Information security threats to organisations have changed completely over the last decade, due to the complexity and dynamic nature of infrastructures and attacks. Successful attacks cost society billions a year, impacting vital services and the economy. Examples include StuxNet, using infected USB sticks to sabotage nuclear plants, and the DigiNotar attack, using fake digital certificates to spy on website traffic. New attacks cleverly exploit multiple organisational vulnerabilities, involving physical security and human behaviour.
Defenders need to make rapid decisions regarding which attacks to block, as both infrastructure and attacker knowledge change rapidly. Current risk management methods provide descriptive tools like attack trees for assessing threats by systematic brainstorming.
Attack opportunities will be identified and prevented only if people can conceive them. In today’s dynamic attack landscape, this process is too slow and exceeds the limits of human imaginative capability. Emerging security risks demand tool support to predict, prioritise, and prevent complex attacks systematically. The 13.5 MEUR TREsPASS project will make this possible, by building an “attack navigator”. This navigator analyses which attack opportunities are possible, which of them are the most urgent, and which countermeasures are most effective. In this presentation, I will discuss information security risk management, important challenges, and new solutions based on the attack navigator concept.
- Date: 7th November, 4.30pm
- Venue: Technische Universität Wien, HS 18 Czuber Hörsaal (2nd Floor), Karlsplatz 13, 1040 Vienna
Please register by sending an E-mail to cybersecurity-lectures@ait.ac.at or use the registration form <link research-services research-services-safety-security ict-security cybersecurity-lecture-series _blank external-link-new-window external link in new>here.
- <link uploads media invitation_brochure_pieters_en.pdf _blank external-link-new-window external link in new>For further information please download our invitations brochure!