the same time vendors have shifted their strategy, and most operating system, application, and database vendors now embrace the "secure-by-default" philosophy, leading to a sharp decline in the success of network-based attacks and automated worms that rely on such attacks. But other dimensions of this approach, such as limiting Internet access to two ports, are quite problematic, particularly to the advanced applications of the R&E community. This presentation will discuss this shifting landscape and its affect on strategies many IT security programs and network architectures in higher-ed have come to rely on. The presentation will focus primarily on defining the problem space, and secondarily on moving from operational to strategic thinking in this context.
Speaker Brian Smith-Sweeney New York University
Speaker Terry Gray University of Washington
Speaker Dikran Kassabian University of Pennsylvania
Secondary tracks System and Network Security for Advanced Networks