changing global scenario of information security and its effects on security testing by anshul...
TRANSCRIPT
![Page 1: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/1.jpg)
Changing global Changing global scenario of scenario of
Information Security Information Security and its effects on and its effects on Security testingSecurity testing
By Anshul AbhangFounder Director, FLUXONIX
CEH, CHFI, ECSA, LPT, DNV cVa, ECSP, EDRP, ECVP, ISO 27001 LA, SSCP, CISSP, DCL, PGDCL and some
more
![Page 2: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/2.jpg)
Evolution of cyber Evolution of cyber crimecrime
• First crime registered was in 1820.
• Then came computers, then came smart computers, then came security.
• Today we have specialized departments handling cyber security.
• Software and security
![Page 3: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/3.jpg)
Why nowWhy now• Are we at the brink of cyber war?
• Increased use of technology
• Upcoming standards
• Increased use of tools. (The google story)
• The Bubble
![Page 4: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/4.jpg)
Security threatsSecurity threats• Financial crimes
o Classic case of finsider attack
• Online gambling• Web defacement• Email bombing• Denial of service• Trojans and key loggers• TEMPEST
![Page 5: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/5.jpg)
Threats to upcoming Threats to upcoming technologytechnology
• Cloud Computing
• Mobile Security
• The Blackberry threat
• The application security????
![Page 6: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/6.jpg)
Impact on our daily Impact on our daily lifelife
• Financial loss and the accepted threat
• Loss of goodwill in the market
• CHAOS (The integrated networks)
![Page 7: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/7.jpg)
SDLCSDLC
![Page 8: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/8.jpg)
Typical Iterative Typical Iterative development life cycledevelopment life cycle
![Page 9: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/9.jpg)
9
Typical Iterative Typical Iterative development life cycledevelopment life cycle
![Page 10: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/10.jpg)
StandardsStandards
• ISO 27001
• PCI – DSS
• Software Assurance standards
![Page 11: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/11.jpg)
Security TestingSecurity Testing
![Page 12: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/12.jpg)
ToolsTools• Network Security testing tools
nmap, nessus, foundstone tools, metasploit framework, Backtrack, Tsight, Core Impact, GFI LanGuard, your coding skills.
• Application Security testing toolsAccunetix, webgoat, OWASP top 10, FBI top 20, SANS, IBM Rational Appscan, HP web Inspect
Patch Management or remidiation
![Page 13: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/13.jpg)
Magic wands of Magic wands of securitysecurity
• Encryption (Tunneling)
• SSL for Appsec
• Automated patch management
![Page 14: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/14.jpg)
The “SECURE” worldThe “SECURE” world
• How much security is enough
• The FGF
![Page 15: Changing global scenario of Information Security and its effects on Security testing By Anshul Abhang Founder Director, FLUXONIX CEH, CHFI, ECSA, LPT,](https://reader036.vdocuments.site/reader036/viewer/2022062322/56649e9d5503460f94b9f091/html5/thumbnails/15.jpg)
THANK YOUTHANK YOU