April 25-29, 2016

Event Details

Please note: All times listed below are in Central Time Zone

Using Open Source Security Architecture to Defend against Targeted Attacks

A network IPS can effectively defend your OpenStack cloud against targeted attacks, even at large scale, once enabled as a virtual network function (VNF).

Traditional security approaches in OpenStack, such as security groups and FWaaS, lack flexibility and manageability. These solutions also do not provide sophisticated active responses like running defensive scripts in case of attacks, and are not effective in protecting big enterprise clouds against sophisticated cyber attacks.

A network IPS delivered through Tap-as-a-Service and vRouter (enabled by the Fuel Contrail plugin) as a forwarding plane can identify targeted attacks by monitoring and analyzing east-west traffic.

Moreover, we extend the architecture with an open source malware sandbox (e.g. Cuckoo or PyBox) as an IPS back end to identify targeted attacks (e.g. CloudAtlas and Minidionis APTs), and help an incident response team with a forensic investigation.

We will demonstrate features and discuss security best practices.

What can I expect to learn?

Attendees will learn how to:

  • Use the Fuel Contrail plugin to enable SDN on top of OpenStack
  • Enable IPS as a VNF in OpenStack
  • Extend your security protection by enabling a malware sandbox
  • Detect targeted attacks with IPS and a malware sandbox
Tuesday, April 26, 5:30pm-6:10pm (10:30pm - 11:10pm UTC)
Difficulty Level: Intermediate
CEO, NioGuard Security Lab
Alexander is a founder and CEO of NioGuard Security Lab, which delivers vendor unlocked security solutions against targeted attacks and ransomware. He has 10+ years’ experience in the antivirus industry providing services to Kaspersky Lab, Lavasoft, Samsung, Mirantis, and Acronis. Alexander is also a university lecturer developing new courses for EU universities, giving lectures that... FULL PROFILE
Principal Software Engineer, Red Hat
Dan Lambright is a principal software engineer at Red Hat. By day he helps build the gluster distributed storage system, and by night he enjoys teaching System Administration and other courses as an adjunct professor at the University of Massachusetts at Lowell. FULL PROFILE