From Traditional Network Security to Layered Defenses

Speaker: Frans van Leuven

Abstract

In the past companies focused on the perimeter as the focal point to implement security measures required to keep dangerous threats outside the organization’s network. Thinking of perimeter is a concept of the past; the perimeter fades away creating difficulties in armoring the enterprise in the future against advanced attacks whether persistent or not. A paradigm shift is required; emphasizing solely on preventative measures is insufficient in the fight against cyber threats. In today’s world an organization requires dynamic and intelligence based defense in order to identify previously unknown malicious behavior. It is such malicious behavior that could evolve into a new zero day attack wreaking havoc on your organization. Efficient data gathering, normalization and correlation and consolidation of events are key in the hunt of identify the needle in the haystack.

Cyber defense used to be a simple game in the past, an attacker used all means to work his way into an organization exploiting systems, software, networks and even staff. On the other side of the line, the defense, staff did their utmost to keep systems patched, close down vulnerabilities, limit access and keep the environment safe and sound. A network zoning approach using multi staged firewalls was the most common strategy. But the pace of change in business, systems and technology in combination with the rapid evolving cyber threats, cyber defense based on this concept has become a mission impossible.

Traditional Network Zoning does not bring the required protection anymore and worse also has become a major obstacle for business innovation requiring flexibility and agility. The combination of the documented multi layered security model (defense) including advanced security analytics (offense) will detect both potential malicious and potential breaches activities before becoming a hazard for the organization.

This presentation describes how this layered security model can and in fact must replace traditional network zoning. It is not a question if it can be done but only when and as it is the only way to stay in business. The good news is that it as a surprise for probably many does not need to increase the cost of security above all due to the fact that acts as an enabler rather than an obstacle for any (new) business.

Biography

Frans has over 35 years experience in the field of data communication and security. This both on national and global level working with various companies. The first years of his career the focus was on Asynchronous, X25 and SNA Networks. During later years this shifted to all popular types of LAN, MAN and WAN implementations including security related provisions.

During a period of 10 years he headed the Network Architecture Group of Philips. The more recent years Frans has been active within the Managed Services division of Atos in the field of Network and Security services as Principal Architect. At the moment Frans has a position as Product Manager for network based Communication and Security services within Atos.