Training: 8–9 November 2016
Tutorials & Conference: 9–11 November 2016
Amsterdam, NL

Leveraging isolation technologies for improved security and productivity

Dan Amiga (Fireglass), Dor Knafo (Fireglass)
14:10–14:50 Friday, 11 November, 2016
Bridging business and security
Location: G106/107 Level: Intermediate
Average rating: ***..
(3.50, 4 ratings)

Prerequisite knowledge

  • A working knowledge of approaches for security (prediction, response, detection, and prevention)
  • Familiarity with web threats and email and social threats and network security (firewalls, proxies, and secure web gateways)
  • A basic understanding of common IT security issues (false positives/negatives, zero-day exploits, and behind-the-curve detection)

What you'll learn

  • Understand how to leverage isolation to improve productivity by opening the organization to more content, vendors, and employees without sacrificing security

Description

Isolation is a new approach to security that is gaining momentum across many industries. Dan Amiga and Dor Knafo cover the important things you need to know about isolation: why now, how isolation can improve productivity, detection versus isolation, technologies, different approaches, caveats, evaluation criteria, live demos, and deployment strategies into the existing IT security environment.

Dan and Dor start with an overview of isolation. Instead of trying to detect if code is good or bad, with isolation you assume everything is bad and focus on separating the code from your trusted systems without damaging productivity. Dan and Dor detail why isolation is gaining in popularity and what has already been tried (and failed). They then discuss different approaches for isolation, presenting the pros and cons for each.

Dan and Dor then explore how to evaluate an isolation technology, discussing the barriers of deployment of such technology, such as user experience, latency, hardware utilization, scale, and analytics, before highlighting the ROI, productivity, and risks. They conclude by demonstrating how isolation can be integrated into the existing IT security architecture and offer a future vision for isolation technologies.

Photo of Dan Amiga

Dan Amiga

Fireglass

Dan Amiga is the cofounder and CTO of FireGlass, a cybersecurity startup that commercializes military-grade network security concepts into paradigm shifting enterprise security products. Dan has spent years doing IT security in the IDF Intelligence, where he was focused on inventing and developing new security solutions that go far beyond firewalls, proxies, or heuristic-based antimalware solutions. After moving to the private sector, Amiga has worked for the Microsoft Technology Center as a senior consultant for highly secure organizations, governments, and critical infrastructure companies. He then moved to the energy giant Schneider Electric, where he held the position of chief software architect. Dan has given talks at major international security and software conferences and is an adjunct professor at the Interdisciplinary Center, Israel, where he teaches advanced cloud computing topics.

Photo of Dor Knafo

Dor Knafo

Fireglass

Dor Knafo leads security research at FireGlass, where he is responsible for all malware, web attacks, and reverse engineering research. Prior to FireGlass, Dor spent five years in the IDF Intelligence as a security and research engineer.