[February 2017] IPv6, The Pathway to Improved IT and IoT Security, Joe Klein, CTO Disrupt6

Presented by Joe Klein, CTO Disrupt6

Thursday, February 16, 2017

5:30 PM – Networking and Dinner

6:15 PM – The ISSA-NOVA Program

Joe Klein, CISSP – Fellow for the IPv6 Forum - CTO Disrupt6

JoeKlein-PhotoA common business theme is “Technologies are adopted when a business justification exists”. Some technologies get adopted quickly, while others must mature before they are adopted. The latter is the case with IPv6. Since 1997, this replacement network protocol for the aging IPv4 network standard has gone through four generations. Each has resulted in a foundationally more stable and secure communications standard. IPv6 is now ready to take on the challenges of the next generation pervasive computing devices, the Internet of Things (IoT).

The goal of this presentation is not to teach you about the technology, although we will hit on some highlights. Instead, it is a business and security case study on how to use the change to benefit the organization’s ability to receive better returns on future changes, along with greatly improving the cyber security defense posture.

We begin by discussing real case studies of large early adopters who reduced capital and operational expenses while obtaining unexpected benefits which strengthened their individual organizational missions. Next, we jump into describing specific security changes which result in better meeting compliance, continuous monitoring, SANS top 20 controls and more. The goal of this section is to discuss how to increase the cost to the attackers while reducing the costs to the defenders. Something we as an industry have not seen for many years.

The next section is focused on “lessons learned” when adding IPv6 to your security defenses including your security operations center (SOC).

Finally, we will introduce some of the advanced research our team is developing to provide the ability to attribute attackers.

——

Joe Klein, a 30-year veteran of the IT and IA industry. He has extensive experience in DoD, US Government, and commercial sectors, focusing on information assurance, network security, and IPv6. Mr. Klein is often requested to speak at professional security venues and routinely participates in high-level government working groups as an expert on the secure implementation of technologies.

He is the Chief Technology Officer for DISRUPT6, a MACH37 cybersecurity accelerator graduate focused on solving security problems with advanced protocols, analytics, and machine learning.

As an active member of the IPv6 Forum and the North American IPv6 Task Force, he has provided support and feedback on IPv6 Attacks and Defenses and served as CyberSecurity SME. He has also spoken at BlackHat, DefCon, NSA ReBl, Toorcon, SECTOR, DISA FSO Security Days, SANS, Google IPv6 Conference, Advanced IPv6 Security Conference, HacKid and many others.

Over the last seven years, Mr. Klein wrote and taught an “IPv6 Hacking and Defending” class to DARPA, Missile Defense, NSA, Cisco, NIST and AFIO. In addition, he worked with NSA, DISA, NIST and the IC community to write “best security practices” for IPv6 enabled networks, along with testing and validating these controls.

Location

Verizon – Ashburn Campus

22001 Loudoun County Parkway

Ashburn, VA 20147

Registration: http://tinyurl.com/issa-nova-17feb16

Alternate at http://preview.tinyurl.com/issa-nova-17feb16

For registration info contact Saravanan Ramachari at: vp_programs@issa-nova.org

ISSA-NOVA Officers

President: John von Ruden

Vice Presidents: Karen Frederick, Rhonda Farrell, Cathy Hogendobler, Saravanan Ramachari, Houda Abdelghani, Bud Roth, Constantinos Doskas, Raymond Stamps, Raja Medicherla

Sponsored By: The ISSA Northern Virginia (ISSA-NOVA) Chapter of ISSA International