This document discusses security monitoring architecture considerations for big data platforms. It begins with an introduction and overview of MSS, a security company. It then discusses requirements such as dealing with changing IT environments and cloud/big data. The current security architecture is shown, along with a new approach involving multi-dimensional analysis and correlation of security logs and events from various systems and applications. Finally, user experiences with MSS's log management system are described, along with recommendations for security monitoring programs.
In this session Ronnie and Kevin will provide a brief history of authentication, discuss today’s authentication risks and
challenges then look at how modern multi-factor authentication services can help keep businesses and access to
their data secure and compliant. The talk covers cloud services, on premise servers, RADIUS and mobile devices. It
will also explores what’s next with Windows 10 Hello and Passport technologies before wrapping up with a Q&A.
Cloud payments (HCE): a simpler step with Thales HSMsThales e-Security
Deploying a cloud payment (HCE) solution can be a daunting and complex task. Cryptographic and key management requirements don't have to be something to slow down your project. At Thales e-Security we have been at the forefront of designing solutions to reduce the complexity of cryptographic security and implementation, helping organisations rapidly bring solutions to market.
This slidedeck explains the key management requirements of the various schemes' specifications, and explains how using Thales HSMs can shorten your development cycle and allow you to rapidly bring your product to market.
Or why not listen to the webcast: https://www.thales-esecurity.com/knowledge-base/webcasts/cloud-payments-made-simpler-with-thales-hsms
Content Strategy and Developer Engagement for DevPortalsAxway
Slides from Write the Docs Ottawa Meet Up at Shopify HQ in Canada, June 24, 2019
We’ll walk through 5 scenarios and concrete ways of reaching a developer community for frictionless and increased engagement.
In this session Ronnie and Kevin will provide a brief history of authentication, discuss today’s authentication risks and
challenges then look at how modern multi-factor authentication services can help keep businesses and access to
their data secure and compliant. The talk covers cloud services, on premise servers, RADIUS and mobile devices. It
will also explores what’s next with Windows 10 Hello and Passport technologies before wrapping up with a Q&A.
Cloud payments (HCE): a simpler step with Thales HSMsThales e-Security
Deploying a cloud payment (HCE) solution can be a daunting and complex task. Cryptographic and key management requirements don't have to be something to slow down your project. At Thales e-Security we have been at the forefront of designing solutions to reduce the complexity of cryptographic security and implementation, helping organisations rapidly bring solutions to market.
This slidedeck explains the key management requirements of the various schemes' specifications, and explains how using Thales HSMs can shorten your development cycle and allow you to rapidly bring your product to market.
Or why not listen to the webcast: https://www.thales-esecurity.com/knowledge-base/webcasts/cloud-payments-made-simpler-with-thales-hsms
Content Strategy and Developer Engagement for DevPortalsAxway
Slides from Write the Docs Ottawa Meet Up at Shopify HQ in Canada, June 24, 2019
We’ll walk through 5 scenarios and concrete ways of reaching a developer community for frictionless and increased engagement.
Mindtree's managed firewall service has been carefully designed to fit the diverse requirements of today's connected enterprises. From large scale global deployments to small and remote offices, Mindtree has a managed firewall service designed to align with each individual organization's security initiatives and budgetary requirements.
In the enterprise, mobile devices and mobile apps need to be secure. A lost or stolen phone or tablet can mean your company data falling into the wrong hands. Join us to explore the security features available on iOS and Android. Learn how app data can be compromised and learn best practices for the development of secure enterprise apps on both platforms.
Navigating the Zero Trust Journey for Today's Everywhere WorkplaceIvanti
Join Ivanti cybersecurity experts as they share best practices for implementing an effective zero trust security strategy at the user, device and network-access levels to ensure the optimal security posture for your organization. Learn how you can implement a multi-tiered approach to mobile phishing protection to best protect against data breaches.
Defend your Everywhere Workplace through adaptive zero trust security and adapt to modern threats faster and experience better outcomes.
This slide deck explores the evolution of authentication mechanisms, advantages and the disadvantages of each, and how adaptive authentication may be the answer.
Watch the webinar here: https://wso2.com/library/webinars/2019/01/adaptive-authentication-what-why-and-how/
2007년 KPMA 논문 발표
http://projectresearch.co.kr/2011/03/02/peter%EA%B0%80-%EC%A0%9C%EC%95%88%ED%95%98%EB%8A%94-enterprise-2-0-%ED%98%91%EC%97%85-%ED%99%98%EA%B2%BD-enterprise-2-0-%EA%B4%80%EB%A0%A8-%EB%85%BC%EB%AC%B8-pt-%EC%A0%95%EB%A6%AC/
Security architecture scheme should be designed in accordance with with Enterprise Security Operation and legal compliance.
Enterprise Security program
Mindtree's managed firewall service has been carefully designed to fit the diverse requirements of today's connected enterprises. From large scale global deployments to small and remote offices, Mindtree has a managed firewall service designed to align with each individual organization's security initiatives and budgetary requirements.
In the enterprise, mobile devices and mobile apps need to be secure. A lost or stolen phone or tablet can mean your company data falling into the wrong hands. Join us to explore the security features available on iOS and Android. Learn how app data can be compromised and learn best practices for the development of secure enterprise apps on both platforms.
Navigating the Zero Trust Journey for Today's Everywhere WorkplaceIvanti
Join Ivanti cybersecurity experts as they share best practices for implementing an effective zero trust security strategy at the user, device and network-access levels to ensure the optimal security posture for your organization. Learn how you can implement a multi-tiered approach to mobile phishing protection to best protect against data breaches.
Defend your Everywhere Workplace through adaptive zero trust security and adapt to modern threats faster and experience better outcomes.
This slide deck explores the evolution of authentication mechanisms, advantages and the disadvantages of each, and how adaptive authentication may be the answer.
Watch the webinar here: https://wso2.com/library/webinars/2019/01/adaptive-authentication-what-why-and-how/
2007년 KPMA 논문 발표
http://projectresearch.co.kr/2011/03/02/peter%EA%B0%80-%EC%A0%9C%EC%95%88%ED%95%98%EB%8A%94-enterprise-2-0-%ED%98%91%EC%97%85-%ED%99%98%EA%B2%BD-enterprise-2-0-%EA%B4%80%EB%A0%A8-%EB%85%BC%EB%AC%B8-pt-%EC%A0%95%EB%A6%AC/
Security architecture scheme should be designed in accordance with with Enterprise Security Operation and legal compliance.
Enterprise Security program
* 행사 정보 :2016년 10월 14일 MARU180 에서 진행된 '데이터야 놀자' 1day 컨퍼런스 발표 자료
* 발표자 : Dylan Ko (고영혁) Data Scientist / Data Architect at Treasure Data
* 발표 내용
- 데이터사이언티스트 고영혁 소개
- Treasure Data (트레저데이터) 소개
- 데이터로 돈 버는 글로벌 사례 #1
>> MUJI : 전통적 리테일에서 데이터 기반 O2O
- 데이터로 돈 버는 글로벌 사례 #2
>> WISH : 개인화&자동화를 통한 쇼핑 최적화
- 데이터로 돈 버는 글로벌 사례 #3
>> Oisix : 머신러닝으로 이탈고객 예측&방지
- 데이터로 돈 버는 글로벌 사례 #4
>> 워너브로스 : 프로세스 자동화로 시간과 돈 절약
- 데이터로 돈 버는 글로벌 사례 #5
>> Dentsu 등의 애드테크(Adtech) 회사들
- 데이터로 돈을 벌고자 할 때 반드시 체크해야 하는 것
Westnet’s integration team can deliver new
web service connectivity many times faster
than previous coding approaches.
• Manually intensive telephone service provisioning
has been automated, saving time and
improving staff efficiency.
• Robust integration has helped Westnet tightly
link its broadband provisioning processes to
those of parent company iiNet and has delivered
new customer credit scoring that is many
times faster than was possible in the past.
Presentation by GoDB Tech to Zensar #TechShowcase. An iSPIRT ProductNation in...ProductNation/iSPIRT
Presentation by GoDB Tech to Zensar #TechShowcase. An iSPIRT ProductNation initiative. Creates vertical focused mobile apps, which come with scalability and security, and is based of their platform and their main focus is on FMCG and Retail verticals.
10+ years of IT experience in Manual and Automation Software Testing and Quality Assurance in BFSI Domain (Core Banking - Finance - Swift Payments - Capital market / Investment banking),
Challenges of Mobile HR framework and programJinen Dedhia
If you have taken a Mobile program for mobilizing HR/LMS or any other system then here is an insight for the practioners on challenges they can expect their way.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Neuro-symbolic is not enough, we need neuro-*semantic*Frank van Harmelen
Neuro-symbolic (NeSy) AI is on the rise. However, simply machine learning on just any symbolic structure is not sufficient to really harvest the gains of NeSy. These will only be gained when the symbolic structures have an actual semantics. I give an operational definition of semantics as “predictable inference”.
All of this illustrated with link prediction over knowledge graphs, but the argument is general.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
4. 3 /14
1. Introduction > Example
PHP Configuration, Application Vul.
Developer, Operator, Security
Personal Information
ID/PASSWORD Attack
Hacking Technology
5. 4 /14
2. About MSS > company overview
History : SK M&C(2008.4) + SK Planet(2011.10)
Mission : HUG
Business Area
– Digital Contents : T Store, hoppin, T Cloud, Tictoc, Cyworld, Nate, NateOn, Cymera
– Integrated Commerce : 11st, Gifticon, Smart Wallet, Paypin, Styletag, T Shopping
– Marketing Communication : OK Cashbag, BENEPIA
– Location Based Service : T Map, picket, OK Map, NaviCall
– Advertising
Affiliates : SK Communications, Commerce planet, M & Service
7. 6 /14
3. MSS Requirement > Workaround
< IT Environment is changing > < Co-operation in your organization >
8. 7 /14
3. MSS Requirement > Cloud Computing & Big data
BIG DATA
Velocity Diversity Volume Analytics
Mobile Web 2.0 Cloud IoT
Privacy
Legacy Security
Incident
Management
Vague/Fear
?
9. 8 /14
3. MSS Requirement > Architecture(AS-IS)
< IDC #1 > <IDC #2> <IDC #3>
System
Architecture
PC 보안
Malware
E-mail 보안
L7 Firewall
<OFFICE>
N-sensor (Firewall, IDS/IPS, DDOS, NTMS)
Application-sensor (WAF)
Authentication & Log-Management
Vul-MNGT(Scanner, Expoit-DB)
People
&
Process
예방 탐지 분석 대응 개선
침해사고 대응지원시스템
취약점 DB Feed
Web Shell 탐지
웹 변조 감시
악성코드 감시
보안사고 신고
Honey-Net
Log-management
침입정보 분석시스템
10. 9 /149 /14
Firewall
Intrusion
Prevention System
Anti-Malicious
Site
New-Generation
Firewall
Antivirus
Traditional Security Solutions
Unable to block malware
from allowed addresses
Unable to detect malware
Unable to detect malware that
needs file-based analysis
Unable to block malware
from allowed websites
Unable to detect unknown
malware
New Approach
Signature based (Known)
Signature-less (Unknown)
Symptom Oriented
Responder-Pro(HBGary)
Autopsy Oriented
Fire Eye Protection
File Comparison
Parity Suite(Bit9)
True
False Positive
True Negative
False
Filtering & Co-relation
Event & Vulnerability
Multi-dimensional analysis
3. MSS Requirement > New approach
Ref : Ahnlab
Co-relation, Time series, Function Analysis
11. 10 /1410 /14
The bigger eye-sight for big data analysis rather than security information & Event
Signature based (Known)
End-point
(Host, Server)
Sensor
(NW, Application)
Filter
(NW, Application)
System log
Application log
Transaction log
Signature-less (Unknown)
Blacklist Asset_Vul IntelligenceH-Base Behavior
※ 위∙변조 방지, 일정기간 보관(Volume/Size), 정형/비정형, Parsing/실시간 분석
Multi-Dimensional analysis (Version2.0)
Log-management (Time sync & conversion, normalization, forward)
Security Intelligence (Visualize & Analytics)
3. MSS Requirement > Progress Direction
< Enterprise Environment >
Security log
< MSS Technology >
FW
IDS
WAF
DDOS
Web-GW
DLP
Etc
Biz awareness
Security awareness
12. 11 /1411 /14
하둡 클러스터 (HIVE) BI
원천 데이터 서버 및 어플라이언스
File, Syslog, SNMP, NetFlow, JDBC, FTP, SFTP, JMX, JMS 등
Analysis
4. User Experience
실시간 데이터 수집 및 저장
– 500G 이상/일, 4만 EPS 이상
– 초당 50만건 저장 및 Indexing
– 압축 : 500G → 89G(83%)
– 이중화 구성으로 로그유실 최소화
– 암호화 저장 및 해쉬값 보관
– 다양한 프로토콜 및 Parse 지원
– 에이전트 제공
외부시스템 연동 및 시각화
– 다수 분석계로 로그전송
– SDK 제공 및 HDFS 데이터 적재
– BI 솔루션 ETL 수행
강력한 쿼리 및 실시간 분석
– No-Sql (사용방법 직관적)
Log-management in SK Planet
13. 12 /1412 /14
Enterprise Architecture
- Enterprise에 적합한 보안관제 체계 (R&R, System Integration)
Technology
- Don’t Customize (시스템 이해, Partnership)
Process (Communication, Policy)
- 무조건 차단하지 말고 보고서를 쓰지 마라
- CERT 체계를 정비하고 대외 CERT와 커뮤니케이션 하라
- 사람도 시스템도 믿지 마라 (프로세스를 믿고 주기적으로 평가하라)
- 신고, 취약점 등 모든 징후를 모두 분석하지 않는다
- 직원의 신분을 노출하지 마라 (Ranger VS Reconnaissance)
People (Mission)
- 사고를 은폐하지 말고 분석∙ 대응하라 (경험과 노하우를 쌓아라)
- 내 권한을 유지하자 (Constituency, 법적 권한)
5. Wrap-up > Do & Don’t