Arm the World with SPN based Security

•

1 like•179 views

This talk is a high-level introduction to the Smart Protection Network : a cloud based security architecture developed by Trend Micro.

Technology

Arm the World with SPN based Security
Liwei Ren, Ph.D
San Jose, California, Oct 2016

Copyright 2016 Trend Micro Inc.2
My Background
I am a research scientist
– Deep learning
– Data security, cloud security, IoT security
– Practical algorithms, data compression, stringology
Education
– Ph.D in mathematics and MS in information science, University of Pittsburgh
– MS and BS in mathematics, Tsinghua University
Measurable contributions to the world
– 1 startup Provilla™ that was acquired by Trend Micro™
– 27 US patents granted
– 16 invited talks at top universities and noted conferences (2012-2016)
– 10 published papers in mathematics

Copyright 2016 Trend Micro Inc.3
Defense Systems in Wars
Trend Micro’s mission:
– to arm the digital world with advanced
defense systems

Copyright 2016 Trend Micro Inc.4
Defense Systems in Wars
Trend Micro’s mission:
– to arm the digital world with advanced
defense systems

Copyright 2016 Trend Micro Inc.5
Defense Systems in Wars
• The most advanced defense system in the world today
• National Missile Defense (NMD)

Copyright 2016 Trend Micro Inc.6
Defense Systems in Wars
How about this architecture of defense ?

Copyright 2016 Trend Micro Inc.7
SPN Security Architecture
SPN is a cloud based security architecture powered by
– Cloud platform
– Big data infrastructure, analytics and machine learning capability
– Global threat intelligence
– Multiple security services of different focuses

Copyright 2016 Trend Micro Inc.9
Smart Protection Network Security Architecture
The evolution of SPN:

Copyright 2016 Trend Micro Inc.10
Deep Learning and Cyber-security
• Deep learning is a machine learning technique based on deep neural network.
• Deep neural network (DNN) is an artificial neural network (ANN) with at least
one hidden layer :

Copyright 2016 Trend Micro Inc.11
Deep Learning and Cyber-security
• Viewing deep neural networks (DNN) with a taxonomy

Copyright 2016 Trend Micro Inc.12
Deep Learning and Cyber-security
• Solving challenging problems with DNNs

Copyright 2016 Trend Micro Inc.13
Deep Learning and Cyber-security
We have many challenging problems in cybersecurity

Copyright 2016 Trend Micro Inc.14
Summary
• We used the National Missile Defense (NMD) to analogically introduce our cloud
based security architecture SPN
• A high level description of SPN with its major capabilities and security services
• A brief history of SPN
• Further advancing SPN with deep neural networks (DNN)

As a novel computing platform in network, IoT will bring many security challenges to enterprise networks, and create new opportunities for security industry. This talk will provide a general overview of enterprise network security problems, especially the data security, caused by IoT. After that, a few existing security technologies are evaluated as necessary elements of a holistic network security that cover IoT devices. These technologies include : (a) IoT security monitoring and control; (b) FOTA for firmware vulnerability management; (c) NetFlow based big data security analysis. In the end, the practice of standard security protocols (such as OpenIoC and IODEF) will be strongly advocated for delivering effective IoT security solutions.

IoT Security: Cases and Methods

Leonardo De Moura Rocha Lima

Practical IoT Security in the Enterprise

Daniel Miessler

IoT Security Imperative: Stop your Fridge from Sending you Spam

Amit Rohatgi

We've all heard the continuing news about or been victims of hacked passwords, data breaches, identity theft and lost privacy, because our heavy reliance on Internet connectivity. Our digital world necessitates ever improving security. But now we're on the cusp of a major revolution where our appliances, cars, clothes and the very fabric of our lives (no pun intended) are also connected. Software and silicon designers must take active design measures for ensuring user data. In this talk, Amit Rohatgi, president of the prpl Foundation, will outline the market and technical challenges as well as the essential measures in the design phase for securing our ever-more-connected digital world. He will also discuss why open-source is appropriately suited for addressing theses challenge and how the prpl Foundation is tackling this from the ground-up.

What is a blockchain api how can you integrate in your website

Blockchain Council

IoT Security Training, IoT Security Awareness 2019

Tonex

IoT stands for Internet of Things.The internet of things, or IoT, is a system of interrelated computing devices, mechanical and digital machines, objects, animals or people that are provided with unique identifiers (UIDs) and the ability to transfer data over a network without requiring human-to-human or human-to-computer interaction. IoT Security Training covers The Internet of Things security and examines IoT conventions, potential dangers, vulnerabilities, misuse, information breaks, security system and alleviation. IoT security training, Internet of Things (IoT) devices Include: manufacturers, retailers in customer hardware, social insurance, processing plant production network stockrooms, transportation offices and numerous others. Learn about: IoT Principles: The Internet of Things Overview Principles for Connected Devices IoT Design Principles Principles of IoT Security IoT Attack Areas IoT Vulnerabilities IoT Firmware Analysis IoT Software Weaknesses IoT Security Verification, Validation and Testing IoT Security Assessment on IoT devices Assessing IoT devices attack surfaces Evaluation of IoT device firmware analysis, attack surface Vulnerabilities and exploiting the vulnerabilities Course Topics Include: Overview and analysis of IoT devices and IoT implementation use cases IoT Architecture IoT Architectural and Design Requirements IoT Security Fundamentals IoT Security Standards NIST Framework: Cyber Physical Systems IoT Governance and Risk Management IoT Security Compliance and Audit IoT Encryption and Key Management IoT Identity and Access Management IoT Security Challenges IoT Security in Critical Infrastructure IoT Security in Personal infrastructure IoT Vulnerabilities Wireless Security applied to IoT ZigBee and Bluetooth Security LTE and Mobile Security Cloud-based web interface security Call us today at +1-972-665-9786. Learn more about this course audience, objectives, outlines, seminars, pricing , any other information. Visit our website link below. IoT SecurityTraining, IoT Security Awareness 2019 https://www.tonex.com/training-courses/iot-security-training-iot-security-awareness/

IoT Security and Privacy Considerations

Kenny Huang Ph.D.

Iot(security)

Shreya Pohekar

KasperskyOS – Secure Operating System for embedded connected systems with specific requirements for cyber security. KasperskyOS aims to protect software and data systems from the consequences of the intrusion of malicious code, viruses and hacker attacks. These can provoke harmful behavior in any part of the system, potentially resulting in loss or leakage of sensitive data, reduced performance and denial of service. In addition it reduces the risk of harm caused by program bugs, unintentional mistakes or premeditated abuse.

Internet of Things (IoT) Security and Privacy Recommendations by Jason Living...

CableLabs

As IoT insecurity creates vulnerabilities, policymakers become concerned about the health of the Internet. How can public policy address these concerns in a smart way, targeting their efforts to improve IoT security without imposing unnecessary costs across the Internet ecosystem or creating unintended effects? What is the role of government versus industry? Jason Livingood Vice President, Technology Policy & Standards, Comcast https://www.cablelabs.com/informed/

Your Thing is Pwned - Security Challenges for the IoT

WSO2

The Internet of Things and Machine to Machine are growing areas, and security and privacy are prime issues. In this session security challenges are examined around using M2M devices with protocols such as MQTT & CoAP - encryption, federated identity and authorisation models in particular. On the topic of encryption, we’ll examine securing MQTT with TLS, challenges with Arduino, and using hardware encryption for microcontrollers. A key privacy requirement for user-centric IoT use cases will be giving users control over how their things collect and share data. On the Internet, protocols like OAuth 2.0, OpenID Connect & User Managed Access have been defined to enable a privacy-respecting user consent & authorization model. We'll look at the issues with applying these protocols to the M2M world and review existing proposals & activity for extending the above M2M protocols to include federated identity concepts. The session included a live demonstration of Arduino and Eclipse Paho inter-operating secured by OAuth 2.0.

IoT – Breaking Bad

NUS-ISS

IoT Broker

FIWARE

IoT Security: Cases and Methods [CON5446]

Leonardo De Moura Rocha Lima

In developing for IoT, security is not often the highest priority: APIs exposed without care and devices deployed with default passwords become gateways to your network and your data. Many best practices can be used to thwart attacks on your devices, but they have to be thought through from the first architectural design. This session covers many recent IoT attacks, their consequences, and how they could have been prevented. It also explores the many security levels one device can have, from totally exposed to completely secured against physical tampering and identity theft.

security and privacy-Internet of things

sreelekha appakondappagari

IoT Security

Peter Waher

Iot security amar prusty

amarprusty

WSO2 IoT Server and Device Cloud

WSO2

Eclipse IoT for Industry 4.0

Ian Skerrett

Safety reliability and security lessons from defense for IoT

IoT613

Internet of everything #IoE

Matteo Masi

Creator Ci40 IoT kit & Framework - scalable LWM2M IoT dev platform for business

Paul Evans

Delivering a scalable open-source IoT frameworks that fits your business needs can be challenging. Meet the Creator IoT-in-a-box development platform. Hardware and software delivering a complete end-to-end open-source IoT framework, designed to fit the needs of businesses looking integrate IoT solutions, right off-the-shelf. Beyond simply connecting a single device to your phone, businesses need to be able to securely scale and inter-operate with existing equipment. Using open standards such as LWM2M and IPSO objects in a secure environment, over multiple radio standards such as Wi-Fi, Bluetooth, 802.15.4 and many others for that matter, is fast becoming a must for commercial operations who need to own their own destiny and future-proof their solutions. Find out more about the Creator Ci40 IoT-in-a-box development kits and open source Creator IoT framework with this presentation.

(SACON) Vandana Verma - Living In A World of Zero Trust

Priyanka Aash

As now everything is moving to cloud, all the applications are accessible from anywhere and everywhere. However, No one wants their private information to be compromised and openly available for the world. We have been taking so many precautions, however breaches continue to happen. How should we fix this? Organisations have been talking about Zero Trust lately and this has become a buzzword. The talk will explore Zero Trust beyond the buzzword and describe what exactly is Zero Trust and why it is so important to keep organisations safe. How can we implement or deploy Zero Trust in an organisation while keeping the current and future state of an organization in mind. What should be the business model to move any organisation towards Zero Trust Architecture and what all policies need to be implemented to achieve the same. In the end, certain recommendations will be shared with the participants as a takeaway from my own experiences while working towards implementing the Zero Trust.

IoT Security Awareness Training : Tonex Training

Bryan Len

Price: $1,899.00 Length: 2 Days IoT ( Internet of things ) security is the technology area concerned with safeguarding connected devices and networks in the internet of things (IoT). IoT involves adding internet connectivity to a system of interrelated computing devices, mechanical and digital machines, objects, animals and/or people. Each "thing" is provided a unique identifier and the ability to automatically transfer data over a network. Allowing devices to connect to the internet opens them up to a number of serious vulnerabilities if they are not properly protected. IoT Security Training covers The Internet of Things security and examines IoT conventions, potential dangers, vulnerabilities, abuse, information ruptures, security structure and alleviation. Learn about: IoT Principles: The Internet of Things Overview Principles for Connected Devices IoT Design Principles Principles of IoT Security IoT Attack Areas IoT Vulnerabilities IoT Firmware Analysis IoT Software Weaknesses IoT Security Verification, Validation and Testing IoT Security Assessment on IoT devices Assessing IoT devices attack surfaces Evaluation of IoT device firmware analysis, attack surface, vulnerabilities and exploiting the vulnerabilities. Course Topics Include: Overview and analysis of IoT devices and IoT implementation use cases IoT Architecture IoT Architectural and Design Requirements IoT Security Fundamentals IoT Security Standards NIST Framework: Cyber Physical Systems IoT Governance and Risk Management IoT Security Compliance and Audit IoT Encryption and Key Management IoT Identity and Access Management IoT Security Challenges IoT Security in Critical Infrastructure IoT Security in Personal infrastructure IoT Vulnerabilities Wireless Security applied to IoT ZigBee and Bluetooth Security LTE and Mobile Security Cloud-based web interface security More... Request more information. Visit course link below https://www.tonex.com/training-courses/iot-security-training-iot-security-awareness/

festival ICT 2013: L’evoluzione della sicurezza verso la nuova era della Smar...festival ICT 2016

us-15-Zadeh-From-False-Positives-To-Actionable-Analysis-Behavioral-Intrusion-...jzadeh

What's hot

BlockchainLAB Hackathon

Aleksandr Kopnin

Blockchain spreads

Zhengnan Zhao

"The State of IoT Security" Keynote by Shawn Henry at Inform[ED] IoT Security

CableLabs

Creating the open source building blocks for IoT

Ian Skerrett

The Future of Embedded and IoT Security: Kaspersky Operating System

Kaspersky Lab

Internet of Things (IoT) Security and Privacy Recommendations by Jason Living...

CableLabs

Your Thing is Pwned - Security Challenges for the IoT

WSO2

IoT – Breaking Bad

NUS-ISS

IoT Broker

FIWARE

IoT Security: Cases and Methods [CON5446]

Leonardo De Moura Rocha Lima

security and privacy-Internet of things

sreelekha appakondappagari

IoT Security

Peter Waher

Iot security amar prusty

amarprusty

WSO2 IoT Server and Device Cloud

WSO2

Eclipse IoT for Industry 4.0

Ian Skerrett

Safety reliability and security lessons from defense for IoT

IoT613

Internet of everything #IoE

Matteo Masi

Creator Ci40 IoT kit & Framework - scalable LWM2M IoT dev platform for business

Paul Evans

(SACON) Vandana Verma - Living In A World of Zero Trust

Priyanka Aash

IoT Security Awareness Training : Tonex Training

Bryan Len

What's hot (20)

BlockchainLAB Hackathon

Blockchain spreads

"The State of IoT Security" Keynote by Shawn Henry at Inform[ED] IoT Security

Creating the open source building blocks for IoT

The Future of Embedded and IoT Security: Kaspersky Operating System

Internet of Things (IoT) Security and Privacy Recommendations by Jason Living...

Your Thing is Pwned - Security Challenges for the IoT

IoT – Breaking Bad

IoT Broker

IoT Security: Cases and Methods [CON5446]

security and privacy-Internet of things

IoT Security

Iot security amar prusty

WSO2 IoT Server and Device Cloud

Eclipse IoT for Industry 4.0

Safety reliability and security lessons from defense for IoT

Internet of everything #IoE

Creator Ci40 IoT kit & Framework - scalable LWM2M IoT dev platform for business

(SACON) Vandana Verma - Living In A World of Zero Trust

IoT Security Awareness Training : Tonex Training

Similar to Arm the World with SPN based Security

festival ICT 2013: L’evoluzione della sicurezza verso la nuova era della Smar...festival ICT 2016

us-15-Zadeh-From-False-Positives-To-Actionable-Analysis-Behavioral-Intrusion-...jzadeh

STAYING SAFE AND SECURED ON TODAY AND TOMORROW’S AFRICA CYBERSPACE WORKSHOP 2017

Maurice Dawson

This is the most essential programme of the year around the dangers of cybercrime and how to manage safety within the most indispensable digital sphere & technology system. The reason is that, “Looking beyond Internet of Things (IoT) to Internet of Everything there is a potential market that is approximately $14.4 trillion and over 99% of physical devices are still unconnected.” ~Mo Dawson. Your participation give you golden access to a transcending Cyberspace picture, enhanced solution oriented capabilities as an ICT expert or practitioner, Telecommunications Corporates & Companies Personnel, Aviation ICT Officials, Other Transportation controls network hubs, Business dealer in Cyberspace services provider or supplier, Academicians and researchers, Government Departments & Public service ICT systems Officials & staff, Students, general ICT security involvement and on top of that your enhanced multidimensional scope & prosperity out of this untapped gold mine is guaranteed.

Mobile Threat Protection: A Holistic Approach to Securing Mobile Data and Dev...

Skycure

Cyber Security

BryCunal

A 2020 Security strategy for Health Care Providers

Feisal Nanji

Irdeto Spokesman Yuan Xiang Gu Speaks At ISI SSP Beijing 2011

EASTWEST Public Relations

SHIELD_overview_presentation_INFOCOM2018.pptx

officelifehq

Nominum Data Science Security Report, Fall 2016

Brian Metzger

Nominum’s “Data Revelations” analyzes some of the biggest cyberthreats impacting organizations and individuals today, including ransomware, DDoS, mobile malware and IoT-based attacks. Since DNS is the launch point for over 90% of cyberattacks, it offers a superior vantage point from which to examine, understand, thwart and proactively prevent threats. By applying machine learning, artificial intelligence, natural language processing and neural networks, Nominum Data Science is able to predict and prevent some of the most sophisticated and dangerous cyberthreats to ever hit the internet.

Nominum 2016 Fall Data Revelations Security Report

Yuriy Yuzifovich

WM2SP16 Keynote: Current and Future challenge of Model and Modelling on Secur...

Nobukazu Yoshioka

My talk includes current models and modelling on Security and Privacy: Conceptual Models such as SIG, Common Criteria, STIX, SCPM, UML based models such as Misusecase, UMLsec, secureUML, and GORE models such as SecureTropos, i*/Tropos, KAOS etc. Additionally, research challenges on the Security and Privacy Model and Modelling are discussed. Operation on Models on Security and Privacy with consistency Hybrid Models on Security and Privacy Big data and Machine Learning on Security and Privacy Modelling

The Rising Tide Lifts All Boats: The Advancement of Science in Cybersecurity

laurieannwilliams

Stolen passwords, compromised medical records, taking the internet out through video cameras– cybersecurity breaches are in the news every day. Despite all this, the practice of cybersecurity today is generally reactive rather than proactive. That is, rather than improving their defenses in advance, organizations react to attacks once they have occurred by patching the individual vulnerabilities that led to those attacks. Researchers engineer solutions to the latest form of attack. What we need, instead, are scientifically founded design principles for building in security mechanisms from the beginning, giving protection against broad classes of attacks. Through scientific measurement, we can improve our ability to make decisions that are evidence-based, proactive, and long-sighted. Recognizing these needs, the US National Security Agency (NSA) devised a new framework for collaborative research, the “Lablet” structure, with the intent to more aggressively advance the science of cybersecurity. A key motivation was to catalyze a shift in relevant areas towards a more organized and cohesive scientific community. The NSA named Carnegie Mellon University, North Carolina State University, and the University of Illinois – Urbana Champaign its initial Lablets in 2011, and added the University of Maryland in 2014. This talk will reflect on the structure of the collaborative research efforts of the Lablets, lessons learned in the transition to more scientific concepts to cybersecurity, research results in solving five hard security problems, and methods that are being used for the measurement of scientific progress of the Lablet research.

IT8073_Information Security_UNIT I _.pdf

Asst.prof M.Gokilavani

IT8073 _Information Security _UNIT I Full notes

Asst.prof M.Gokilavani

Why Endpoint Security Matters: Safeguarding Your Virtual Frontiers

Crawsec

Trends in network security feinstein - informatica64Chema Alonso

Cisco 2016 Annual Security Report

James Gachie

Cisco asr-2016-160121231711

Trainning Educação

Como cybercriminals cada vez mais ataques a sua estratégia de risco cibernético está sob o microscópio. Com o Cisco 2016 Annual Security Report, que analisa os avanços da indústria de segurança e dos criminosos, veja como seus empresas avaliam a preparação para a segurança em suas organizações e obtêm idéias sobre onde fortalecer suas defesas. Seja um profissional de Segurança da informação faça o curso de analista de Redes e segurança http://www.trainning.com.br/curso_mcse_ccna_ceh_itil_vmware/?v=Slide

Cisco Annual Security Report

The Internet of Things

SplunkLive! Customer Presentation – HCA

Stephanie Bies

Similar to Arm the World with SPN based Security (20)

festival ICT 2013: L’evoluzione della sicurezza verso la nuova era della Smar...

us-15-Zadeh-From-False-Positives-To-Actionable-Analysis-Behavioral-Intrusion-...

STAYING SAFE AND SECURED ON TODAY AND TOMORROW’S AFRICA CYBERSPACE WORKSHOP 2017

Mobile Threat Protection: A Holistic Approach to Securing Mobile Data and Dev...

Cyber Security

A 2020 Security strategy for Health Care Providers

Irdeto Spokesman Yuan Xiang Gu Speaks At ISI SSP Beijing 2011

SHIELD_overview_presentation_INFOCOM2018.pptx

Nominum Data Science Security Report, Fall 2016

Nominum 2016 Fall Data Revelations Security Report

WM2SP16 Keynote: Current and Future challenge of Model and Modelling on Secur...

The Rising Tide Lifts All Boats: The Advancement of Science in Cybersecurity

IT8073_Information Security_UNIT I _.pdf

IT8073 _Information Security _UNIT I Full notes

Why Endpoint Security Matters: Safeguarding Your Virtual Frontiers

Trends in network security feinstein - informatica64

Cisco 2016 Annual Security Report

Cisco asr-2016-160121231711

Cisco Annual Security Report

SplunkLive! Customer Presentation – HCA

More from Liwei Ren任力偉

信息安全领域里的创新和机遇

Arm the World with SPN based Security

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to Arm the World with SPN based Security

Similar to Arm the World with SPN based Security (20)

More from Liwei Ren任力偉

More from Liwei Ren任力偉 (20)

Recently uploaded

Recently uploaded (20)

Arm the World with SPN based Security