SlideShare une entreprise Scribd logo

A wireless world: combatting security breaches through parallel networking - Lindsay Notwell, Cradlepoint

Internet World
Internet World

Interop Academy - June 17th, 11:30-12:00 Parallel networking addresses evolving security concerns of major retailers and distributed enterprises. Using UK-based HART Systems and Barnes and Noble as examples, Mr. Notwell will speak to today’s modern retail store environment, the challenges that it faces and value of introducing parallel networking to achieve secure and optimal business performance.

InternetTechnologie
1  sur  22
Télécharger pour lire hors ligne
ADDRESSING THE BREACH Offloading Non-Essential and Vendor Applications to Application-Specific, Parallel Networks Using 4G LTE June 17, 2014 Lindsay Notwell VP, Operator & International Business CradlePoint Contact: lnotwell@cradlepoint.com
M200 Circa 2006 OUR COMPANY The trusted global leader in enterprise-grade 4G-LTE networking solutions for distributed enterprise 2CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. • All Rights Reserved. Information subject to change without notice. INDUSTRY AWARDS 2014 Top 20 Retail IT Solutions OPERATOR PARTNERS Focus: Enterprise grade cloud managed 3G/4G/LTE solutions Advantages: Performance Protocols Efficiency DIFFERENTIATION Security WiFi Flexibility
KiosksC-Stores OUR CUSTOMERS Distributed Enterprises with Hundreds and Thousands of Locations 3 RestaurantsRetail Stores Digital Signage TransportationBranch Offices CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. All Rights Reserved. • Information subject to change without notice. Key Challenges No Local IT Support PCI Compliance WiFi & Mobility Cloud-based Apps Business Continuity
RETAIL BRANCH OFFICE KIOSKS, SIGNAGE, ETC TRANSPORTATION OUR RECORD OF SUCCESS Over 1,000,000 deployments with leading distributed enterprises 4CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. All Rights Reserved. • Information subject to change without notice.
Internet / Private Network 5CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. TYPICAL BRANCH OFFICE Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable
Internet / Private Network 6CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. WITH 3G/4G RESILIENCY Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
Internet / Private Network 7CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
 Penetration – Launched email phishing campaign – Successfully tricked many users to open the email – Attackers researched victims and determined suppliers to Target – Obtained vendor’s credentials, used to access Target’s network  Execution – Used “pivoting” technique to attack systems on other networks – Infected POS terminals using customized memory scraping tool – Established “unauthorized server” inside the Target network – Exfiltrated credit card data through the compromised servers Based on Currently-Available Information THE ATTACK AT TARGET
 The Exposure – Up to 110 million customers could have been affected – 40 million debit and credit cards stolen – Up to 70 million individuals had personal information stolen  The Cost – The breach will cost Target $500 million to $1.1 billion USD some analysts estimate. – Analysts have cut Target profit estimates for the fiscal years ending Jan ’14 and Jan ‘15 by about 12.2% and 9.5%, respectively, Thomson Reuters Starmine data showed. – Target’s CIO resigned, CEO forced out Based on Currently-Available Information 9CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source: Source:
 The Industry Experts’ Analysis – Target passed its PCI Compliance audit in September – The company has since moved to isolate its different platforms and networks to make it harder for a hacker to move between them a Target executive said. – So-called segmentation issues, where computer systems that shouldn't be connected for security reasons are in fact linked, are a problem at a number of retailers a person familiar with retail breaches said. – There shouldn't have been a route between a network for an outside contractor and the one for payment data people familiar with large corporate networks said. Based on Currently-Available Information 10CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source:
 Legitimate looking emails  Relevant, somewhat inside information  Think of grifters, con men, etc.  Click on the link or attachment Phishing, Spear Phishing, Whaling SOCIAL ENGINEERING ATTACKS
PHISHING EXAMPLE
Internet / Private Network 13CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
 The Industry Experts’ Analysis –So-called segmentation issues, where computer systems that shouldn't be connected for security reasons are in fact linked, are a problem at a number of retailers a person familiar with retail breaches said. –There shouldn't have been a route between a network for an outside contractor and the one for payment data people familiar with large corporate networks said. Based on Currently-Available Information 14CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source:
15CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. SEGMENTATION ISSUES?
16CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. AND THEN…
17CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. AND THEN…
Internet / Private Network 18CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
Internet / Private Network 19CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. 4G-LTE VoIP Phone Network Separate 4G Network Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Kiosks Separate 4G Network for 3rd-Party 4G-LTE4G-LTE Digital Signage Separate 4G Network for 3rdParty HVAC System Separate 4G Network for 3rd-party vendor 4G-LTE Customer WiFi Network Separate 4G Network for non-secure customer access 4G-LTE Store-in-a-Store Separate 4G Network for 3rd-Party 4G-LTE Employee Network Separate 4G Network for secure enterprise access 4G-LTE 4G-LTE Security System Separate 4G Network for 3rd-party vendor 4G-LTE Energy Mgmt System Separate 4G Network for 3rd-party vendor POS Device Network Separate 4G Network for security-sensitive devices 4G-LTE PARALLEL NETWORKING Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
Point-of-Sale Device Network Separate 4G Network for security-sensitive devices 4G-LTE Internet / Private Network 20CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. PARALLEL NETWORKING 4G-LTE VoIP Phone Network Separate 4G Network Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Kiosks Separate 4G Networks for 3rd-Party 4G-LTE4G-LTE Digital Signage Separate 4G Network for 3rdParty HVAC System Separate 4G Network for 3rd-party service provider (Heating, Ventilation & Air Conditioning) 4G-LTE Customer WiFi Network Separate 4G Network for non-secure customer access 4G-LTE Store-in-a-Store Separate 4G Network for 3rd-Party 4G-LTE Employee Network Separate 4G Network for secure enterprise access 4G-LTE 4G-LTE Security System Separate 4G Network for 3rd-party service provider Failover Connection 4G-LTE as a backup WAN connection 4G-LTE4G-LTE Energy Mgmt System Separate 4G Network for 3rd-party service provider Primary Network (WAN) Typically T1, DSL or Cable
21 See us at Interop Stand IW343 FREE WHITE PAPER
ADDRESSING THE BREACH Offloading Non-Essential and Vendor Applications to Application-Specific, Parallel Networks Using 4G LTE QUESTIONS? Contact : lnotwell@cradlepoint.com Lindsay Notwell VP, Operator & International Business CradlePoint

Recommandé

IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBMIBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
Internet World
 
IBM's big data seminar programme- the case for big data & analytics - Gareth ...
IBM's big data seminar programme- the case for big data & analytics - Gareth ...IBM's big data seminar programme- the case for big data & analytics - Gareth ...
IBM's big data seminar programme- the case for big data & analytics - Gareth ...
Internet World
 
Elastic Search Meetup Special - Yann Cluchey, Cogenta
Elastic Search Meetup Special - Yann Cluchey, Cogenta Elastic Search Meetup Special - Yann Cluchey, Cogenta
Elastic Search Meetup Special - Yann Cluchey, Cogenta
Internet World
 
How to raise venture capital & the First Tuesday Award 2014
How to raise venture capital & the First Tuesday Award 2014How to raise venture capital & the First Tuesday Award 2014
How to raise venture capital & the First Tuesday Award 2014
Internet World
 
Unreasonable learning - Shane Hill, Skoolbo
Unreasonable learning - Shane Hill, SkoolboUnreasonable learning - Shane Hill, Skoolbo
Unreasonable learning - Shane Hill, Skoolbo
Internet World
 
London's tech scene's at a critical point - Alex Wood, Tech City News
London's tech scene's at a critical point - Alex Wood, Tech City NewsLondon's tech scene's at a critical point - Alex Wood, Tech City News
London's tech scene's at a critical point - Alex Wood, Tech City News
Internet World
 
Free:Formers CODE:OFF
Free:Formers CODE:OFF Free:Formers CODE:OFF
Free:Formers CODE:OFF
Internet World
 
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
Internet World
 

Recommandé

IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBMIBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
IBM's big data seminar programme -moving beyond Hadoop - Ian Radmore, IBM
Internet World
 
IBM's big data seminar programme- the case for big data & analytics - Gareth ...
IBM's big data seminar programme- the case for big data & analytics - Gareth ...IBM's big data seminar programme- the case for big data & analytics - Gareth ...
IBM's big data seminar programme- the case for big data & analytics - Gareth ...
Internet World
 
Elastic Search Meetup Special - Yann Cluchey, Cogenta
Elastic Search Meetup Special - Yann Cluchey, Cogenta Elastic Search Meetup Special - Yann Cluchey, Cogenta
Elastic Search Meetup Special - Yann Cluchey, Cogenta
Internet World
 
How to raise venture capital & the First Tuesday Award 2014
How to raise venture capital & the First Tuesday Award 2014How to raise venture capital & the First Tuesday Award 2014
How to raise venture capital & the First Tuesday Award 2014
Internet World
 
Unreasonable learning - Shane Hill, Skoolbo
Unreasonable learning - Shane Hill, SkoolboUnreasonable learning - Shane Hill, Skoolbo
Unreasonable learning - Shane Hill, Skoolbo
Internet World
 
London's tech scene's at a critical point - Alex Wood, Tech City News
London's tech scene's at a critical point - Alex Wood, Tech City NewsLondon's tech scene's at a critical point - Alex Wood, Tech City News
London's tech scene's at a critical point - Alex Wood, Tech City News
Internet World
 
Free:Formers CODE:OFF
Free:Formers CODE:OFF Free:Formers CODE:OFF
Free:Formers CODE:OFF
Internet World
 
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
What the Internet of Things means for the mobile enterprise - Ian Evans, AirW...
Internet World
 
Have your cake and eat it too: adopting technologies without sacrificing - Pa...
Have your cake and eat it too: adopting technologies without sacrificing - Pa...Have your cake and eat it too: adopting technologies without sacrificing - Pa...
Have your cake and eat it too: adopting technologies without sacrificing - Pa...
Internet World
 
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Internet World
 
What IT capacity planning can learn from manufacturing's just-in-time models ...
What IT capacity planning can learn from manufacturing's just-in-time models ...What IT capacity planning can learn from manufacturing's just-in-time models ...
What IT capacity planning can learn from manufacturing's just-in-time models ...
Internet World
 
How personal data has changed and what this means for businesses looking forw...
How personal data has changed and what this means for businesses looking forw...How personal data has changed and what this means for businesses looking forw...
How personal data has changed and what this means for businesses looking forw...
Internet World
 
The database of you - Andy Caddy, Virgin Active Health Clubs
The database of you - Andy Caddy, Virgin Active Health ClubsThe database of you - Andy Caddy, Virgin Active Health Clubs
The database of you - Andy Caddy, Virgin Active Health Clubs
Internet World
 
Using big data to find out what women want - John Lervik, Cxense
Using big data to find out what women want - John Lervik, CxenseUsing big data to find out what women want - John Lervik, Cxense
Using big data to find out what women want - John Lervik, Cxense
Internet World
 
Relevance = Revenue - PK Vaish, Copernica
Relevance = Revenue - PK Vaish, CopernicaRelevance = Revenue - PK Vaish, Copernica
Relevance = Revenue - PK Vaish, Copernica
Internet World
 
How to drive e-commerce sales with content marketing - David Bowen, EPiServer
How to drive e-commerce sales with content marketing - David Bowen, EPiServerHow to drive e-commerce sales with content marketing - David Bowen, EPiServer
How to drive e-commerce sales with content marketing - David Bowen, EPiServer
Internet World
 
Innovation at Tesco - Angela Maurer, Tesco
Innovation at Tesco - Angela Maurer, TescoInnovation at Tesco - Angela Maurer, Tesco
Innovation at Tesco - Angela Maurer, Tesco
Internet World
 
Responsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
Responsive Web Design: Advantages & Best Practice - Darrin Adams, CantarusResponsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
Responsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
Internet World
 
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, StannpOffline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
Internet World
 
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
Internet World
 
When smart-phones sense how you feel: The era of intelligent mobile devices -...
When smart-phones sense how you feel: The era of intelligent mobile devices -...When smart-phones sense how you feel: The era of intelligent mobile devices -...
When smart-phones sense how you feel: The era of intelligent mobile devices -...
Internet World
 
Dulux paints the town red (or any colour you like) with augmented reality - S...
Dulux paints the town red (or any colour you like) with augmented reality - S...Dulux paints the town red (or any colour you like) with augmented reality - S...
Dulux paints the town red (or any colour you like) with augmented reality - S...
Internet World
 
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
Internet World
 
Super charge your content with super content - Stephen Morgan, Squiz/ Funnelback
Super charge your content with super content - Stephen Morgan, Squiz/ FunnelbackSuper charge your content with super content - Stephen Morgan, Squiz/ Funnelback
Super charge your content with super content - Stephen Morgan, Squiz/ Funnelback
Internet World
 
From insights to outcomes, and beyond - Nick Millman, Accenture
From insights to outcomes, and beyond - Nick Millman, AccentureFrom insights to outcomes, and beyond - Nick Millman, Accenture
From insights to outcomes, and beyond - Nick Millman, Accenture
Internet World
 
Data: the competitive edge you've been looking for! - David White, import.io
Data: the competitive edge you've been looking for! - David White, import.ioData: the competitive edge you've been looking for! - David White, import.io
Data: the competitive edge you've been looking for! - David White, import.io
Internet World
 
The marriage of people and technology - Jon Winter, Worthers Media Solutions
The marriage of people and technology - Jon Winter, Worthers Media Solutions The marriage of people and technology - Jon Winter, Worthers Media Solutions
The marriage of people and technology - Jon Winter, Worthers Media Solutions
Internet World
 
Big technology for small businesses, how to build your marketing toolkit - Ta...
Big technology for small businesses, how to build your marketing toolkit - Ta...Big technology for small businesses, how to build your marketing toolkit - Ta...
Big technology for small businesses, how to build your marketing toolkit - Ta...
Internet World
 
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
SUHANI PANDEY
 
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdfpdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
JOHNBEBONYAP1
 

Contenu connexe

Plus de Internet World

Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Internet World
 

Plus de Internet World (20)

Have your cake and eat it too: adopting technologies without sacrificing - Pa...
Have your cake and eat it too: adopting technologies without sacrificing - Pa...Have your cake and eat it too: adopting technologies without sacrificing - Pa...
Have your cake and eat it too: adopting technologies without sacrificing - Pa...
 
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
Business Networking Hacks in Today’s Connected World - Marian Gazdik, Startup...
 
What IT capacity planning can learn from manufacturing's just-in-time models ...
What IT capacity planning can learn from manufacturing's just-in-time models ...What IT capacity planning can learn from manufacturing's just-in-time models ...
What IT capacity planning can learn from manufacturing's just-in-time models ...
 
How personal data has changed and what this means for businesses looking forw...
How personal data has changed and what this means for businesses looking forw...How personal data has changed and what this means for businesses looking forw...
How personal data has changed and what this means for businesses looking forw...
 
The database of you - Andy Caddy, Virgin Active Health Clubs
The database of you - Andy Caddy, Virgin Active Health ClubsThe database of you - Andy Caddy, Virgin Active Health Clubs
The database of you - Andy Caddy, Virgin Active Health Clubs
 
Using big data to find out what women want - John Lervik, Cxense
Using big data to find out what women want - John Lervik, CxenseUsing big data to find out what women want - John Lervik, Cxense
Using big data to find out what women want - John Lervik, Cxense
 
Relevance = Revenue - PK Vaish, Copernica
Relevance = Revenue - PK Vaish, CopernicaRelevance = Revenue - PK Vaish, Copernica
Relevance = Revenue - PK Vaish, Copernica
 
How to drive e-commerce sales with content marketing - David Bowen, EPiServer
How to drive e-commerce sales with content marketing - David Bowen, EPiServerHow to drive e-commerce sales with content marketing - David Bowen, EPiServer
How to drive e-commerce sales with content marketing - David Bowen, EPiServer
 
Innovation at Tesco - Angela Maurer, Tesco
Innovation at Tesco - Angela Maurer, TescoInnovation at Tesco - Angela Maurer, Tesco
Innovation at Tesco - Angela Maurer, Tesco
 
Responsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
Responsive Web Design: Advantages & Best Practice - Darrin Adams, CantarusResponsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
Responsive Web Design: Advantages & Best Practice - Darrin Adams, Cantarus
 
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, StannpOffline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
Offline Direct Marketing for Mobile Marketeers - Sam Heaton, Stannp
 
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
How to drive mobile traffic to your local stores? - Bruno Berthezene, Solocal...
 
When smart-phones sense how you feel: The era of intelligent mobile devices -...
When smart-phones sense how you feel: The era of intelligent mobile devices -...When smart-phones sense how you feel: The era of intelligent mobile devices -...
When smart-phones sense how you feel: The era of intelligent mobile devices -...
 
Dulux paints the town red (or any colour you like) with augmented reality - S...
Dulux paints the town red (or any colour you like) with augmented reality - S...Dulux paints the town red (or any colour you like) with augmented reality - S...
Dulux paints the town red (or any colour you like) with augmented reality - S...
 
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
Mobile Payments: Driving Global M-Commerce Adoption - Johan Lindstrom, Master...
 
Super charge your content with super content - Stephen Morgan, Squiz/ Funnelback
Super charge your content with super content - Stephen Morgan, Squiz/ FunnelbackSuper charge your content with super content - Stephen Morgan, Squiz/ Funnelback
Super charge your content with super content - Stephen Morgan, Squiz/ Funnelback
 
From insights to outcomes, and beyond - Nick Millman, Accenture
From insights to outcomes, and beyond - Nick Millman, AccentureFrom insights to outcomes, and beyond - Nick Millman, Accenture
From insights to outcomes, and beyond - Nick Millman, Accenture
 
Data: the competitive edge you've been looking for! - David White, import.io
Data: the competitive edge you've been looking for! - David White, import.ioData: the competitive edge you've been looking for! - David White, import.io
Data: the competitive edge you've been looking for! - David White, import.io
 
The marriage of people and technology - Jon Winter, Worthers Media Solutions
The marriage of people and technology - Jon Winter, Worthers Media Solutions The marriage of people and technology - Jon Winter, Worthers Media Solutions
The marriage of people and technology - Jon Winter, Worthers Media Solutions
 
Big technology for small businesses, how to build your marketing toolkit - Ta...
Big technology for small businesses, how to build your marketing toolkit - Ta...Big technology for small businesses, how to build your marketing toolkit - Ta...
Big technology for small businesses, how to build your marketing toolkit - Ta...
 

Dernier

VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
SUHANI PANDEY
 
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdfpdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
JOHNBEBONYAP1
 
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 BookingVIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
dharasingh5698
 
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort ServiceBusty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
Delhi Call girls
 
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
SUHANI PANDEY
 
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
EleniIlkou
 
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Call Girls In Delhi Whatsup 9873940964 Enjoy Unlimited Pleasure
 
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
@Chandigarh #call #Girls 9053900678 @Call #Girls in @Punjab 9053900678
 
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
@Chandigarh #call #Girls 9053900678 @Call #Girls in @Punjab 9053900678
 
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
roncy bisnoi
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Delhi Call girls
 
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
nirzagarg
 
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
tanu pandey
 

Dernier (20)

VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
VIP Model Call Girls NIBM ( Pune ) Call ON 8005736733 Starting From 5K to 25K...
 
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdfpdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
pdfcoffee.com_business-ethics-q3m7-pdf-free.pdf
 
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 BookingVIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
VIP Call Girls Pollachi 7001035870 Whatsapp Number, 24/07 Booking
 
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
(INDIRA) Call Girl Pune Call Now 8250077686 Pune Escorts 24x7
 
APNIC Updates presented by Paul Wilson at ARIN 53
APNIC Updates presented by Paul Wilson at ARIN 53APNIC Updates presented by Paul Wilson at ARIN 53
APNIC Updates presented by Paul Wilson at ARIN 53
 
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort ServiceBusty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
Busty Desi⚡Call Girls in Vasundhara Ghaziabad >༒8448380779 Escort Service
 
Trump Diapers Over Dems t shirts Sweatshirt
Trump Diapers Over Dems t shirts SweatshirtTrump Diapers Over Dems t shirts Sweatshirt
Trump Diapers Over Dems t shirts Sweatshirt
 
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
Wadgaon Sheri $ Call Girls Pune 10k @ I'm VIP Independent Escorts Girls 80057...
 
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
2nd Solid Symposium: Solid Pods vs Personal Knowledge Graphs
 
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
Thalassery Escorts Service ☎️ 6378878445 ( Sakshi Sinha ) High Profile Call G...
 
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
📱Dehradun Call Girls Service 📱☎️ +91'905,3900,678 ☎️📱 Call Girls In Dehradun 📱
 
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
6.High Profile Call Girls In Punjab +919053900678 Punjab Call GirlHigh Profil...
 
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
20240510 QFM016 Irresponsible AI Reading List April 2024.pdf
 
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
Call Girls Sangvi Call Me 7737669865 Budget Friendly No Advance BookingCall G...
 
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrStory Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
Story Board.pptxrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrrr
 
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
Hire↠Young Call Girls in Tilak nagar (Delhi) ☎️ 9205541914 ☎️ Independent Esc...
 
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
💚😋 Salem Escort Service Call Girls, 9352852248 ₹5000 To 25K With AC💚😋
 
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service AvailableCall Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
Call Girls Ludhiana Just Call 98765-12871 Top Class Call Girl Service Available
 
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
APNIC Policy Roundup, presented by Sunny Chendi at the 5th ICANN APAC-TWNIC E...
 
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
Nanded City ( Call Girls ) Pune 6297143586 Hot Model With Sexy Bhabi Ready ...
 

A wireless world: combatting security breaches through parallel networking - Lindsay Notwell, Cradlepoint

  • 1. ADDRESSING THE BREACH Offloading Non-Essential and Vendor Applications to Application-Specific, Parallel Networks Using 4G LTE June 17, 2014 Lindsay Notwell VP, Operator & International Business CradlePoint Contact: lnotwell@cradlepoint.com
  • 2. M200 Circa 2006 OUR COMPANY The trusted global leader in enterprise-grade 4G-LTE networking solutions for distributed enterprise 2CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. • All Rights Reserved. Information subject to change without notice. INDUSTRY AWARDS 2014 Top 20 Retail IT Solutions OPERATOR PARTNERS Focus: Enterprise grade cloud managed 3G/4G/LTE solutions Advantages: Performance Protocols Efficiency DIFFERENTIATION Security WiFi Flexibility
  • 3. KiosksC-Stores OUR CUSTOMERS Distributed Enterprises with Hundreds and Thousands of Locations 3 RestaurantsRetail Stores Digital Signage TransportationBranch Offices CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. All Rights Reserved. • Information subject to change without notice. Key Challenges No Local IT Support PCI Compliance WiFi & Mobility Cloud-based Apps Business Continuity
  • 4. RETAIL BRANCH OFFICE KIOSKS, SIGNAGE, ETC TRANSPORTATION OUR RECORD OF SUCCESS Over 1,000,000 deployments with leading distributed enterprises 4CradlePoint Proprietary and Confidential • © 2014 CradlePoint, Inc. All Rights Reserved. • Information subject to change without notice.
  • 5. Internet / Private Network 5CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. TYPICAL BRANCH OFFICE Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable
  • 6. Internet / Private Network 6CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. WITH 3G/4G RESILIENCY Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
  • 7. Internet / Private Network 7CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
  • 8.  Penetration – Launched email phishing campaign – Successfully tricked many users to open the email – Attackers researched victims and determined suppliers to Target – Obtained vendor’s credentials, used to access Target’s network  Execution – Used “pivoting” technique to attack systems on other networks – Infected POS terminals using customized memory scraping tool – Established “unauthorized server” inside the Target network – Exfiltrated credit card data through the compromised servers Based on Currently-Available Information THE ATTACK AT TARGET
  • 9.  The Exposure – Up to 110 million customers could have been affected – 40 million debit and credit cards stolen – Up to 70 million individuals had personal information stolen  The Cost – The breach will cost Target $500 million to $1.1 billion USD some analysts estimate. – Analysts have cut Target profit estimates for the fiscal years ending Jan ’14 and Jan ‘15 by about 12.2% and 9.5%, respectively, Thomson Reuters Starmine data showed. – Target’s CIO resigned, CEO forced out Based on Currently-Available Information 9CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source: Source:
  • 10.  The Industry Experts’ Analysis – Target passed its PCI Compliance audit in September – The company has since moved to isolate its different platforms and networks to make it harder for a hacker to move between them a Target executive said. – So-called segmentation issues, where computer systems that shouldn't be connected for security reasons are in fact linked, are a problem at a number of retailers a person familiar with retail breaches said. – There shouldn't have been a route between a network for an outside contractor and the one for payment data people familiar with large corporate networks said. Based on Currently-Available Information 10CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source:
  • 11.  Legitimate looking emails  Relevant, somewhat inside information  Think of grifters, con men, etc.  Click on the link or attachment Phishing, Spear Phishing, Whaling SOCIAL ENGINEERING ATTACKS
  • 13. Internet / Private Network 13CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
  • 14.  The Industry Experts’ Analysis –So-called segmentation issues, where computer systems that shouldn't be connected for security reasons are in fact linked, are a problem at a number of retailers a person familiar with retail breaches said. –There shouldn't have been a route between a network for an outside contractor and the one for payment data people familiar with large corporate networks said. Based on Currently-Available Information 14CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE RESULT AND IMPACT Source:
  • 15. 15CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. SEGMENTATION ISSUES?
  • 16. 16CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. AND THEN…
  • 17. 17CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. AND THEN…
  • 18. Internet / Private Network 18CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. THE MONOLITHIC NETWORK Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
  • 19. Internet / Private Network 19CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. 4G-LTE VoIP Phone Network Separate 4G Network Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Kiosks Separate 4G Network for 3rd-Party 4G-LTE4G-LTE Digital Signage Separate 4G Network for 3rdParty HVAC System Separate 4G Network for 3rd-party vendor 4G-LTE Customer WiFi Network Separate 4G Network for non-secure customer access 4G-LTE Store-in-a-Store Separate 4G Network for 3rd-Party 4G-LTE Employee Network Separate 4G Network for secure enterprise access 4G-LTE 4G-LTE Security System Separate 4G Network for 3rd-party vendor 4G-LTE Energy Mgmt System Separate 4G Network for 3rd-party vendor POS Device Network Separate 4G Network for security-sensitive devices 4G-LTE PARALLEL NETWORKING Primary Network (WAN) Typically T1, DSL or Cable Failover Connection 4G-LTE as a backup WAN connection 4G-LTE
  • 20. Point-of-Sale Device Network Separate 4G Network for security-sensitive devices 4G-LTE Internet / Private Network 20CradlePoint Proprietary and Confidential | © 2014 CradlePoint, Inc. | All Rights Reserved. | Information subject to change without notice. PARALLEL NETWORKING 4G-LTE VoIP Phone Network Separate 4G Network Server Employee Tablet Back Office Customer Area Equip Room Customer Smartphone Kiosks Separate 4G Networks for 3rd-Party 4G-LTE4G-LTE Digital Signage Separate 4G Network for 3rdParty HVAC System Separate 4G Network for 3rd-party service provider (Heating, Ventilation & Air Conditioning) 4G-LTE Customer WiFi Network Separate 4G Network for non-secure customer access 4G-LTE Store-in-a-Store Separate 4G Network for 3rd-Party 4G-LTE Employee Network Separate 4G Network for secure enterprise access 4G-LTE 4G-LTE Security System Separate 4G Network for 3rd-party service provider Failover Connection 4G-LTE as a backup WAN connection 4G-LTE4G-LTE Energy Mgmt System Separate 4G Network for 3rd-party service provider Primary Network (WAN) Typically T1, DSL or Cable
  • 21. 21 See us at Interop Stand IW343 FREE WHITE PAPER
  • 22. ADDRESSING THE BREACH Offloading Non-Essential and Vendor Applications to Application-Specific, Parallel Networks Using 4G LTE QUESTIONS? Contact : lnotwell@cradlepoint.com Lindsay Notwell VP, Operator & International Business CradlePoint