 |
 |
 |
|
 |
||
|
||
|
 |
|
|
|
SIG^2 Event: Remote Server Management using Dynamic Port Knocking and Forwarding & Updates from (ISC)2
Presentation 1: Straight from G-TEC Lab - Remote Server Management using Dynamic Port Knocking and Forwarding Presentation 1: Port Knocking and Forwarding Photos Photos taken during the event available here! Presentation 1 Title:Remote Server Management using Dynamic Port Knocking and Forwarding Presenter: Ching Tim Meng, CISA, CISSP Tan Chew Keong Abstract Port knocking is a technique that can be used to hide services that are running on a hardened server. This is achieved by not opening the service port until a correct sequence of "knock" packets are received by the server. There are currently many implementations of port knocking and most of them require the client to send a fixed pre-defined sequence of port knocks to the server. The problem with this approach is that once the adversary got knowledge of the knock sequence, it would be trivial for him to replay the sequence in order to gain access to the service port. In this paper, we present the implementation of a port knocking technique that does not require the obscurity of the port-knock sequence. Our approach does not require the clients to send a fixed pre-defined sequence of port knocks to the server. Instead, the port knocking sequence is dynamic and is determined only when the client needs the server to open a connection port. Full paper at: http://www.security.org.sg/code/portknock1.html Biodata of speakers Ching Tim Meng, CISA, CISSP Tim Meng has been a security professional for the past 7 seven years. His experience in the information security industry includes conducting network security assessments, security architecture review, information security risk management and conducting advanced network security courses. Previously, he has provided IT security consulting advice for government bodies, multi-national companies, financial institutions and listed companies. Currently he is involved in an information security management position in a financial institution. Tim Meng holds the title of CISSP and CISA, and is a qualified BS7799 auditor. He is currently a member of Network Security Working Group under the Security and Privacy Technical Committee of Singapore's Information Technology Standards Committee. Tan Chew Keong Chew Keong is a consultant working with the local telecommunications authority. He is also the Vice-President of SIG2. Chew Keong leads the SIG2's G-TEC lab, the first independent security test lab in Singapore and possibly Asia, set up by enthusiasts for enthusiasts. Using the lab, he pursues his interest in reverse engineering, exploit code development, rootkit analysis, device driver coding and web application testing with his fellow enthusiasts. Chew Keong holds a Bachelor's Degree in Computer Science from the National University of Singapore and a Master's Degree in Computer Networks from the University of Essex (UK). Presentation 2 Title:Updates from (ISC)2 Presenter: Yoong Ee Chuan, CISA, CISSP Agenda a) (ISC)2 - About Us b) Trust - The Ultimate Firewall c) Professional Certifications - The Gold Standards d) Career Path - Cradle-to-Grave for INFOSEC Professionals e) CISSPs/SSCPs - Around the World f) Next Steps Acknowledgements Please note that members who are SSCP/CISSP can accrue CPE credits by attending this event. Created: 20/5/2004 webmaster@security.org.sg |
|
