Be cloudy and secure...


Cloud Security Authors: Terry Ray, Elizabeth White, Simon Hill, Yeshim Deniz, Shelly Palmer

Related Topics: Cloud Computing, Web 2.0 Magazine, Security Journal, IT Strategy, Secure Cloud Computing, F5 Networks, Security

Cloud Computing: Blog Feed Post

F5 Security Vignette Series

This series looks at many of those security concerns which can be addressed proactively

Over the last couple weeks, we’ve been rolling out a series of short Security Vignette videos about various IT security challenges.  We’ve posted them to the F5News blog account but also wanted to share in case you missed them.  If we were going to sum up the role of security in corporate IT today we’d have to say it’s to "be prepared." This series looks at many of those security concerns which can be addressed proactively, before they are exploited or become a fire drill.

  • clip_image002 F5 Security Vignette: Proactive Security – The F5 Security Vignette series looks at various security concerns, vulnerabilities and attacks which can cause headaches for Corporate IT and the business integrity overall. This video covers SSL Certificates.
  • clip_image002[1] F5 Security Vignette: DNSSEC Wrapping – The dirty little secret of the Internet is how insecure DNS really is. The good news is, there’s a solution — DNSSEC. It secures the DNS query and response process.
  • clip_image002[2] F5 Security Vignette: Hacktivism Attack – DDoS and other targeted attacks.
  • clip_image002[3] F5 Security Vignette: SSL Renegotiation – The premise of the SSL Renegotiation DOS attack is simple: "An SSL/TLS handshake requires at least 10 times more processing power on the server than on the client". If a client machine and server machine were equal in RSA processing power, the client could overwhelm the server by sending ten times as many SSL handshake requests as the server could service. The counter measure against the attacks was to write an iRule to limit renegotiation requests to 5 per minute per session.
  • clip_image002[4] F5 Security Vignette: Credit Card iRule – The consequences of exposing hundreds of thousands of customer credit card numbers is unthinkable. Fines, lawsuits, damaged brand — the effects can be catastrophic. Even if it was accidental, the effect would be the same.
  • clip_image002[5] F5 Security Vignette: Apache HTTP RANGE Vulnerability – When we hear about an Apache vulnerability, it gets our attention. In this case the issue was the way Apache handles HTTP RANGE headers, which are used to request individual sub-ranges of a given response, instead of the entire response. The problem is that responding to an HTTP RANGE request is computationally expensive. A simple iRule fixes this.
  • clip_image002[5] F5 Security Vignette: iHealth – Security is a never ending battle. The bad guys advance, we counter, they cross over … you’re just never done.  To give our side an edge we do a lot of research.
  • clip_image004 Security is our Job
  • clip_image006 F5 YouTube Feed


Technorati Tags: F5, cyber security, predictions, 2012, Pete Silva, security, mobile, vulnerabilities, crime, social media, hacks, internet, identity theft, F5 News, security, web application security, apache, HTTP, threat mitigation, video

Connect with Peter: Connect with F5:
o_linkedin[1] o_rss[1] o_facebook[1] o_twitter[1] o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]


Read the original blog entry...

More Stories By Peter Silva

Peter is an F5 evangelist for security, IoT, mobile and core. His background in theatre brings the slightly theatrical and fairly technical together to cover training, writing, speaking, along with overall product evangelism for F5. He's also produced over 350 videos and recorded over 50 audio whitepapers. After working in Professional Theatre for 10 years, Peter decided to change careers. Starting out with a small VAR selling Netopia routers and the Instant Internet box, he soon became one of the first six Internet Specialists for AT&T managing customers on the original ATT WorldNet network.

Now having his Telco background he moved to Verio to focus on access, IP security along with web hosting. After losing a deal to Exodus Communications (now Savvis) for technical reasons, the customer still wanted Peter as their local SE contact so Exodus made him an offer he couldn’t refuse. As only the third person hired in the Midwest, he helped Exodus grow from an executive suite to two enormous datacenters in the Chicago land area working with such customers as Ticketmaster, Rolling Stone, uBid, Orbitz, Best Buy and others.

Writer, speaker and Video Host, he's also been in such plays as The Glass Menagerie, All’s Well That Ends Well, Cinderella and others.