LASCON 2017 has ended
View analytic
Thursday, October 26 • 1:00pm - 2:00pm
Tangled Web: Defense in Deception

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
"All warfare is based on deception. Hence when able to attack, we must seem unable; when using our force, we must seem inactive..." Sun Tsu

Our adversaries are skilled in deception -- we as defenders must become skilled as well. This talk will provide information to defenders on the importance of deception as part of our defense in depth strategy.

Why should the Red Team have all the fun? Let's explore the tools, techniques, and processes that Blue Team can utilize to detect, deceive, detour, confound, confuse, and corral our attackers.

Topics we will discuss will include the goals of deception from the perspective of both the attacker and defender. Defenders will learn the elements, and processes needed to plan, prepare, execute, and monitor effective deception. We will discuss the types of deception techniques that are effective and how they translate into actual web application capabilities. You will learn how to identify and respond to various types of attackers. Finally, we will walk through an example of a deceptive web application that will detect our attacker and sideline them in defense of our web application.

avatar for Herb Todd

Herb Todd

Security Analyst
Electronic warfare veteran of the US Navy, I have been in IT for over 30 years -- 20 years as a developer and 10 in application security. I work for a Fortune 50 company on the Security Architecture team focused on Emerging Technology and Innovation. Previous security roles include... Read More →

Thursday October 26, 2017 1:00pm - 2:00pm

Attendees (17)