Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

ION Hangzhou - Keynote: Collaborative Security and an Open Internet

369 views

Published on

14 July 2016, ION Hangzhou (China). Afternoon Keynote on Collaborative Security and an Open Internet by Internet Society CITO Olaf Kolkman.

Published in: Technology
  • Login to see the comments

  • Be the first to like this

ION Hangzhou - Keynote: Collaborative Security and an Open Internet

  1. 1. www.internetsociety.orgwww.internetsociety.org Collaborative Security Reflections about Security and the Open Internet ION 2016 Olaf Kolkman 奥拉夫 科尔克门 kolkman@isoc.org @Kolkman
  2. 2. Collaborative Security | ION July 2016 http://www.internetsociety.org/get-involved/individuals 2
  3. 3. www.internetsociety.orgwww.internetsociety.org The Open Internet What was that about again?
  4. 4. Collaborative Security | ION July 2016Collaborative Security | ION July 20164
  5. 5. Collaborative Security | ION July 2016Collaborative Security | ION July 20165 https://www.flickr.com/photos/worldbank/4725033296/in/album-72157634090168746/
  6. 6. Collaborative Security | ION July 20166
  7. 7. Collaborative Security | ION July 20167 Security, stupid
  8. 8. Collaborative Security | ION July 2016Collaborative Security | ION July 20168
  9. 9. Collaborative Security | ION July 2016Collaborative Security | ION July 20169
  10. 10. Collaborative Security | ION July 201610
  11. 11. Collaborative Security | ION July 201611
  12. 12. Collaborative Security | ION July 2016Collaborative Security | ION July 2016 Where the rubber meets the road. 12
  13. 13. Collaborative Security | ION July 2016 Researchers 13 Development OPS Devops SDOs Orgs
  14. 14. Collaborative Security | ION July 201614 Advertisement, skip in: 0:100:090:080:070:060:050:040:030:020:010:00 12 August 2016, 11:59 PM EDT (UTC-4:00): Paper titles and abstracts due 16 August 2016, 11:59 PM EDT (UTC-4:00): Full submissions for technical papers and panels due NDSS 2017 Call for Papers
  15. 15. Collaborative Security | ION July 201615 Mutually Agreed Norms for Routing Security (MANRS) Stimulate visible improvements in security and resilience of Internet Routing by changing towards a culture of collective responsibility
  16. 16. Collaborative Security | ION July 2016 common problems to be addressed 16 1 The organization (ISP/network operator) recognizes the interdependent nature of the global routing system and its own role in contributing to a secure and resilient Internet. 2 The organization integrates best current practices related to routing security and resilience in its network management processes in line with the Actions. 3 The organization is committed to preventing, detecting and mitigating routing incidents through collaboration and coordination with peers and other ISPs in line with the Actions. 4 The organization encourages its customers and peers to adopt these Principles and Actions. Principles
  17. 17. Collaborative Security | ION July 201617 Prevent propagation of incorrect routing information. Prevent traffic with spoofed source IP addresses. Facilitate global operational communication and coordination between network operators. Facilitate validation of routing information on a global scale.
  18. 18. Collaborative Security | ION July 201618 http://www.routingmanifesto.org/ http://manrs.org/ or
  19. 19. Collaborative Security | ION July 201619
  20. 20. Collaborative Security | ION July 201620 http://www.internetsociety.org/iot/
  21. 21. Collaborative Security | ION July 201621 Living in a World of Decentralized Data Dr. Burt Kaliski, Jr. Senior Vice President and CTO, Verisign NDSS Workshop on Security of Emerging Networking Technologies (SENT) February 8, 2015
  22. 22. Collaborative Security | ION July 201622
  23. 23. Collaborative Security | ION July 201623 Areas of Responsibility Courtesy: Tschofenig et al, IETF 92 Technical Plenary Deployment Implementation Protocol Specifications and Architecture Cryptographic Primitives Improved algorithms for integer factorization, too small key size. No end-to-end security, complexity in specifications, insecure authentication protocols Buffer overflow attacks, poor UI or other usability problems, poor choice of hardware Enabled debug ports, missing deployment of security mechanisms Examples of Problems Understanding the distributed nature of the development process is essential for tackling security problems. 23
  24. 24. Collaborative Security | ION July 201624 6/11/1524
  25. 25. Collaborative Security | ION July 201625 Can you do responsible security on a € 0.04 margin device?
  26. 26. Collaborative Security | ION July 201626 6/11/1526
  27. 27. Collaborative Security | ION July 2016 6/11/1527 Foster Confidence and Protect Opportunities Collective Responsibility Evolution and Consensus Fundamental Properties and Values Think Globally, Act Locally Smart Connected Objects These objects will have a profound impact on our lives. Important Security Questions have not been answered while we deploy. The Collaborative Security Approach has properties that will help to make a positive impact
  28. 28. www.internetsociety.orgwww.internetsociety.org Kolkman@isoc.org twitter: @kolkman Chief Internet Technology Officer Olaf M. Kolkman

×