Educational Tracks: Security, Authentication & Privacy

Track 9: Security, Authentication and Privacy

SPONSOR

In the global drive towards cloud services, everyone is vulnerable: corporations, individuals, data center/hosting service providers, network operators. This brave new world where 'everything is connected' underscores the growing need for improved security -- and security solutions that work in today's bandwidth starved, cloud-based architecture.

The TIA 2012 Conference and Exhibition features an entire educational track devoted to Securing the Cloud: Strategies and Solutions to improve authentication, to secure devices, to secure networks, and to secure the applications themselves. Sessions include a review of the standard tools for security -- cryptography, public key encryption, etc.; coverage of national trends in security and authentication, and an exploration of strategic issues such as liability, cost of data breaches and risk .

This track is designed to offer network operators and broadband service providers a top-down look at the new framework of security. Attendee take-aways include information on what carriers need to do, in terms of hardware, software and services upgrade, to embed security solutions and what is needed to bundle security with their existing enterprise offerings.

Please Note: Sessions listed below are subject to change.

DAY ONE: Wednesday, June 6, 2012

8:00 – 8:25 am
Shelter from the Storm- The Role of Service Providers in Protecting the Enterprise

Umesh Kukreja

Umesh Kukreja, Senior Director Product Marketing, Alcatel-Lucent
Today’s enterprises and the service providers that serve them are seeing a perfect storm leading to a widespread increase in the number and severity of Distributed Denial of Service Attacks (DDoS) attacks. Increased attack motivation, rapid growth of infected botnet pools used to launch attacks and an entire middleware ecosystem designed to support DDoS attacks for hire have led to some IDCs experiencing more than 500 attacks per month. This increase in the frequency, complexity and volume of DDoS attacks threatens internet connected infrastructure, services and applications unlike ever before. It also presents a golden opportunity for service providers to market cloud-based DDoS protection services to enterprise customers struggling under the onslaught.

Attendee Take-Aways

Overview of the evolution of Distributed Denial of Service (DDOS) attacks over the past 6 years
Opportunities for delivering network based (cloud) DDoS
Innovative solutions introduce a new level of trust and assurance for your Enterprise customers,
improving your business services mix and bottom line

8:30 - 8:55 am
Security as a Service
Ashish Jain, Director, Product Marketing, GENBAND
Today’s businesses must compete in an increasingly globalized marketplace. Round the clock operations, distributed national and international locations, and a growing remote and mobile workforce – all require organizations to adopt technologies that improve productivity and reduce operation cost. Businesses now seek to IP-enable their communication infrastructure and leverage their investments to converge voice and data networks. Convergence in the enterprise network presents a unique opportunity for the carriers to play a significant role in this ongoing evolution. The increased use of IP networking for multimedia communications by enterprises opens up doors for the service provider to offer Security As a Service and provide a secure and converged access to enable unified communications.

Attendee Take-Aways

This discussion will point out how network equipment such as session border controllers can be deployed in a cloud to offer managed security services to large enterprises.

9:00 - 9:25 am
Optimizing the Value of Security in the Next-generation Data Center
Greg Brown, VP Network Security, McAfee
“Next generation” data centers are designed to take full advantage of private and public cloud computing models. Securing the modern data center – without restricting availability and flexibility – requires an integrated approach to networking, security, and IT management. This session explores the impact of virtualization and cloud computing on data center security and outlines essential strategies to optimizing the value of security.

This session explores:

A modular approach to security that maximizes ROI throughout the data center
Unified security controls across physical, virtual, and cloud environments
Centralized security and event management to effectively manage risk

9:30 – 10:25 am
Panel: Strategies, Solutions and Best Practices to Secure the Cloud

Jeff Goldthorpe

Vikas Jain

Jeff Goldthorpe, Associate Chief, Cybersecurity and Communications Reliability, FCC
Rodel Alejo, Director, Product Management, McAfee
Vikas Jain, Director, Product Management, Intel
This panel session will cover the national trends in security and authentication, and will explore strategic issues such as liability, cost of data breaches, risk and more. What are the challenges to user authentication, privacy and the growing threat from someone accessing sensitive personal and corporate data as it resides and is accessed in 'the Cloud'?

DAY TWO: Thursday, June 7, 2012

2:30 – 3:25 pm
Panel: How Susceptible Is Your Network? Top Five Information Security Strategies to Protect Critical Infrastructure and Combat APTs
Tony Waller, Senior Engineer, Bivio Networks
Jay Kelley, Senior Product Manager, Juniper Networks
A glance at today’s headline news tells us that there is no doubt that targeted cyber attacks and Advanced Persistent Threats (APTs) are among us. The question is: what are information security professionals doing to continually evolve and combat these highly sophisticated attacks? In this session, service providers will learn five key strategies to implement right now to help intelligently gather and analyze threats, identify networking weaknesses and bolster defenses to protect their infrastructure.

Attendee Take-Aways

Learn about the critical role that continuous monitoring provides when analyzing an organization’s complex infrastructure
Determine vulnerabilities before implementing a combat plan

3:30 – 3:55 pm
Who’s Watching Your Network? Protection Against HTML5 Threats

Hongwen Zhang

Dr. Hongwen Zhang, CEO, Wedge Networks
The adoption of HTML5 is enabling the advancement of mobile access, cloud-based applications and other dynamic content leading to an improved user experience. But to take full advantage of the benefits of HTML5 while maintaining security in this new landscape, organizations need to implement solutions that can not only support the protocol, but understand and secure the content transferred through the network. Current network inspection technologies are unable to deliver the visibility, comprehension and manageability required to shape Internet traffic and secure IT infrastructure. These technologies rely on either a narrow inspection scope at the packet level or a store and forward network architecture. Both approaches are rapidly losing effectiveness because communication is delivered as dynamic content with multiple protocols carried over sophisticated enterprise and service provider networks.

This session will explore emerging threats from the adoption of new HTML5 content and protocols. It will cover alternative methods to look at incoming Internet traffic and scan across all layers including the application layer and each object, to intercept the intent of the traffic without latency implications.

Attendee Take-Aways

Learn how to take advantage of HTML5 advancements with solutions that prevent against emerging threats.
Learn how to stop the spread of malware.
Learn how to ensure your solution scales, detects and remediates both known and new threats without impacting performance.

4:00 – 4:25 pm
Demystifying Cyber Threats!

Paul Dwyer

Paul C. Dwyer, Independent Security GRC & Cyber Threat Advisor; Chairman of the National Association of Chief Security & Risk Officers (NACSRO); Chief Advisor to the International Cyber Threat Task Force
With daily media reports about hacking groups targeting everything from the Federal government to the major security providers, what is the truth? What about Critical National Infrastructure (CNI)? Paul C. Dwyer, President of the International Cyber Threat Task Force (ICTTF), will explain what is fact and what is fiction, with real life examples and insights into what is happening and what is potentially going to happen. Gain an understanding of how vulnerable organizations are and what customers expect from a telecommunications provider.

4:30 – 5:00pm
Managing and Protecting Your Mobile Identity
James Barry Folsom, CEO, Litescape Technologies
According to national security expert Richard Clarke, US infrastructure is so vulnerable to cyber attacks that we essentially would not be able to fight wars with certain tech-savvy countries because they could cripple transportation systems, power grids, and banking networks with ease. Mobility and smartphones present even more complexity to this issue. As productivity and adoption of smartphones increase, so must security measures for your mobile identity.

Online activities that were once the digital domain of the computer have found a new interface in our work and personal portable devices. With our digital presence growing at a rapid rate and the widespread adoption of smartphones and tablets, we are constantly opening ourselves up to vulnerabilities along the mobile network, ones that we have yet to manage securely. The enterprise mobile network continues to grow and expand and organizations must firmly identify and verify end-users before providing access to sensitive business data from any device. In both personal and professional lives, there is potential to leave an unsecure mobile footprint at every point of interaction with mobile networks.

While many are still working to enforce similar security and identity management measures for Internet Protocol (IP)-based systems, preventing these vulnerabilities and protecting mobile platforms presents a huge challenge and is one that must be addressed as soon as possible.

Attendee Take-Aways
Attendees of this presentation will learn the latest ways to implement security and identity management for mobile communications, including:

Establishing ID management that pairs devices, users and the user’s identification factors
Implementing multi-factor authentication to protect mobile and smartphone devices
Decoupling ID systems from the device hardware to achieve the highest level of security. Solutions that support a large number of devices should not be tied to a specific hardware vendor’s concept of identity management
Ensuring data being used for edge-network identification systems is highly transient. This is especially important with smartphones where any info stored on the device is vulnerable
New standards and practices in mobile security and encryption

Educational Tracks

Facebook/Twitter Lists

Facebook Twitter News

Follow @tiaevents

Learn more about SMB #Cloud Services: New Revenues & Opportunities via @Tiaevents at http://t.co/mD6v7ywK

05.16.2012 // Retweets: 0

Learn more about LTE Deployment Strategies: Business & Technical Solutions from @JuniperNetworks, @NokiaSiemensNet at http://t.co/k9Y9C8fe

05.16.2012 // Retweets: 0

19 days until TIA 2012 starts! Check out what's cooking here http://t.co/6pC0Ob0Y #insidethenetwork

05.16.2012 // Retweets: 0

20 days left untill TIA 2012! Register now http://t.co/ue5xHCNf

05.15.2012 // Retweets: 2

TIA to Hold ‘Venture Network Challenge’ at TIA 2012: Inside the Network

10 Innovative Start-Ups will Compete June 7 in Dallas; Challenge Sponsored by TIA, Dow Chemical and Metroplex Technology Business Council (MTBC)

ANPI ZONE TELECOM Holds Customer Meeting at TIA’s 2012: Inside the Network Event

Nationwide Network Operator and Wholesale Provider Hosts Carrier Meeting June 7 at Telecommunications Industry Association Conference

‘TIA 2012: Inside the Network’ to Confront Growing Energy Use in Telecom Networks & Demonstrate New Green Solutions

During ‘Green ICT’ Sessions June 5-7 in Dallas, Alcatel-Lucent, China Mobile and Others will Address Enormous Energy Efficiency Challenge Facing Industry

Connected Nation Brings Broadband Connectivity Programming

First Connected Texas Broadband Summit to be held on June 5 at TIA 2012: Inside the Network.

Verizon CTO Tony Melone to Keynote

Tony Melone, CTO for Verizon Communications, will deliver the Day 2 Opening Keynote on Thursday, June 7.