Скачать презентацию RSA Identity Protection and Verification Adaptive Authentication Anti-e Скачать презентацию RSA Identity Protection and Verification Adaptive Authentication Anti-e

8dba63796fd45ef50c6be955866900e2.ppt

  • Количество слайдов: 25

RSA Identity Protection and Verification Adaptive Authentication, Anti-e. Fraud Solutions David Mateju RSA Sales RSA Identity Protection and Verification Adaptive Authentication, Anti-e. Fraud Solutions David Mateju RSA Sales Consultant david. mateju@rsa. com

RSA – The Big Picture Encryption Store, Transport IT infrastructure Access Authentication, Authorization, Anti-fraud RSA – The Big Picture Encryption Store, Transport IT infrastructure Access Authentication, Authorization, Anti-fraud Solutions information SIEM Security Information and Event Management DLP Data Loss Prevention

RSA – The Big Picture RSA Encryption and Key Management Suite RSA Access Manager RSA – The Big Picture RSA Encryption and Key Management Suite RSA Access Manager RSA Federated Identity Manager IT infrastructure RSA Secur. ID RSA Digital Certificate Solutions information RSA Identity Protection and Verification Suite RSA en. Vision Platform RSA Data Loss Prevention Suite

Access RSA Identity Protection and Verification Suite Access RSA Identity Protection and Verification Suite

What is Crimeware? Two Broad Classifications Identity Theft Crimeware Steals online credentials or any What is Crimeware? Two Broad Classifications Identity Theft Crimeware Steals online credentials or any personal data required for identity takeover, with intent of using the stolen identity to steal funds • Examples: Keyloggers, screen-scrapers, local pharming Trojans Funds Transfer Crimeware Performs unauthorized online transactions to steal funds Trojans that “hijack” online banking or other secure sessions of infected users to carry out fraudulent transactions after user has logged out • Examples: Session-hijacking Trojans, Man-in-the-Browser

Why On-line? Universally accessible Little chance of being caught Cheap (little infrastructure necessary) Scalable Why On-line? Universally accessible Little chance of being caught Cheap (little infrastructure necessary) Scalable Less violent (no gangsters from Jersey to shoot you)

The Fraudster Supply Chain Is it organized crime? YES. It is organized. And involves The Fraudster Supply Chain Is it organized crime? YES. It is organized. And involves organized crime. Universal MITM Phishing Kit Insiders ATM fraud etc.

Crimeware Ecosystem – Organized Crime Trojan developers offer guarantied replacement in case the trojan Crimeware Ecosystem – Organized Crime Trojan developers offer guarantied replacement in case the trojan is detected by anti-virus applications

Future Trojan Developments (“Anti-Trojan”) Inline Anti-Virus “tester” and “fixer” Future Trojan Developments (“Anti-Trojan”) Inline Anti-Virus “tester” and “fixer”

Need a Piece of Crimeware? Web. Money Trojan = $500 Snatch Trojan+Rootkit = $600 Need a Piece of Crimeware? Web. Money Trojan = $500 Snatch Trojan+Rootkit = $600 Limbo personalized Limbo logs (50 MB) FTP Checker / Iframer Dream Bot. Builder Pinch Mpack $500 / $350 discounted $30 $35 $500 + $25 for updates $30 + $5 for updates $700 w/ support

Business of Trojans Business of Trojans

Crimeware Ecosystem – Infection Service Crimeware Ecosystem – Infection Service

Zeus Trojan as an example … Tracking one variant of a very popular tool-kit Zeus Trojan as an example … Tracking one variant of a very popular tool-kit In first two weeks infected 32, 000 computers • Roughly 4, 000 infections a day No effective anti-virus update available • Highly polymorphic, no consistent binary signature To date we have recovered 60, 000 compromised users and their credentials from this tool-kit alone Zeus is also known as WSNPOEM

RSA Identity Protection and Verification Suite RSA Adaptive Authentication and Transaction Monitoring (with Risk RSA Identity Protection and Verification Suite RSA Adaptive Authentication and Transaction Monitoring (with Risk Engine) RSA Fraud. Action RSA e. Fraud. Network

Behind the Scenes – The RSA Risk Engine Over 100 risk indicators (factors) are Behind the Scenes – The RSA Risk Engine Over 100 risk indicators (factors) are monitored Self-learning provides immediate response to new threats

Impact of components on detection 3% flag rate >95% detection !! 1% flag rate Impact of components on detection 3% flag rate >95% detection !! 1% flag rate >80% detection !

RSA e. Fraud. Network The World’s Largest Online Fraud Fighting Community RSA e. Fraud. Network The World’s Largest Online Fraud Fighting Community

RSA Adaptive Authentication RSA Transaction Monitoring Fraudulent transfers down by 90%, much higher security RSA Adaptive Authentication RSA Transaction Monitoring Fraudulent transfers down by 90%, much higher security User authentication costs down

RSA Fraud. Action – RSA non-stop service RSA’s 24 x 7 Anti-Fraud Command Center RSA Fraud. Action – RSA non-stop service RSA’s 24 x 7 Anti-Fraud Command Center

Anti Trojan - A Systematic Approach to Mitigation Infection / Update Drop Zone Command Anti Trojan - A Systematic Approach to Mitigation Infection / Update Drop Zone Command & Control Bot-Herder Less than 25% of infected PCs are protected by AV applications. Even less effectively protected against the specific threat. RSA’s Anti-Trojan Solution Victim’s PC

Anti Trojan - A Systematic Approach to Mitigation Infection / Update Block (browsers, ISPs) Anti Trojan - A Systematic Approach to Mitigation Infection / Update Block (browsers, ISPs) Shutdown Drop Zone Command & Control Bot-Herder Block Shutdown (firewalls, ISPs, content filtering) (or) Monitor

Additional Anti-Trojan Services Only service on market offering these services Additional Anti-Trojan Services Only service on market offering these services

RSA – World “Web Anti-Fraud” Leader RSA – World “Web Anti-Fraud” Leader

RSA “Anti-Fraud” Solutions – Selected Customers Australia: • Adelaide Bank Canada: • Royal Bank RSA “Anti-Fraud” Solutions – Selected Customers Australia: • Adelaide Bank Canada: • Royal Bank of Canada France: • Le Crédit Lyonnais India: • HDFC Bank Italy: • Banca Popolare di Sondrio Japan: • • • Mizuho Bank Nomura Securities Sony Bank Inc. Sumitomo Mitsui Banking Corporation The Bank of Fukuoka South Africa: • UK: • • Standard Bank Barclays Bank ING Direct USA: • • • • Bank of America Bank of the West Baxter Credit Union Century Bank Commerce Bancorp, Inc. E*Trade Eglin Federal Credit Union Finance Center Federal Credit Union Mid America Bank State Employees' Credit Union (SECU) Susquehanna Bancshares TCF Financial Corporation Tennessee Valley Federal Credit Union