Security Roundtable for September 27, 2008
Social media and social networking continue to spread – and that includes the security community. If you have heard about twitter, wondered about a service that begins with ‘twit’ and have pondered the advantages and concerns – listen in to the Security Roundtable that discusses those very points.
Our guest for this episode is Zach – security professional, friend of the show and curator of the Security Twits list.
Twitter: www.twitter.com
Zach: http://twitter.com/quine
Michael: http://twitter.com/catalyst
Martin: http://twitter.com/mckeay
Security Twits: http://n0where.org/security-twits/
Next Recording: Saturday, October 11, 2008 @ 10a Eastern – look for the live stream (and your chance to participate) around 10:15.
Security Roundtable for September 13 2008
Welcome to the September 13, 2008 Security Roundtable. I know, we missed August – despite our best attempts (we recorded a flop – my fault – that we will make up and bring to you in the future). The time away gave us a chance to sit and plan. Whacky, right?
As a result, Martin McKeay and I are evolving (improving) the Security Roundtable!
Starting now, we’ll be recording every other week at 7 am Pacific/10a Eastern on Saturday mornings. And we’ll be streaming the recording live (http://hak5radio.com:8000/srt.mp3.m3u), opening a chat session and encouraging more bloggers and podcasters to join us. Of course, we will continue to distribute the recordings through this site – so if you have to do yard work, watch the kids, make us breakfast… you won’t miss a thing.
The discussion continues in the Security Catalyst Community, too. In fact, in some cases, it may even start there…
Our goal is simple: keep the program simple, under an hour and relevant while blending together the voices of the community. This is also an opportunity for members of the community to participate through segments. Rather than have a larger, static “panel” of people, we’re exploring more voices, shorter segments and more interactive. We’d love to know what you think, what you want to hear and if you want to be involved.
While we consider this recording to be an experiment – it is a show where I learned from the conversation. In fact, I look forward to listening to it again. Our guest for the show is Marc Massar, Principal Solutions Architect at Venafi. I had interviewed Venafi previously (and liked their approach) and was happy to welcome Marc to the program.
Our rules are/were simple: no sales pitch. Marc didn’t need the rules – he’s got a solid background and jumped right into a meaty discussion about the industry and how we can improve our solutions.
Security Roundtable for September 13th, 2008
The next SRT will be recorded on September 27th, 2008 at 7:00 a.m. PDT. Martin will be at the McKeay Global HQ (with coffee) and I will be in Vegas, with Mountain Dew. The first program in October – we’ll both be in the same town, and are working now to be in the same place at the same time. Watch out!
Want to be involved? Drop us a note and let us know…
Security Roundtable for July 2008: Battling Botnets with Botnets
The July discussion started by exploring the concept of battling botnets with botnets. The genesis of the conversation was the paper, “Phalanx: Withstanding Multimillion-node Botnet,” written by Colin Dixon, Arvind Krishnamurthy and Tom Anderson. This came around the time buzz was being generated around the entire concept of battling botnets with botnets, and we decided to explore it with an open discussion that included ethics and unintended consequences.
As it turns out – the discussion was that, and more. Much more. This discussion brought forth the value of the Security Roundtable – since we left with more questions than when we started. This is good! When listening to the discussion, perhaps it will stimulate even more questions!
Thanks to the panel:
- Colin Dixon | http://www.cs.washington.edu/homes/ckd/
- Andrew Hay | http://www.andrewhay.ca/
- Martin McKeay | www.mckeay.net
- Michael Santarcangelo | www.securitycatalyst.com & www.intothebreach.com
The discussion ran a bit longer than we alloted, yet even on our review listen proved worth every minute. We raised some interesting questions and look forward to sharing the conversation with you. This is only the beginning and we invite you to share your ideas, insights and feedback in the Security Catalyst Community.
Additional Links Mentioned
http://www.cs.washington.edu/homes/ckd/ –> you can download the paper here
http://www.icir.org/vern/papers/cdc-usenix-sec02/
Joining the conversation in the Security Catalyst Community
Share your ideas in the Security Catalyst Community. Your participation is your currency (means no charge to join) – the more you contribute the more you learn and the more valuable the community becomes to everyone (so dive in and share). If you have not yet registered, please remember to use firstname.lastname as the standard.
Security Roundtable for June 2008: Clarion Call of the Jericho Forum
If you believe the Jericho Forum has called for the end to firewalls, then you need to stop what you’re doing and take a listen to this month’s Security Roundtable.
After attending an interesting discussion during RSA, Martin and I invited the Jericho Forum to join us at the roundtable to talk more about what Jericho Forum is, an what it does. We learned a lot and share the discussion with you…
Joining us on the program:
- Michael Santarcangelo – The Security Catalyst and author of Into the Breach
- Martin McKeay – Host of the Network Security Podcast and Captain Privacy
- Chris Hoff – Luminary and Jogger
- Paul Simmonds (bio below) – Co-Founder Jericho Forum
- Shane Buckley (bio below) – CEO Rohati Systems
Learn more about Jericho Forum: http://www.opengroup.org/jericho/
Paul Simmonds, Co-founder and board of management Jericho Forum & former CISO, ICI
Until May 2008 Paul Simmonds was the CISO at ICI (www.ici.com). Paul’s varied career has included Electronic counter-measures, Theatre Lighting, North Sea Oil control systems, JET (Nuclear Fusion Research) and commercial radio. Prior to joining ICI in 2001 he was Head of Information Security with a high security web hosting company and before that spent seven years with Motorola, as global information security manager.
Paul was awarded European Chief Security Officer of the year at the 2005 SC Magazine Awards and is listed in both the 2004 & 2005 global top 50 most powerful people in networking by the US publication Network World. Paul sits on the management board of the Jericho Forum and the Executive Advisory Board of ISSA UK. He also is a British Canoe Union Level 3 Kayak Coach.
Shane Buckley, President & CEO, Rohati Systems, Inc.
Shane Buckley is the President and Chief Executive Officer at Rohati Systems, Inc. Buckley comes to Rohati with more than 20 years of global executive and general management expertise, having held senior executive positions in the United States, Europe, the Middle East and Asia-Pacific.
Before taking the helm at Rohati, Buckley served as Chief Operating Officer at Nevis Networks, Inc. a leader in network access control. Previously, he was Vice President of Worldwide Enterprises for Juniper Networks. Prior to that, he served as the International President of Peribit Networks, the leader in Network Optimization. Juniper Networks purchased Peribit in June 2005 for $380M. Before Peribit, Buckley served as Chief Executive Officer of Conduit Software, a provider of Directory Assistance and Wireless Applications solutions. Previously, he was Vice President, EMEA at 3Com. In this role, he managed a $2.2 billion business unit and was responsible for 3Com’s distribution strategy, OEM partnerships and reseller channels. Buckley also chaired 3Com’s Global Distribution Council, was a member of the company’s worldwide OEM steering team, and served as 3Com’s head of operations for the Asia-Pacific Region based in Hong Kong and Tokyo.
Buckley is a frequent speaker at high-level industry trade shows and events such as Gitex, CeBIT and The Wall Street Journal Europe conference. He has also contributed to a number of magazines and news programs including MSNBC, SABC and Middle East Business news. He holds an engineering degree from the Cork Institute of Technology in Ireland.