Day-Con IV, Dayton [ day-con.org ] Ohio's premier international Hacker Conference - Dayton Security Summit. Point of Origin Hacking. Learn, Work & Play Harder in Dayton!!!

Speaker - Bruce Potter - Founder of The Shmoo Group of security professionals. TSG has lots of neat-o tools, a conference, and some other random things. He’s the founder and CTO of Ponte Technologies, a company focused on advanced IT security technologies.

NECESSARY BUT NOT ENOUGH (Bruce Potter Keynote) - Considering where the practice of information security started, the industry has certainly progressed over the last several decades. Forty years ago, only a handful of individuals understood the core concepts regarding keeping computer systems secure. Today there are universities with degree programs based on computer security, US federal mandates regarding security of IT systems, and a wide variety of industry specific guidelines and auditing bodies. However, the unfortunate truth is even when you follow all the guidelines, check all the checkboxes, and pass every audit, your systems can (and will) be compromised. Doing information security right is necessary but not sufficient when it comes to securing your enterprise.

This talk will examine our current defenses and show how they are inadequate in the face of modern attacks. I will discuss how organizations need to deal with this reality of compromised systems and targeted attacks. Finally, I'll provide insight in to some new technologies that are on the horizon that may provide some relief from our current situation.