BSides Huntsville & SDN (WITH Paul Coggin)
ADVANCED PERSISTENT SECURITY PODCAST
January 30, 2017
If you enjoy this podcast, be sure to give us a 5 Star Review and “Love Us” on iTunes; Like us on Google Play, Stitcher, Sound Cloud, Spreaker, and YouTube.
NOTE: The opinions expressed in this podcast are ours alone and do not reflect those of our employers
BSides Huntsville & SDN (WITH Paul Coggin)
Joe introduces Paul and we discuss his career thus far. In terms of topics, we evade the news again and decide to talk about IOT – the Internet of Things. Paul brings a unique perspective since he comes from a background that is heavily rooted in networking. He likens it to ICS/SCADA and jokingly endorses it for our job security. Paul talks about the role that endpoints will play in the IOT environment.
Paul introduces us to a concept called “Fog Computing.” He then provides his perspective on the application of Fog Computing. He then describes VPT or Vendor Persistent Threat, which is when proprietary products may have backdoors or maintenance hooks for either data or support purposes. We talk about the impact on supply chain security from the networking and IOT perspectives.
Paul tells us that BSides Hunstville will be February 4, 2017 at the Dynetics Solutions Complex facility. The event features 16 speakers on both the local and the global levels. There are 2 tracks for the event. Adrian Crenshaw (Iron Geek) will be recording the talks, providing lock picking equipment, and co-keynoting. By attending, you’ll get all the Krispy Kreme doughnuts and Papa John’s Pizza that you can handle.
The BSides Huntsville event is open to everyone, but if you are planning on attending and NOT A US CITIZEN, please contact the organizers to complete the proper documentation. Talks range from malware, threat intelligence, to physical security and the dark net. Paul tells us that if you’re looking for a new job, bring your resume and/or business cards and to expect to network at the event. Joe talks about the benefits of an employee attending conferences like BSides and the value it adds to organizations.
We transition to talk about Software Defined Networking (SDN). Paul calls this the Network Apocalypse or Netpocalypse. He tells us about products like VMware NSX. Paul goes on to talk about ONOS (Open Networking Operating System) and OpenDaylight as controllers then explains how the virtualization effort in the controller will direct the routing equipment such as switches and routers as to how to operate.
Paul talks about the disruptive nature (in the market perspective; not availability) of SDN and the need for networking professionals to get up to speed to maintain relevance. We talk about using SDN and the cloud to virtualize the networking and use the cloud for CP/BCP/DRP/COOP.
Paul Coggin is an information Security Engineer. His expertise includes tactical, service provider and ICS\SCADA network infrastructure attacks and defenses as well as large complex network design and implementation. His experience includes leading network architecture reviews, vulnerability analysis and penetration testing engagements for critical infrastructure and tactical networks.
ABOUT BSides Huntsville
Software Defined Networking (SDN) Resources
Northbound Networks Zodiac Physical Controller
Software Defined Wide Area Network (SD-WAN) definitions
Open Networking Foundation
Northbound Networks YouTube channel
TechNet article about Network Controllers
JOE’S Second BLOG ON CISOCAST
JOE’S Social Engineering BLOG ON Black Hills Information Security
JOE’S AlienVault Blog about Insider Threat
JOE’S Sword & Shield BLOG Post
JOE’S First BLOG ON CISOCast
Joe’s Blog on Jenny Radcliffe’s Deception Chronicle
Joe’s Dyn DDOS Blog on Tripwire:
Joe’s Ranking in the AlienVault Top Blogs of 2016:
PASSWORD BLOG LINKS:
WI-FI BLOG LINK:
JOE’S BLOG ON ITSP:
Joe’s Blog on Tripwire:
Joe’s Blogs on Sword & Shield Enterprise Security’s site:
Joe’s Work with WATE 6 News in Knoxville, TN:
Thanks for stopping by and checking out our podcast. We would appreciate if you could subscribe (assuming you like what you hear; we think you will). This is meant to be informative and to provide value to anyone who listens – regardless of their knowledge and/or understanding of IT/Cybersecurity. To learn more about us, check out our “About Us” page.