The Dutch
Security Cluster
 
 
The Dutch
Security Cluster

Gratis seminar - Reliable infiltration detection by packet tagging

25
Jan
Date:
25 January 2018
Time:
14:00 - 16:00 hrs
Location:
Maanplein 55, Den Haag
Organised by:
KPN

Het maandelijkse gratis te bezoeken Guest Hacker Program van KPN komt terug in 2018! Met als eerst spreker op 25 januari Ben Gras, PhD student aan de Vrije Universiteit. Ben zal spreken over 'Betrouwbare infiltratiedetectie door packet tagging'. Zorg dat je je aanmeldt via guesthackerprogram@kpn.com

Bio spreker:
Ben is a PhD student in the systems security research group of prof. Herbert Bos of the VU University in Amsterdam, working on software reliability, defensive research projects, and most recently, offensive research, most noticeably publishing on making cross-VM Rowhammer exploitation reliable and a microarchitectural MMU cache side channel attack. He is pursuing a PhD in mischief there. This work was developed during a 6 months internship with Cisco in Knoxville, TN, with their security research, evaluation and forensics group.

Samenvatting:
Reliable router malware detection. Infrastructure compromise (i.e. hacking into routers and switches) is the purview of very advanced attackers, commonly assumed to be Advanced Persistent Threat (APT) groups. These are frequently cyber-capability units of military or intelligence branches of nation states governments. As recently leaked documents show, NSA spends a significant amount of resources to be able to intercept traffic, and implanting switches and routers is one of the strategies.

We propose a cryptographic tagging based system that can reliably detect malware packets originating from a router (after router compromise), without any cooperation (i.e. trust) from the possibly-compromised devices themselves. We evaluate the classification reliability and performance overhead in the lab.

As a side effect of doing the lab evaluation of this talk at Cisco, I was able to access real malware collected in the field from customers' routers memory, and we did significant binary analysis on one of the samples. This work also includes deep technical details of cryptographic properties and packet processing mechanics and capabilities of one of the malware samples. I'm not allowed to speculate which threat actor this was, but from context we can infer this is a "Very advanced adversary" - some of the fingerprints one of them is known to leave are public knowledge, so that adds some excitement to this talk - this malware was not supposed to be discovered yet we can talk about a lot of the details.

More events

20-21
Feb

Conference ‘Data for Peace and Security'

location:
The Hague
organised by:
The Netherlands Ministry of Foreign Affairs
HSD event
23-28
Feb

Economic Mission Cybersecurity to the RSA Conference

location:
San Francisco
organised by:
Netherlands Enterprise Agency (RVO), Consulate General San Francisco
HSD event
24-28
Feb

Holland Pavilion @ MWC Barcelona 2020

location:
Barcelona
organised by:
Enterprise Summit
HSD event
03
Mar

Themamiddag Bewustwording Informatiebeveiliging

location:
Centraal Nederland, rondom Utrecht. Exacte locatie volgt na inschrijving.
organised by:
BeOne Development
HSD event
04
Mar

Webinar: Practical Guide to Vulnerability Testing

location:
Online
organised by:
CyNation
HSD event
05
Mar

HSD Café: CISOs and Cybersecurity Incidents

location:
HSD Campus, 7th floor
organised by:
HSD Office
HSD event
05
Mar

Hoe Helpt Nieuw Talent met Fraudepreventie?

location:
Amsterdam, La Guardiaweg 94-114
organised by:
UWV
HSD event
11
Mar

Security Bootcamp 2020

location:
Van Nelle Fabriek, Rotterdam
organised by:
SecureLink Nederland B.V.
HSD event
12-13
Mar

b2fair @ ICT Spring Europe

location:
European Convention Center, 4 Place de l'Europe, 1499 Luxembourg, Luxemburg
organised by:
The Enterprise Europe Network-Luxembourg of the Luxembourg Chamber of Commerce
HSD event
12
Mar

Informatiebijeenkomst Veilige samenleving in Horizon 2020

location:
Erasmus MC, Dr Molewaterplein 40, 3015 GD Rotterdam
organised by:
Rijksdienst voor Ondernemend Nederland, Erasmus MC
HSD event
16-19
Mar

Conferentie Nederland Digitaal

location:
Groningen
organised by:
Nederlandse Organisatie voor Wetenschappelijk Onderzoek (NWO), Smart Industry, ministerie van Economische Zaken en Klimaat
HSD event
17-18
Mar

ICT.OPEN2020

location:
Martiniplaza, Groningen
organised by:
NWO, IPN
HSD event
17
Mar

Symposium E-Discovery

location:
Hogeschool Leiden Zernikedreef 11, 2333 CK, Leiden
organised by:
Hogeschool Leiden
HSD event
17
Mar

Ondermijningsdag 2020

location:
Antropia, Cultuur- en Congrescentrum, Hoofdstraat 8, Driebergen-Rijsenburg
organised by:
Hekkelman
HSD event
19
Mar

Symposium Cyber Resilience

location:
De Haagse Hogeschool, Johanna Westerdijkplein 75, 2501 EH Den Haag
organised by:
De Haagse Hogeschool
HSD event
23
Mar

Cybersecurity Recruitment Seminar 2020

location:
HSD Campus
organised by:
Cyber Security Academy, ROC Mondriaan, NCOI/Computrain, Security Academy NL, HSD
HSD event
23
Mar

Cybersecurity Recruitment Seminar 2020

location:
HSD Campus
organised by:
Cyber Security Academy, ROC Mondriaan, NCOI/Computrain, Security Academy NL, HSD
HSD event
24-25
Mar

CyberTech Africa

location:
organised by:
CyberTech
HSD event
24
Mar

Digital Experience Nordics

location:
Stockholm
organised by:
DataExpert BV
HSD event
25-26
Mar

Insider Risk Management Public & Private Sector - Europe Masterclass 2020

location:
organised by:
Signpost Six
HSD event
26
Mar

Symposium Grip op Crisis

location:
Hotel Rest. Oud London Zeist Netherlands
organised by:
SVDC advies in crisisbeheersing
HSD event
31
Mar

Cybersecurity en partnerships: "vloek en zegen"

location:
InnStyle, Maarsen
organised by:
Cybersprint
HSD event
01
Apr

Digital Experience Belgium

location:
Van der Valk Brussel Airport
organised by:
DataExpert BV
HSD event
01-03
Apr

ASIS Europe 2020 - From Risk to Resilience

location:
Prague, Czech Republic
organised by:
ASIS International
HSD event
07
Apr

HSD Café: OT Security

location:
HSD Campus, 7th floor
organised by:
HSD Office
HSD event
17
Apr

Finals Blue Tulip Awards 2020

location:
Taets Art and Event Park, Zaandam
organised by:
Accenture
HSD event
20
Apr

Hannover Messe 2020 | Holland High Tech House

location:
Hannover, Duitsland
organised by:
FME
HSD event
27-01
Apr-May

Hardwear.io Security Training

location:
Biltmore Hotel and Suits, Santa Clara, CA, USA
organised by:
Hardwear.io
HSD event
29-30
Apr

Mobile 360 - Security for 5G

location:
The Hague Conference Centre, New Babylon
organised by:
GSMA
HSD event
27-01
Apr-May

Hardwear.io Security Training

location:
Biltmore Hotel and Suits, Santa Clara, CA, USA
organised by:
Hardwear.io
HSD event
13-14
May

ESCO Cyber Investor Days

location:
Brussels, Belgium
organised by:
ECSO and Digital Accelerator
HSD event
19
May

Resilience and Adaptivity in Professional Education to Prepare for a Changing Security Environment

location:
Brasserskade, The Hague
organised by:
Instituut Defensie Leergangen (Netherlands Defence College)
HSD event
27
May

Jaarcongres 2020: Maak Haaglanden de innovatiefste regio

location:
World Horti Center Naaldwijk
organised by:
Innovatief Haaglanden
HSD event
02-04
Jun

Info Security Europe

location:
Olympia London
organised by:
Info Security Europe
HSD event
25
Jun

HSD Café: MKB Special - Boost Your Partnership

location:
HSD Campus, 7th floor
organised by:
HSD Office
HSD event
23-28
Aug

International Cyber Security Summer School 2020

location:
organised by:
NATO C&I Agency, Europol,EY, Leiden University and HSD
HSD event
23-24
Sep

CyberTech Europe, Rome

location:
organised by:
CyberTech
HSD event
28
Sep

Hack The Hague 2020: Save the Date

location:
City Hall, Spui 70, 2511 BT The Hague
organised by:
City of The Hague and Cybersprint
HSD event
29-30
Sep

One Conference 2020: Save the Date

location:
World Forum, The Hague
organised by:
Ministry of Economic Affairs and Climate Policy, Ministry of Justice and Security, National Cyber Security Centre
HSD event
06-08
Oct

IT-SA 2020

location:
Exhibition Centre Nuremberg
organised by:
HSD event
06-08
Oct

Safety & Security Asia (SSA) 2020

location:
Singapore
organised by:
CEMS - Conference & Exhibition Management Services Ptr Ltd
HSD event
07-08
Oct

Digital Experience 2020 (NL)

location:
Van der Valk Hotel Utrecht
organised by:
DataExpert
HSD event
20-22
Oct

WorldPensionSummit 2020

location:
Louwman Museum, The Hague
organised by:
Pensions & Investments
HSD event