Presentation Title: Advances in Intrusion Detection and Prevention
- History of IDS
- Common IDS/IPS algorithms
- Evasion Techniques
- Counter Evasion
- Data Leakage Prevention
- Beyond 10GB
Chris Rouland will review advances in intrusion detection and prevention from both a market and research perspective. Starting with the functionality of the earliest network based intrusion detection, Chris will review innovation including protocol based detection techniques, IDS evasion techniques and counter-evasions and new technology such as Data Leakage Prevention which is working it’s way into the network defense technology portfolio. Additional complementary techniques such as network-based anomaly detection and host based intrusion prevention will be covered, as well as the future beyond 10GB of packet inspection.
Christopher Rouland is the chief technology officer (CTO) for IBM Internet Security Systems. Rouland is responsible for guiding the companyÂ¹s overall technology strategy with a commitment to developing products and services that preemptively protect organizations from cyber threats.
Prior to his appointment as CTO, Rouland served as the vice president of X-Force Research and Development, where he was instrumental in further developing the X-Force organization. The X-Force is a group of security experts dedicated to understanding, documenting and coding of new attack signatures, vulnerability checks and solutions to global security issues. X-Force also maintains the industry’s most comprehensive online knowledge base for rapid dissemination of information on thousands of threats. Additionally, the X-Force team supports the U.S. Department of Homeland Security with daily briefings to update and advise the U.S. government on the current health of the Internet, as well as identify new sources of attacks.
Since joining IBM Internet Security Systems in 1998, Rouland has become a frequent spokesperson for national media outlets for organizations such as CNN, Fox News and the Associated Press, as well as many technical print publications. He is credited with the discovery and naming of the Slammer worm. Additionally, Rouland initiated a White House press conference to alert global media to the secondary damaging impacts of the Code Red worm.
Rouland has almost 20 years of IT experience. He began his career deploying most of the first Internet connections for UUNet in the late 80s and early 90s, including sites like www.senate.gov. He has also held positions as a software developer, network architect and vice president of distributed technology for Lehman Brothers, Inc. Rouland is a member of the Institute of Electrical and Electronics Engineers (IEEE) and the Association of Computing Machinery (ACM). He is a sought-after speaker at leading industry events, including AFCEA Fall Tech Forum, Gartner IT Security Summit, Gartner Symposium/ITXPO Cannes, RSA Conference, and GTISC Security Summit on Emerging Threats, with keynotes at ISSAâ€™s Annual InfoSec Conference and VON Enterprise 2006.
In 2007 Rouland was appointed an IBM Distinguished Engineer - a position reserved for leading technical professionals whose talents, insights and contributions are not only exemplary, but critical for IBM’s continued leadership and growth in innovation.