USSTRATCOM Cyber & Space 2011 David White
-
Upload
afcea-international -
Category
Technology
-
view
658 -
download
1
description
Transcript of USSTRATCOM Cyber & Space 2011 David White
![Page 1: USSTRATCOM Cyber & Space 2011 David White](https://reader033.fdocuments.us/reader033/viewer/2022061205/5474bc98b4af9fbe0a8b58fc/html5/thumbnails/1.jpg)
Sandia is a multiprogram laboratory operated by Sandia Corporation, a Lockheed Martin Company, for the United States Department of Energy’s National Nuclear Security Administration under contract DE-AC04-94AL85000. 2011-8664 C
Managing the Right Risks
David White, PhDSenior Manager
Sandia National Laboratories
November 16, 2011
![Page 2: USSTRATCOM Cyber & Space 2011 David White](https://reader033.fdocuments.us/reader033/viewer/2022061205/5474bc98b4af9fbe0a8b58fc/html5/thumbnails/2.jpg)
Full Spectrum Cyber Defense Requires Understanding the Adversary
ClanTech Cyber Special Liaison DeceptionSigintHumanEntry CoverCompany
Full Spectrum of Offensive Methods
SCADA Weapons Network C2 Logistics SwitchesSatellite
CommonPerception
ofCND
Defenses:FirewallSpywareVirusIDS
Cyber
SIPRNET
Targets – Microelectronics and Software Elements
Adversary Determines time, place, combination of methods, and operates in secret
Reality ofCND
Defender must be successful everywhere, continuously, and frequently in the open
Source: J. Gosler – Vaults, Mirrors, Masks: Rediscovering U.S. Counterintelligence
![Page 3: USSTRATCOM Cyber & Space 2011 David White](https://reader033.fdocuments.us/reader033/viewer/2022061205/5474bc98b4af9fbe0a8b58fc/html5/thumbnails/3.jpg)
Are we driving the right behavior?
*http://xkcd.com/936
![Page 4: USSTRATCOM Cyber & Space 2011 David White](https://reader033.fdocuments.us/reader033/viewer/2022061205/5474bc98b4af9fbe0a8b58fc/html5/thumbnails/4.jpg)
Machine Generated PasswordsTwo Factor
Authentication
Compliance
Spear Phishing
Supply Chain
Attacks
“Pass the hash”