Transcript SCIT Self Cleansing Intrusion Tolerance

SCIT
Self Cleansing Intrusion Tolerance
Using Moving Target Defense for Proactive
Cyber Deterrence - Reducing Zero Days
and APT Induced Losses
Cloud is Here
+ Server utilization increases to 65+%
- Security
- More software --- potential for additional
vulnerability
- Multi-tenancy
Use Moving Target Defence
Intrusions Are Inevitable
New Proactive Approaches are Required
Epsilon Data Breach – 2011
Cyber Attacks Persist
• Intruders need access and time to orchestrate
their attacks
• Intrusions persist for days, weeks, months
• Malware is hard to detect
• Highly customized malicious code blends into
the information landscape
Intruder Residence Time in
Months
5 months
7/17/2015
3 months
2 months
6
Verizon DBIR 2010
Significant Intruder Residence Time
The SCIT Approach
Reduce server exposure time
Must maintain uninterrupted service
The SCIT Approach
• Patented, Proven, Award Winning Self
Cleansing Intrusion Tolerance Technology
• Uses Virtualization Technology
• Ultra Low Intruder Residence Time
• Subverts attacks by robbing intruders of time
and persistent access needed to launch
attacks
Demo
SCIT: Self Cleaning Intrusion Tolerance
PROACTIVE CYBER ATTACK DETERRENCE
Arun Sood, Ph.D.
[email protected]
[email protected]
+1703.347.4494
7/17/2015
10