fig leaf security
play

Fig Leaf Security @haroonmeer - 2011 #disclaimer Who am i ? & - PowerPoint PPT Presentation

Fig Leaf Security @haroonmeer - 2011 #disclaimer Who am i ? & Why this talk? A chance to meet our heroes! like Simple Nomad! thegnome: we expected thegnome: we got beard this is my rant.. The infosec industry ZA infosec


  1. “Fig Leaf Security” @haroonmeer - 2011

  2. #disclaimer

  3. Who am i ? & Why this talk?

  4. A chance to meet our heroes!

  5. like Simple Nomad!

  6. thegnome: we expected

  7. thegnome: we got

  8. beard this is my rant..

  9. • The infosec industry • ZA infosec research

  10. InfoSec: We Suck

  11. and it’s our fault

  12. No ?

  13. Bet on your architecture?

  14. Write code for a living?

  15. So we build secure networks, but can’t protect our most prized user and we write code, that we know cant stand up to security testing?

  16. but nobody can write secure code

  17. Right?

  18. Wrong!

  19. <Brief Digression> (sub-rant)

  20. Do you know these men?

  21. we hero worship the wrong guys..

  22. </Brief Digression> (sub-rant)

  23. but nobody can write secure code

  24. ok. not (secure and usable)

  25. Really?

  26. sendmail vs qmail ? djbdns vs bind ?

  27. So why did we think otherwise?

  28. Charlatans

  29. fig leaves!

  30. Application Testing..

  31. “Halting Problem!”

  32. “patching is a hard” problem

  33. Management don’t buy in!

  34. AV’s and V’s

  35. Why the double standard?

  36. We (seem to) only fight the fights we can (kinda) win

  37. aka: “buying what ppl are selling”

  38. hiding behind our fig leaves..

  39. http://blog.thinkst.com/2011/03/our-upcoming-security-apocalypse.html

  40. “You & Your Research” http://www.cs.virgina.edu/~robins/YouAndYourResearch.html

  41. So why don’t we do more?

  42. it’s hard..

  43. easy to start.. (ideas are cheap)

  44. Research Fig Leaves

  45. XXX is lame

  46. Academic masturbation!

  47. “doesn’t impress me” Stephan Fry: Advice to a younger self.

  48. Distraction

  49. http://www.acceleratingfuture.com/ michael/blog/images/Amusing- Ourselves-To-Death.jpgText

  50. “Amusing ourselves to Death”

  51. No Interesting Problems..

  52. “Work on stuff that “New Threats to matters” Privacy”

  53. There are important battles to fight..

  54. “Don’t just be the guy who tweeted about it”

  55. Don’t just fight the fights we can (kinda)win

  56. Fight the fights that need fighting

  57. We need to produce more than we consume..

  58. We need you haroon@thinkst.com @haroonmeer

Recommend


More recommend