Sponzorji

FortinetFortinet protects the most valuable assets of some of the largest enterprise, service provider and government organizations across the globe. The company’s fast, secure and global cyber security solutions provide broad, high-performance protection against dynamic security threats while simplifying the IT infrastructure. They are strengthened by the industry’s highest level of threat research, intelligence and analytics. Unlike pure-play network security providers, Fortinet can solve organizations most important security challenges, whether in networked, application or mobile environments – be it virtualized/cloud or physical. More than 210,000 customers worldwide, including some of the largest and most complex organizations, trust Fortinet to protect their brands.

Vsebina predavanj

Martijn Duijm  – DDOS – Size isn’t everything

According to Verisign’s Distributed Denial of Service Trends Report Q4-2014 the average attack size has grown with 14% over Q3-2014 to 7.39Gbps in Q4-2014. 42% percent of the attacks where over 1Gbps, which means that, 58% of the attacks currently are below the 1Gbps. These variations in attacks need a new method of detection and blocking of attacks. Fortinet’s FortiDDOS device has been built from the ground up to block all kinds of DDOS attacks from below 1Mbps to 38Gbps per device. Martijn Duijm from Fortinet will explain how FortiDDos differs from most DDOS solutions and will help you block even the most sophisticated attacks to your environment.

Marco Gioanola – Ten years of DDoS attacks in the data of Arbor Networks’ Worldwide Security Report and ATLAS

Arbor Networks has been publishing its Worldwide Infrastructure Security Report since 2004; the tenth edition of the survey was 180 questions long and hundreds of organizations worldwide provided an invaluable amount of information about DDoS attacks and their overall approach to security. Arbor’s ATLAS is the largest global effort in sharing and analysis of Internet traffic trends, currently monitoring a peak of more than 100Tbps.

  • The presentation will describe the contents of the Security Report especially with respect to:
    the evolution in size and type of DDoS attacks in the last ten years;
  • the year 2014 in detail: attack vectors, mitigation techniques, level of preparedness of organizations.

Based on the evidence and experience from more than ten years of DDoS mitigation with major global ISPs, the following topics will then be discussed:

  • the do’s and don’ts of DDoS mitigation countermeasures;
  • the need for a multi-layer approach and what role the different stakeholders can play against DDoS attacks.

Jernej Porenta  – Pristopi k reševanju neželene elektronske pošte

Neželena elektronska pošta je po mnenju mnogih stvar preteklosti, a na žalost v praksi ni
tako. Pošiljatelji neželene pošte so namreč vedno korak pred tistimi, ki se trudimo
doseči pravilno razporejanje elektronske pošte. V predstavitvi bom predstavil, kako se s
tem ubadamo na Arnesu, kateri so pristopi, ki so se izkazali za uspešne in kaj lahko
naredite sami, da bo vaša elektronska pošta pravilno razvrščena.

Mitja Jenček  – Postopki in metode odbijanja DDoS napadov v praksi

Ponudniki se dnevno srečujemo incidenti , kot so DDOS napadi, ki predstavljajo resne grožnje za uporabnike, predvsem poslovnim uporabnikom lahko omenjeni incidenti povzročajo veliko škodo saj jim omejujejo poslovanje.
V predavanju bo predstavljen način kak se ponudniki borimo proti tovrstnim grožnjam in katere postopke uporabljamo v Telekomu Slovenije za preprečevanje tovrstnih DDOS napadov.

Mark Martinec  – Filtriranje e-pošte z Amavis in SpamAssassin

Kaj sta Amavis in SpamAssassin? Njuna umestitev v sistem e-pošte. Kratek pregled metod, ki jih Amavis in SpamAssassin uporabljata pri klasifikaciji sporočil. Avtentičnost in zasebnost pri prenosu sporočil (DKIM, DMARC, TLS/DANE). Dober glas seže v deveto vas (domain reputation). Podpora internacionalizaciji poštnih sporočil in naslovov (SMTPUTF8, IDNA). Novosti, ki jih prinašata SpamAssassin 3.4.1 in Amavis. Strukturirani dnevniški zapisi in iskanje po njih z Elasticsearch/Kibana.

Predavatelji

Martijn Duijm – Fortinet

Martijn_DuijmMartijn Duijm has been working in various positions in the security industry for 19 years, specializing in Application Security and DDoS solutions. In his current role as Director of Sales Engineering at Fortinet Inc., he is a senior advisor to corporate product management for three Advanced Technologies in the Fortinet portfolio: FortiWeb, FortiDB and FortiDDoS. Martijn frequently speaks on security issues at various conferences across the globe.

 

 

Marco Gioanola – Arbor Networks

Marco_GioanolaMarco Gioanola graduated in 1997 with a thesis on PGP and Public Key Criptography. He then worked as a consultant for major banks on Certificate Authority and Internet Banking projects. In 2000, he partecipated in the start up of one of the first Managed Security Services companies in Italy. In 2003 he followed the fist implementations of DDoS Detection and Mitigation solutions at major Italian Internet Service Providers. He joined Arbor Networks in 2006 and since then helped ISP and enterprise customers design and implement their anti-DDoS solutions in a large number of markets, from Italy to the Balkans, Greece, Turkey and the Middle East. Since 2013, he is Subject Matter Expert for Arbor Cloud, Arbor’s provider agnostic DDoS Mitigation service. He is currently assisting customers with anti-DDoS and anti-APT solutions as a Senior Consulting Engineer.

Jernej Porenta – Arnes

jernej_porenta

Jernej Porenta je diplomiral na Fakulteti za računalništvo in informatiko Univerze v
Ljubljani in na Arnesu skrbi za delovanje poštnih strežnikov, sistemov za označevanje
neželene elektronske pošte ter ostala opravila sistemskih administratorjev.

 

 

Mitja Jenček – Telekom Slovenije

Jenček_MitjaMitja Jenček je zaposlen na Telekomu Slovenije v Ljubljani v Sektorju za konvergentno jedrno omrežje.

V Telekomu Slovenije in prej v Siol-u je zadolžen za upravlja IP/MPLS hrbteničnega omrežja, sodeluje pri razvoju in implementaciji omrežnih rešitev znotraj skupine Telekoma Slovenije. Prosti čas pa posveča 15 mesečnemu sinu.

 

 

Mark Martinec – Institut Jožef Stefan

Diplomiral na Fakulteti za elektrotehniko, računalništvo in informatiko v Ljubljani. Na Institutu Jožef Stefan je sodeloval pri razvoju strojne in programske opreme na več projektih s področij računalniške grafike, CAD, stavljenja besedila. Na univerzi Cambridge
je sodeloval pri načrtovanju in preverjanju integriranih vezij za omrežje Cambridge ring. Zaposlen je na IJS v skupini za omrežno infrastrukturo kot sistemski inženir. Že od leta 1996 aktivno sodeluje v odprtokodnih projektih (ANU-News, NTP, …). Od leta 2002 posveča znaten del svojega časa razvoju programa Amavis za potrebe IJS in v dobrobit odprtokodne skupnosti. Je član upravnega odbora (PMC) projekta Apache SpamAssassin od leta 2008 in aktivni razvijalec na tem projektu

Agenda

 ProgramPredavateljVideo
15:30 - 16:00Registracija udeležencev
16:00 - 16:10Pozdravni nagovor organizatorja in glavnega sponzorja
16:10 - 16:40DDoS - size isn't everythingFortinet - Martijn Duijmvideo
16:40 - 17:10Ten years of DDoS attacks in the data of Arbor Networks’ Worldwide Security Report and ATLASArbor Networks - Marco Gioanolavideo
17:10 - 17:40Postopki in metode odbijanja DDoS napadov v praksiTelekom Slovenije - Mitja Jenčekvideo
17:40 - 18:05Minute za sponzorje
18:05 - 18:25Coffee Break
18:25 - 18:55Filtriranje e-pošte z Amavis in SpamAssassinMark Martinec - IJSvideo
18:55 - 19:25Pristopi k reševanju neželene elektronske pošteJernej Porenta - Arnesvideo

Programski odbor SINOG si pridružujejo pravico spremembe programa.

SINOG 1.6

Tematska delavnica o DDoS in anti-spam zaščiti

Kje: Velika predavalnica Instituta Jožefa Stefana, Jamova cesta 39, Ljubljana
Kdaj: 1. april 2015 ob 16h
Cena udeležbe: brezplačno
Omejitev števila udeležencev: 120 (v primeru prezasedenosti dvorane imajo prednost pri udeležbi sponzorji, člani SINOG foruma in člani Zavoda go6)

Tematska delavnica bo obravnavala DoS/DDoS napade in neželeno elektronsko pošto ter kako se jih ubranimo ali vsaj omilimo. Kot je mogoče razbrati iz letnega poročila slovenskega nacionalnega odzivnega centra za obravnavo incidentov s področja varnosti omrežij in informacij (SI-CERT), se število napadov onemogočanja storitev (DoS/DDoS) ter število neželene elektronske pošte vsako leto povečuje. Žrtve tovrstnih incidentov so tako operaterji, kot tudi končne stranke. Škoda, ki posledično nastane je finančna (izguba dohodka), seveda pa lahko pomembno vpliva na ugled podjetja. Tokratna delavnica bo poskušala s prispevki različnih strokovnjakov s področja varnosti osvetliti motive, mehanizme in načine tovrstnih incidentov in kako se jih ubranijo v praksi.