Nothing good or bad can happen on the Internet without involving the Domain Name System (DNS). DNS offers a commanding view of both the local and global Internet and can provide unparalleled intelligence on cybercriminals and their attack methods. During investigations, incident response professionals are increasingly using DNS to build out indicators of compromise (IOC)s and other threat indicators to map the attackers’ entries and lateral movements throughout their networks.
Merike Käo shares the latest insights on the value of DNS to today’s cyber investigations as well as real-world examples of how incident responders, SOC analysts, and more are using real-time global DNS observations to significantly improve response time and accuracy to today’s cyberattacks.
Merike Käo is the CTO of Farsight Security, where she is responsible for developing the company’s technical strategy and executing its vision. Merike is a recognized global expert in information security. Previously, Merike was CISO for Internet Identity (IID), where she created the strategic direction for improving and evolving the corporate security posture, and founder of Doubleshot Security, where she worked with numerous companies creating strategic operational security and resilient networking architectures. She led security and IPv6-focused strategies at numerous companies, including Boeing, Comcast, and T-Mobile, and worked for Cisco Systems, Inc., where she instigated and led the company’s first security initiative and focused on technical issues relating to network and application performance, routing protocols, and large-scale network design.
Merike is the author of Designing Network Security (Cisco). She is a member of the IEEE and has been an active contributor in the IETF since 1992. She cochaired the IP Performance Metrics (IPPM) working group from 2000 to 2003 and has actively contributed to numerous IETF working groups with a specific focus on operational sanity. She was named an IPv6 Forum Fellow in 2007 for her continued efforts to raise awareness of IPv6 related security paradigms. Merike holds a BSEE from Rutgers University and an MSEE from the George Washington University.
©2016, O’Reilly UK Ltd • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • email@example.com