Welcome!

@CloudExpo Authors: Nishanth Kadiyala, Liz McMillan, Elizabeth White, Yeshim Deniz, Chris Schwarz

Related Topics: @CloudExpo, Microservices Expo, Cloud Security

@CloudExpo: Article

RSA Conference 2011: Serious Keynotes: DoD & CyberCommand

CyberCommand, DoD and emerging threats

One thing you can say about RSA is that they have some serious people for their keynotes. Last year, Secretary of the Department of Homeland Security Janet Napolitano spoke. Earlier this week, Deputy Secretary of Defense, William J Lynn III gave a talk on the his view of the evolution of the cyber-threats. On Thursday, the NSA head and commander of the US Military’s CyberCommand talked about how cyber security is a “team sport.”

Deputy Secretary of Defense, William J Lynn III
Sec. Lynn’s talk was what you would expect to get from a Deputy Secretary of Defense. He was serious, spoke clearly and in stentorian tones. His presentation was formal and structured, and laid out the case for an expanded government presence in Cyberspace. Lynn’s first presented his threat model, which is a prioritized list of threats from least to greatest.

  1. Infiltration of our networks: This is the kind of hacking we all think of.
  2. Disruption of our networks. This includes DDOS attacks, of the kind that have been recently attributed to the group Anonymous.
  3. Destruction of our networks: This include actions which could lead to destruction of physical property and loss of life. Lynn’s argument is that we need to be prepared for this new threat.

In response to these threats Lynn mentioned that there is a new government strategy coming out shortly called Cyber 3.0. That strategy includes 5 pillars:

  1. The Defense Department should recognize that “Cyber” as Lynn said, is a threat domain as serious as air, land and sea.
  2. Network need to be equipped with “Active Defensives”, which sounds like anti-virus software on a much larger domain.
  3. The DoD needs to Ensure that critical infrastructure is protected. This includes government and financial systems,  and physical assets like the power grid.
  4. Building collective cyber-defenses with our allies. This is a marked change from the previous administrations go-it-alone approach.
  5. Marshal our technical and human resources to remain pre-eminent in in cyberspace. This included the introduction of a program akin to the cyber-security equivalent of the Civilian Conservation Corp from the 1930’s.

There was a strong suggestion that the government would be strengthening its cyber security in the coming years. However, what was notably absent from Lynn’s talk was any discussion of civil liberties.

General Keith B. Alexander, U.S. Cyber Command and National Security Agency
The opening keynote for Thursday was from General Keith B. Alexander, U.S. Cyber Command and National Security Agency/Central Security Service. He has spoken at RSA before, when he was merely the NSA Director. His talk was entitled “Active Defense and Concepts on a Secure Zone.” Many of his points were echoed in Lynn’s talk. What was different was the tone, and the substance as well.

First off, this is an Army General who has humor. He made a few wisecracks that were well received by the audience of an estimated 7000 people. Second, he believes that the US does not have to choose between Civil Liberties or

His role as head of CyberCommand is to secure the DoD networks. “We are scanned 1 Million times a day and get attacked 20,000 times a day.” Clearly, this is a big job.

Like Lyons he talked about making “cyberspace” a military theatre. Like Lynn, he talked about having “Active Defenses”, which means dynamic and adaptable defenses. He made a reference to the French attempt at thwarting German invsion in WWI via the Maginot line. This was ultimately ineffective, since Germany attacked via Belgium to the north. The point being made is that we need to adapt to an ever changing foe.

What was impressive about this talk was the General’s candor. He said “We do not have situational awareness” of what is on the Internet. This seemed to be a plea to the audience to come up with something.

Also a unique part of the speech was his call to help our schools do better in STEM: Science, Technology, Engineering and Math. That the military would make a better case of this than the civilian leader was an interesting contrast.

With all the General’s talk of cyber-security as a team sport, it could almost lead one to believe that public-private partnership in this area could be successful.

More Stories By Bill Roth

Bill Roth is a Silicon Valley veteran with over 20 years in the industry. He has played numerous product marketing, product management and engineering roles at companies like BEA, Sun, Morgan Stanley, and EBay Enterprise. He was recently named one of the World's 30 Most Influential Cloud Bloggers.

@CloudExpo Stories
Join us at Cloud Expo June 6-8 to find out how to securely connect your cloud app to any cloud or on-premises data source – without complex firewall changes. More users are demanding access to on-premises data from their cloud applications. It’s no longer a “nice-to-have” but an important differentiator that drives competitive advantages. It’s the new “must have” in the hybrid era. Users want capabilities that give them a unified view of the data to get closer to customers and grow business. The...
DevOps at Cloud Expo, taking place October 31 - November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA, is co-located with 21st Cloud Expo and will feature technical sessions from a rock star conference faculty and the leading industry players in the world. The widespread success of cloud computing is driving the DevOps revolution in enterprise IT. Now as never before, development teams must communicate and collaborate in a dynamic, 24/7/365 environment. There is no time to w...
In this presentation, Striim CTO and founder Steve Wilkes will discuss practical strategies for counteracting fraud and cyberattacks by leveraging real-time streaming analytics. In his session at @ThingsExpo, Steve Wilkes, Founder and Chief Technology Officer at Striim, will provide a detailed look into leveraging streaming data management to correlate events in real time, and identify potential breaches across IoT and non-IoT systems throughout the enterprise. Strategies for processing massive ...
The current age of digital transformation means that IT organizations must adapt their toolset to cover all digital experiences, beyond just the end users’. Today’s businesses can no longer focus solely on the digital interactions they manage with employees or customers; they must now contend with non-traditional factors. Whether it's the power of brand to make or break a company, the need to monitor across all locations 24/7, or the ability to proactively resolve issues, companies must adapt to...
SYS-CON Events announced today that Cloud Academy named "Bronze Sponsor" of 21st International Cloud Expo which will take place October 31 - November 2, 2017 at the Santa Clara Convention Center in Santa Clara, CA. Cloud Academy is the industry’s most innovative, vendor-neutral cloud technology training platform. Cloud Academy provides continuous learning solutions for individuals and enterprise teams for Amazon Web Services, Microsoft Azure, Google Cloud Platform, and the most popular cloud com...
Cloud Expo, Inc. has announced today that Andi Mann and Aruna Ravichandran have been named Co-Chairs of @DevOpsSummit at Cloud Expo Silicon Valley which will take place Oct. 31-Nov. 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. "DevOps is at the intersection of technology and business-optimizing tools, organizations and processes to bring measurable improvements in productivity and profitability," said Aruna Ravichandran, vice president, DevOps product and solutions marketing...
In his session at Cloud Expo, Alan Winters, an entertainment executive/TV producer turned serial entrepreneur, presented a success story of an entrepreneur who has both suffered through and benefited from offshore development across multiple businesses: The smart choice, or how to select the right offshore development partner Warning signs, or how to minimize chances of making the wrong choice Collaboration, or how to establish the most effective work processes Budget control, or how to ma...
SYS-CON Events announced today that Enzu will exhibit at SYS-CON's 21st Int\ernational Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. Enzu’s mission is to be the leading provider of enterprise cloud solutions worldwide. Enzu enables online businesses to use its IT infrastructure to their competitive advantage. By offering a suite of proven hosting and management services, Enzu wants companies to focus on the core of their ...
With major technology companies and startups seriously embracing Cloud strategies, now is the perfect time to attend 21st Cloud Expo October 31 - November 2, 2017, at the Santa Clara Convention Center, CA, and June 12-14, 2018, at the Javits Center in New York City, NY, and learn what is going on, contribute to the discussions, and ensure that your enterprise is on the right path to Digital Transformation.
SYS-CON Events announced today that IBM has been named “Diamond Sponsor” of SYS-CON's 21st Cloud Expo, which will take place on October 31 through November 2nd 2017 at the Santa Clara Convention Center in Santa Clara, California.
We build IoT infrastructure products - when you have to integrate different devices, different systems and cloud you have to build an application to do that but we eliminate the need to build an application. Our products can integrate any device, any system, any cloud regardless of protocol," explained Peter Jung, Chief Product Officer at Pulzze Systems, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA
SYS-CON Events announced today that CA Technologies has been named "Platinum Sponsor" of SYS-CON's 21st International Cloud Expo®, which will take place October 31-November 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA. CA Technologies helps customers succeed in a future where every business - from apparel to energy - is being rewritten by software. From planning to development to management to security, CA creates software that fuels transformation for companies in the applic...
Amazon started as an online bookseller 20 years ago. Since then, it has evolved into a technology juggernaut that has disrupted multiple markets and industries and touches many aspects of our lives. It is a relentless technology and business model innovator driving disruption throughout numerous ecosystems. Amazon’s AWS revenues alone are approaching $16B a year making it one of the largest IT companies in the world. With dominant offerings in Cloud, IoT, eCommerce, Big Data, AI, Digital Assista...
Multiple data types are pouring into IoT deployments. Data is coming in small packages as well as enormous files and data streams of many sizes. Widespread use of mobile devices adds to the total. In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, panelists looked at the tools and environments that are being put to use in IoT deployments, as well as the team skills a modern enterprise IT shop needs to keep things running, get a handle on all this data, and deliver...
In his session at @ThingsExpo, Eric Lachapelle, CEO of the Professional Evaluation and Certification Board (PECB), provided an overview of various initiatives to certify the security of connected devices and future trends in ensuring public trust of IoT. Eric Lachapelle is the Chief Executive Officer of the Professional Evaluation and Certification Board (PECB), an international certification body. His role is to help companies and individuals to achieve professional, accredited and worldwide re...
Both SaaS vendors and SaaS buyers are going “all-in” to hyperscale IaaS platforms such as AWS, which is disrupting the SaaS value proposition. Why should the enterprise SaaS consumer pay for the SaaS service if their data is resident in adjacent AWS S3 buckets? If both SaaS sellers and buyers are using the same cloud tools, automation and pay-per-transaction model offered by IaaS platforms, then why not host the “shrink-wrapped” software in the customers’ cloud? Further, serverless computing, cl...
You know you need the cloud, but you’re hesitant to simply dump everything at Amazon since you know that not all workloads are suitable for cloud. You know that you want the kind of ease of use and scalability that you get with public cloud, but your applications are architected in a way that makes the public cloud a non-starter. You’re looking at private cloud solutions based on hyperconverged infrastructure, but you’re concerned with the limits inherent in those technologies.
Wooed by the promise of faster innovation, lower TCO, and greater agility, businesses of every shape and size have embraced the cloud at every layer of the IT stack – from apps to file sharing to infrastructure. The typical organization currently uses more than a dozen sanctioned cloud apps and will shift more than half of all workloads to the cloud by 2018. Such cloud investments have delivered measurable benefits. But they’ve also resulted in some unintended side-effects: complexity and risk. ...
The taxi industry never saw Uber coming. Startups are a threat to incumbents like never before, and a major enabler for startups is that they are instantly “cloud ready.” If innovation moves at the pace of IT, then your company is in trouble. Why? Because your data center will not keep up with frenetic pace AWS, Microsoft and Google are rolling out new capabilities. In his session at 20th Cloud Expo, Don Browning, VP of Cloud Architecture at Turner, posited that disruption is inevitable for comp...
It is ironic, but perhaps not unexpected, that many organizations who want the benefits of using an Agile approach to deliver software use a waterfall approach to adopting Agile practices: they form plans, they set milestones, and they measure progress by how many teams they have engaged. Old habits die hard, but like most waterfall software projects, most waterfall-style Agile adoption efforts fail to produce the results desired. The problem is that to get the results they want, they have to ch...