SANS Technology Institute - Security Laboratory

Stephen Northcutt's Emerging Trends in IT and Security 2012 - 2014

An emerging trends analysis and a stab at predictions for IT and security coming 2012-2014.

Stephen Northcutt's Security Predictions 2012 and 2013

Stephen Northcutt identifies emerging trends in information security for the 2012, 2013 timeframe.

The Certificate Signing Trust Model Under Stress As An Industrial Security Model

A common part of the security model for industrial IT applications is to never accept or run a program or driver that has not been signed by the appropriate publisher. However, while it appears to be strong protection against malicious code, in fact it is not.

Bill Pfeifer, Juniper Networks

Bill Pfeifer is a Product Line Engineer at Juniper Networks supporting security software and data center firewalls. He has been in the IT field for 15 years, including stints at an Army tank base, a technology reseller, and some time at a financial services ASP. He holds a Bachelor’s degree in Civil Engineering from Penn State and an MBA with a human resources focus from Oakland University.

Security Predictions 2012 & 2013 - The Emerging Security Threat

A look at some of the potential emerging trends and security threats for 2012 and 2013. File was started to help prepare for a panel on the same subject at SANS Security West, May 6 - 11 2011 San Diego and also for an upcoming Keynote. Love to hear your thoughts on the subject.

The Attack Surface Problem

One of the most important things to understand about defense in depth is attack surface. We can define attack surface as our exposure, the reachable and exploitable vulnerabilities that we have.

Security Leadership Essentials Fairway Markers

This document is known as the "fairway markers" for SANS Security Essentials. It reflects the newest version of the course which will be taught for the first time December 2010 in Washington DC ( SANS CDI ). We invite alumni of the course to review the list and make suggestions as to what should be added or removed, prioritized or deprecated.

Eric Cole Emerging Threats Summary 2010

Here are Dr. Eric Cole's top eleven security issues for 2011 - 2012.

Stephen Northcutt's Security Predictions for 2011 and 2012

In addition to the work that I have done rounding up other people's thoughts, I also work as a futurist for IT and IT Security, and this is my set of predictions for 2011 and 2012. I hope they are useful to you.

Security Errors and Omissions by Organizations As We Enter 2011

Alan Paller, Director of Research at the SANS Institute asked me to put together a list of the prominent security errors and omissions organizations are making as we enter 2010 and I have updated it for 2011. The following is taken straight from one of the courses I research, author and teach, Management 512 Security Leadership Essentials.

Chris Pogue, Senior Security Analyst

Chris Pogue is a Senior Security Analyst for the Spiderlabs Incident Response and Digital Forensics team at Trustwave. He has over ten years of administrative and security experience including three years on the IBM ISS X-Force Emergency Response Services Team, five years with IBM’s Ethical Hacking Team, and 13 years of Active Military service in the US Army Signal Corps.

John Kanen Flowers

John is a truly unique security thought leader. He has been involved in a number of start ups and is currently working on something fairly radical カネ|box (or kane|box).

SANS Security West 2010 Speaker Room Predictions

Stephen Northcutt thought it might be fun to interview the instructors in the speaker room at SANS Security West 2010 and get their take on the future. Sometimes your answer is different when it is given verbally.

Mark Weatherford Security Predictions 2011 - 2012

Mark is the CISO of the State of California and is a valued thought leader in Information Security.

2010 Security Predictions

A look at some of the more well known 2010 security predictions and a quick check to see how they are doing.

Kees Leune, Leune Consultancy, LLC

Kees has made many contributions to the information assurance community, but one, the use of rubrics to help guide the peer review of GIAC Gold papers means a lot to me. It means a lot to you as well, because it created a state change for higher quality in the Gold program. So those of us at the Security Laboratory are excited that he has chosen to be a part of the SecurityThought Leadership Project.

Joel Yonts, CISO

Joel Yonts is a seasoned security executive with a passion for information security research.He has over 20 years of IT experience with certifications in the areas of Security Leadership, Computer Forensics, Malware Analysis, Incident Handling, and Reverse Engineering. His research interests include malware analysis and defense, computer forensics, and enterprise security.

Maury Shenk, TMT Advisor, Steptoe & Johnson

Maury Shenk, TMT Advisor at Steptoe and Johnson, working with a focus on intellectual property, information security and encryption issues, has agreed to be interviewed for the Security Thought Leadership project, Maury has also recently embarked on a consultancy business to build on new approaches for realizing value in technology and intellectual property He has agreed to be interviewed for the Security Thought Leadership project, and we certainly thank Maury for his time.

Chris Wysopal, CTO, Veracode

Veracode’s CTO and Co-Founder, Chris Wysopal, was named one of InfoWorld's Top 25 CTO's and one of the 100 most influential people in IT by eWeek. One of the original vulnerability researchers and a member of L0pht Heavy Industries, he has testified on Capitol Hill in the US on the subjects of government computer security and how vulnerabilities are discovered in software. He is the author of “The Art of Software Security Testing” published by Addison-Wesley.

Voice over IP, a South East Asian Perspective: an interview with Eric Cole, PhD and Paul Henry

An interview by Stephen Northcutt with Eric Cole, PhD and Paul Henry on the rise of VoIP in SE Asia and the unique security concerns inherent to VoIP.

Amir Ben-Efraim, CEO, Altor Networks

Amir Ben-Efraim, CEO and co-founder of Altor Networks has agreed to be interviewed for the Security Thought Leadership project. His company's booth at RSA2009 piqued my interest because they deal with one of my favorite subjects, Defense-in-Depth, but specifically in the virtual environment.

Ed Hammersla, COO, Trusted Computer Solutions

Ed Hammersla has a background in trusted systems, as in the Orange Book. He understands the mechanics of low to high information transfer.

What is a Security Thought Leader

With the Security Thought Leader project Stephen hopes to introduce you to some really great men and women. A security thought leader can be defined by certain criteria: a person who is recognized by their peers as a thought leader, who passes their information on to help others, who has innovative ideas, and who shares ideas as actionable distilled insights.

How do you get started in Information security?

This article considers getting started in computer and network security (physical or facilities security is out of the scope of this writing). This is an introduction; you may want to consider our introductory course that covers information security basics if you find you are interested in learning more about security, intro to Information Security.

Could Currency Be Destabilized?

Growing evidence indicates a variety of attacks could cause significant economic harm to a target, an attack specifically designed to destabilize a currency might now be possible especially if sponsored by a party with significant economic power (i.e., a major country) or executed with precise timing during a high stress period on the economy.