Browse communities
Presenting a webinar?
Share this content

Preventing Intrusions by Insiders: A Game-Theoretic Approach

Ioanna Kantzavelou, Lecturer Dept. of Informatics TEI of Athens
Insiders might threaten an organization’s information systems at any time. By interacting with a system, an insider plays games with the security mechanisms deployed to protect it. We apply game theory to model these interactions in an extensive form game that is being played repeatedly with an Intrusion Prevention System (IPS)...
Jan 12 2010
27 mins
Preventing Intrusions by Insiders: A Game-Theoretic Approach
Intrusion Prevention Insiders Security
More from this community:

Cloud Computing

Webinars and videos

  • Live and recorded (2614)
  • Upcoming (74)
  • Date
  • Rating
  • Views
  • When a business rolls out IT systems to run its operations, the basic foundation on which the system is built is the network that carries the traffic. To be able to solve problems in such a complex environment, it's vitally important to know what is happening on the network. Whether it's the behavior of the applications, behavior of the users or rogue elements that interfere with application delivery, knowing what is going on is half the battle of solving the problem.

    This short video will discuss why having a well-designed workflow for identifying suspect traffic patterns and finding even the smallest volume of interesting data can make the difference in finding the culprit of pesky performance problems.
    Read more >
  • According to a recent survey by MobileIron, 81% of companies accommodate personal mobile devices in the workplace and more than 50% have formal BYOD (“Bring Your Own Device”) programs in place. Another survey from iPass found that nearly half of IT managers in organizations implementing enterprise mobility strategies believe their company’s approach to be insufficient. Register for this webinar and discover how to avoid missteps on your path to mobility.

    •How can you quickly and securely mobilize your workforce?
    •What controls should be available to IT for a BYOD initiative?
    •How do innovative companies collaborate in a mobile-first world?

    Get your questions answered and explore the latest integrated solution from Box and MobileIron. Over 150,000 companies around the world, including 92% of Fortune 500, use Box for content sharing that both users and IT love and adopt. MobileIron is a Box partner and recognized leader in the Gartner Magic Quadrant for Mobile Device Management.
    Read more >
  • Join 3 network specialists as they cover:

    - the need for networks to evolve
    - reducing human latency
    - simplifying the network
    - simplifying operations
    Read more >
  • Join 3 network specialists as they cover:

    - the need for networks to evolve
    - reducing human latency
    - simplifying the network
    - simplifying operations
    Read more >
  • Did you know that natural disasters, such as hurricane or flood only account for approximately 2% of all business disasters while hardware failures and human error account for more than 70%?

    Let’s face it: as an IT professional, anything that interrupts normal business operations could form the basis of disaster for you. Just remember: whatever the cause of your interruption, how you prepare to respond that will decide the fate of your business.

    So, are you prepared?

    In this session, Senior Sales Engineer Chris Brightwell from Kaseya will discuss what a state of the art backup and disaster recovery solution looks like, how you should plan ahead to prevent or mitigate the risks of a disaster and explains the difference between good and bad backup and disaster recovery strategies based on real-life examples.
    Read more >
  • The Internet Edge is the gateway between your Enterprise network and the public Internet. With the increase of cloud adoption and more remote branch locations of your enterprise connected over the Internet, how can you securely access public cloud applications or transfer data between remote locations through the Internet?
    Learn how the Internet Edge can protect your Enterprise networks and resources against attacks from the Internet.
    Read more >
  • 70% of the success of an IT project relies on the effective user adoption of the new tool or solution implemented. Let us introduce HP ART - a solution which changes the way users adopt and learn enterprise software. The webinar includes analyst observations, HP customer use-cases and a highly visual tool demonstration.
    Read more >
  • On Premise? Outsourced? Dedicated? Cloud? Harness the Power of "Hybrid" for a True "All-of-the-Above" Approach to IT Infrastructure.

    With so much focus on – and hype around – the cloud, we seem to have forgotten that for most businesses IT infrastructure remains a mix of on-premise, outsourced, physical and virtual components that must be optimized into a seamless hybrid environment. Featuring IaaS experts from Latisys and HP, we'll look at how CIOs and CTOs are allocating workloads, applications and data across a diverse infrastructure today – using every tool in their arsenal in an effort to maximize legacy assets, optimize limited IT budgets and leverage technology advancements to make their business more effective and responsive.
    Read more >
  • On Premise? Outsourced? Dedicated? Cloud? Harness the Power of "Hybrid" for a True "All-of-the-Above" Approach to IT Infrastructure.

    With so much focus on – and hype around – the cloud, we seem to have forgotten that for most businesses IT infrastructure remains a mix of on-premise, outsourced, physical and virtual components that must be optimized into a seamless hybrid environment. Featuring IaaS experts from Latisys and HP, we'll look at how CIOs and CTOs are allocating workloads, applications and data across a diverse infrastructure today – using every tool in their arsenal in an effort to maximize legacy assets, optimize limited IT budgets and leverage technology advancements to make their business more effective and responsive.
    Read more >
  • With easy access to public cloud resources like Amazon EC2, end users are completely sidestepping corporate IT and spinning up their own mini-datacenters with only a credit card in hand. This grass roots migration is gaining speed, and industry experts predict 35% of enterprise IT expenditures will go to shadow IT services like AWS in under 3 years.

    If you are in Corporate IT, join this webinar to learn more about:
    - Strategies other IT teams are pursuing regarding public cloud services, both pro and con
    - Management options for IT shops who want to embrace AWS, whether a little or a lot
    - Easy ways for corporate IT to add value to the business units and engineering teams already using Amazon EC2
    - Practical techniques for assuming a public cloud leadership role, even when resources are non-existent

    About the Presenters:
    Lynn LeBlanc, CEO and founder of HotLink Corporation, has over 25 years of enterprise software and technology experience at both Fortune 500 companies and Silicon Valley start-ups. Prior to founding HotLink, Ms. LeBlanc was founder and CEO of FastScale Technology, an enterprise software company acquired by VMware, Inc.

    Oded Haner, CTO at HotLink Corporation, is an accomplished, strategic, collaborative technology leader with extensive experience in developing and implementing innovative IT technologies. Most recently, Mr. Haner was CIO at Monster Cable where he developed and deployed a multi-year roadmap to overhaul corporate architecture towards virtualization, private cloud and SaaS based technologies. As a direct result of his vision, Monster Cable became an early adopter and internal service provider using both on-premise and cloud-based infrastructure.
    Read more >
  • Channel
  • Channel profile

Information Security

Up Down
  • The Making of a Simple Cyber Threat Intelligence Gathering System Jun 12 2013 8:00 am UTC 45 mins
    Using open source information gathering and turning them into Threat Intelligence alert system for in-house use for preventive and reactive purposes to combat hacker attacks. This is just a simple guide that can be followed and used by anyone.
    Synopsis:
    Using open source information gathering and turning them into Threat Intelligence alert system for in-house use for preventive and reactive purposes to combat hacker attacks. This is a simple guide that can be followed and used by IT security professionals.
  • Investigating and Remediating Security Incidents: How Prepared Are You? Jun 7 2013 3:00 pm UTC 45 mins
    Do you suspect you have a security incident? Time is of the essence. Your initial approach can determine how much damage the cyber security incident does—or does not do—to your organization.

    What if you could reduce the time it takes to investigate and remediate a security incident from days to minutes? Join us for this webcast to learn how you can improve your incident response by:

    •Locating every instance of a suspicious file across your endpoints and servers
    •Knowing if the malware executed, when, and what it did
    •Stopping an attack and preventing it from happening again
    •Analyzing files that arrive on your endpoints and servers to quickly determine their risk
  • Digital Forensics and Incident Response – Why You Need Them Both Jun 7 2013 12:00 am UTC 45 mins
    Nobody wants to fall sick, and yet we all do. By the same token, nobody expects their systems to be breached, and yet it happens. When that happens, companies need a blend of Digital Forensics and Incident Response expertise to deal with the incident. However, the distinction between these two related but different services and their roles in responding to a breach are often not clear to the victims of the breach. In this session, Vivek Chudgar, Director of FireEye Labs (APAC), will explain the key differences between Digital Forensics and Incident Response and demystify the role each service plays in effectively responding to a breach.
  • Cloud Security: Don’t Throw Caution to the Wind Jun 6 2013 7:00 pm UTC 45 mins
    What is the cost of your proprietary data falling into the wrong hands? Did you know that today, the number one security threat in the cloud is data breach? What are your plans to secure your information the cloud? While organizations are rapidly turning to the cloud to reduce costs, provide greater flexibility and quickly ramp up support of business needs, security still remains a top concern.

    As a leading provider of information security services, Dell and its partners can provide you with expert guidance and critical security controls to protect your infrastructure, applications and data. Join us for an informative discussion that will separate fact from fiction, and help you secure your information in the cloud.

    In this webinar, security practitioners will help you:
    - Discover technological and other tools to mitigate threats in the cloud
    - Understand the types and nature of security threats
    - Learn about Dell’s unique integrated approach to cloud security, leveraging SecureWorks and Trend Micro
  • Incident Response 2.0 - Triage, Containment, & Remediation for Evolving Threats Jun 6 2013 6:00 pm UTC 45 mins
    Colby Clark will present a rapid incident response methodology used by the FishNet Security Incident Management team utilizing a combination of best-of-breed solutions to rapidly facilitate all phases of an IR investigation of evolving threats. The methodology begins with identification from network indicators with NetWitness, triage and containment using FireAmp, and in-depth forensic investigations on system artifacts (memory, volatile data, and file system) using EnCase Enterprise.
  • Targeted Attacks 101 - Eight Incident Response Steps Jun 6 2013 5:00 pm UTC 45 mins
    Is your business safe from malware and targeted attacks? Sophisticated attacks now leverage social engineering techniques and malware to compromise those individuals already on the inside of your enterprise, and then target your data. This session covers the basics of how this continues to happen, despite more money than ever being spent on perimeter and endpoint defenses. We’ll present an eight step incident response model to help prevent, detect and respond to these attacks.
  • Incident Response Panel - Reimagining the Modern Enterprise Security Paradigm Jun 6 2013 4:00 pm UTC 55 mins
    Today's accepted wisdom is that there are only two types of organizations, those that have been breached and know it and those that have been breached and don't. With this new vision comes the realization that building perimeter defenses is no longer enough, but that remediation, situational awareness and fast response time are what separate well secured organizations from the rest.

    Join this panel as they discuss the transition to an incident response world and the important operational and philosophical battles that will define it - from the federal and commercial perspectives to using forensics for risk analysis and IT investment and the attribution debate.

    Panel:

    Tom Field, Vice President, Editorial, Information Security Media Group (moderator)
    Bill Hau, VP of FireEye Labs,
    Pete Allor, Steering Committee member of FIRST
    Vernon Habersetzer, IR Team Lead, Walmart
  • Lifecycle of a Breach – 6 Steps Toward Better Security Jun 6 2013 1:00 pm UTC 45 mins
    This webinar will review the methodology lifecycle of a breach at an organization and highlight best-practices and efficiencies that can help your organization learn from breaches and continually strengthen your security posture.
  • Threat Indicators: Telltale Signs You’ve Been Owned Jun 5 2013 6:00 pm UTC 45 mins
    Based on recent high-profile reports of attackers compromising victims long before the breach is discovered, many security professionals want to know: “Are we already compromised?”

    Ben Feinstein, Director of our Counter Threat Unit’s operations and development teams, will discuss threat indicators and the subtle traces of an attacker’s tradecraft and presence in your environment. Ben will share findings from helping organizations defend against targeted attacks, focusing on tactics, techniques and procedures exhibited by organized cybercriminals and APT. He will also discuss using threat indicators to learn about the adversary and show how vital this intelligence is to successful incident response.

    Key Topics:

    · Understanding threat indicators that suggest your organization may already be compromised

    · Inspecting networks and hosts for signs of compromise

    · Strategies for response when attacker presence is found
  • Why are Simple Deployment and Management Key to SMB Security? Jun 5 2013 5:00 pm UTC 60 mins
    Your business needs security solutions that are easy to live with and run on a daily basis. ESET has the best solution from this perspective. This webcast will highlight 2-3 specific atributes and focus the ease of management and implementation.
  • Detecting File Execution: What Runs but Never Walks Jun 5 2013 5:00 pm UTC 45 mins
    In this webinar, I will begin with a brief discussion of the different types of attackers, and show how all threat actors are not equal. Then, I will discuss four main ways attackers execute code in a Windows environment. Reviewing real cases of recent attacks, I will show how to detect file execution using static, dynamic, and advanced analysis techniques. I will show how to use artifacts such as the Windows registry, logs, prefetch files, and network data to determine whether an attacker executed files. Finally, there will be a discussion of tools used for forensic analysis, including free tools such as the ShimCacheParser and MANDIANT Redline.
  • Full Security Visibility For Effective Incident Response Jun 5 2013 4:00 pm UTC 45 mins
    Despite significant time and effort deploying multiple security solutions, incident responders know more than anyone that existing signature-based, “set it and forget it” security technologies have not stopped the advanced persistent threat. Signature- and rule-based technologies are easily evaded with today’s advanced targeted attacks, morphing malware and zero-day threats. Tools like FireEye’s Malware Analysis System are effective in dealing with zero-day malware, but being able to detect this threat does not mean complete resolution.

    In addition, sophisticated attackers employ social engineering or take advantage of misconfigurations in security technologies to breach networks – without using any malware at all. Incident responders need full visibility of everything that is going through the network to understand the nature of how a threat originated, see what attackers actually did to take control over the network, and to answer the questions of what they did after they compromised systems. This session will provide an overview of Big Data Security Intelligence and Analytics and how full security visibility can answer the toughest post-breach questions so you can quickly determine the full source, scope and material impact of an incident.
  • Top 10 Mistakes Incident Response Teams Make Jun 5 2013 3:00 pm UTC 45 mins
    When it comes to organizations experiencing some form of cyber-attack, the adage still rings true: it’s not a question of if but when. Advanced malware, zero-day exploits, and targeted advanced persistent threats (APTs) have kept organizations on their heels and searching for ways to protect themselves. Incident Response teams are being forced to re-examine their existing IT security defenses and attempt to stay ahead of the attack curve. Surprisingly, many incident response teams aren’t doing themselves any favors with practices they have implemented.

    Attend this webinar to learn the top 10 mistakes that Incident Response teams make and what you can do to make sure you aren’t making them yourselves.
  • Don’t Ask, Don’t Tell: The (In)Security of Vendor-Supplied Software May 30 2013 4:00 pm UTC 45 mins
    What vulnerabilities threaten the integrity of your software supply chain and data? Can your enterprise really influence software vendors to meet your most important security policies and remediate insecure software?

    Action is needed, and urgently. An alarming 62 percent of all applications fail to reach compliance on their first submission, according to a study recently conducted by Veracode, Enterprise Testing of the Software Supply Chain. While few enterprises now have formal third-party testing programs, those that do find they dramatically improve vendor compliance while meeting industry standards.

    Join this webcast with Chris Eng, Veracode's Vice President of Research, and you will learn:

    •How leading enterprises now test their software supply chains.
    •Analytics drawn from code-level analyses of thousands of third-party applications that support global enterprises.
  • Do You Know The Risks With Co-Employment? May 23 2013 2:00 pm UTC 45 mins
    For the IT employer utilizing contingent or contract worker(s) services there are best practices and considerations that need to be made in order to protect yourself and your employees.

    - Do you know how to discuss pay rates, increases or bonuses?
    - Do you know how to deal with full-time employment queries, how to properly deal with timecards or forms?
    - How do you deal with punctuality, attendance, dress code etc?
    - What do you do when you want to terminate or suspend a contingent worker?

    These are the common questions we receive and we will provide tangible tools and information that can help protect you as an employer.
  • 5 Essential Steps for SMB's to Build a Layered Security Solution. May 22 2013 5:00 pm UTC 60 mins
    Most SMB's use a single point product for each of the different perceived security threats. This has worked in the past, but a far better approach is layering multiple products in a stouter defense.
  • Today's Advanced Threats Require Next-Generation Protection May 22 2013 5:00 pm UTC 55 mins
    Are you using or considering a next-generation threat protection solution? Join this webcast and learn how you can multiply the value of your investment by integrating network and endpoint security.

    During this session you’ll learn best practices for protecting your network and your endpoints and servers from today's new breed of cyber attacks. You’ll also see firsthand how the integration of network and endpoint security solutions will help you:

    ・ Automatically confirm and prioritize alerts
    ・ Provide enterprise-wide visibility of infections to speed investigation
    ・ Drive remediation
    ・ Automatically analyze files from endpoints and servers
  • 2 Minutes on BrightTALK: Don't Compromise for Mobile Recorded: May 21 2013 2 mins
    "People are talking about doing security in the mobile space and I ask the following question: You have spent the last 13 years building up proper, compliant infrastructures inside your four walls. Now we're going mobile. Why should you implement any lesser degree of compliance in that portion of your infrastructure than you currently have?" Winn Schwartau, one of the world's top experts on security, privacy, infowar and cyber-terrorism, discusses the importance of mobile security and the implications it can have for your pre-existing infrastructure.
  • How To Simplify Your Data Center With Network Automation and Orchestration Recorded: May 21 2013 47 mins
    Join 3 network specialists as they cover:

    - the need for networks to evolve
    - reducing human latency
    - simplifying the network
    - simplifying operations
  • Securing the Agile Cloud: Automating Security and Compliance for IaaS Recorded: May 16 2013 45 mins
    Companies are eager to adopt infrastructure-as-a-service services in both public providers and private datacenters because of the business agility that IaaS enables. Full IT automation, self-service provisioning, and metered usage billing helps companies accelerate the development of their products and services, and improves organizational efficiency. Unfortunately, many companies are struggling to accelerate the most important parts of their business due to the challenges of securing these highly dynamic environments. In this talk Rand Wacker, VP of Products for CloudPassage will describe the challenges of security and compliance in a truly automated cloud and critical topics that you need to be aware of when planning to adopt cloud services in either public or private environments.
The latest trends and best practice advice from the leading experts
This channel features presentations by leading experts in the field of information security. From application, computer, network and Internet security to access control management, data privacy and other hot topics, you will walk away with practical advice for your strategic and tactical information security initiatives.
  • Upcoming webinars (37)
  • Recorded webinars (821)
  • Subscribers (33,487)
Channel RSS feed
Up Down

Embed in website or blog

Successfully added emails: 0
Remove all
  • Title: Preventing Intrusions by Insiders: A Game-Theoretic Approach
  • Live at: Jan 12 2010 3:00 pm
  • Presented by: Ioanna Kantzavelou, Lecturer Dept. of Informatics TEI of Athens
  • From:
Your email has been sent.
or close
You must be logged in to email this
OK