Online English Conversation Course for PhD Students
Friday, 2 June 2017
Where is cybercrime really coming from? - Week 7 [29.05-04.06.2017]
Hi everyone,
I have just watched TED video about cyber crime. Speaker is presenting us with current situation in the industry and few possible solutions.
Please watch the video and try to answer to my questions.
https://www.ted.com/talks/caleb_barlow_where_is_cybercrime_really_coming_from#t-855786
1. Do you think it's a good idea for organisations to share data about cyber attacks?
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
3. Have you heard about onion routing protocol?
Thanks,
Mac
Subscribe to:
Post Comments (Atom)
Hi Maciek, thank you for the video. Answering your questions, I am not sure if sharing data about cyber attacks by organisations is a bad or good idea, but at least it is an idea to combat hackers and cyber criminals. On the one hand, this provides inspiration for other hackers, on the other hand, security specialists are aware of all the trends and newest developments in the world of cyber crime. I am quite certain that cyber criminals will always adapt to new situation, it's the same as with other kinds of criminals and bad guys:). Correct me, if I am wrong, but onion routing protocol is a way of conducting anonymous communication over network. It consists in encrypting message using layers of encryption, hence the name "onion" (onion has also may layers of skin.
ReplyDelete1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteI think that each attack should be considered separately. In general it may increase people aware about cyber attacks but as it was said before it may also inspire hackers and give information about weak sides of some systems.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
I think that this is constant fight. Every move we made to increase our security will work until hackers find a way to overcome it. Hackers will always adapt to new situation. Nevertheless we should still make some improvements and changes.
3. Have you heard about onion routing protocol?
Yes I have hear about onion routing protocol but I have never needed to use it. It is quite old technique developed in 90's used for anonymous communication.
Hi,
ReplyDeleteIn my opinion information about cyber attack should be shared between organisations. We can consider should we stop i.e. production process due to risk of the attack. We are able then to prepare patches that ensures protection and minimise results of this situation.
Regarding to second question I have to agree with Katarzyna B. This is constant fight.
As well as I good remember onion routing gives a possibility for anonymous communication over the network. That is all what I remember and this idea corresponds to onion layers.
1. Do you think it's a good idea for organizations to share data about cyber attacks?
ReplyDeleteYes in my opinion it is great idea. Thanks to that we could have opportunity to learn on somebodies mistakes
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
I do not think so, crime will be always one step ahead.
3. Have you heard about onion routing protocol?
Yes, I have heard about this ;)
1. Do you think it's a good idea for organizations to share data about cyber attacks?
ReplyDeleteThis is not easy question because we all hear about hardware or software wars and this is very difficult subject for discussion.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
Computer equipment and technology are so popular and will I think always be demand for this kind of services from the private and government sector.
3. Have you heard about onion routing protocol?
I do not confess. :-)
It is quite an old technology and I have no idea about today's application.
Thank you for offering interesting speech. Sharing information about attacks on one side allows them to fight more effectively with them, but on the other hand, I give additional information about existing system vulnerabilities. Any information can be used for a repeat attack. We imagine that in a trusted organization will be proclaimed specialist in black gloves. Then it can lead us to ruin. In my opinion, cybercriminals will always adapt to the situation and find a place to work. Thieves ideas are always ahead of the police technique. I heard about onion routing, but I did not use it. I know that I guarantee very high anonymity. Anonymity is not complete, but there are serious problems to detect the perpetrator of the events made with him.
ReplyDelete1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteYes I think so, because thanks to that other organisations can prepare for similar threats and systems will be more secure, but it should be done properly, because if that kind of data mag get into wrong hands and can be used against some other organisation.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
Yes it’s possible to change the economics for the cyber criminals, because it’s like you said just economy, which means that it can be affected by supply and demand. It’s all flexible If you for example create more sophisticated security system the price for breaking it will be higher and if something behind this system is worth less than cost of breaking security, probably it will be safe. If companies want to be safe they have to remember that they have to adapt level of security to things that is being protected. On the other hand we have to remember that which new technologies current security might be easier to bypass, which means that the cost of bypassing it will be lower. So i think that probably it’s never ending fight between those who want to protect and those who want to break and gain something.
3. Have you heard about onion routing protocol?
Yes Im using Tor browser sometimes to different purposes, but mostly I used is as a no cost VPN when I’m abroad to watch some online services, which country IP filtering. Thanks to that I’m able to watch Polish services like VOD.
Thanks for the interesting video!
ReplyDelete1. Do you think it's a good idea for organizations to share data about cyber attacks?
I think they should share. This will allow you to work on system prevention. We know well that the best security specialists, they often started on the dark side. It's a different scale but I think so!
2. Is it possible to change the economics for the cyber criminals or do you always adapt to the new situation?
I think it's heavy. Deprivation is cunning and clever.
3. Have you heard about onion routing protocol?
So I heard about the Tor network. And onion routing. This is the layer of successive routers, the name is "onion".
This comment has been removed by the author.
ReplyDelete1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteYes I do, however it have to be done in a smart way. For example before publishing the information giving the time to organisation being under attack to fix the problem inside their systems.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
It is not possible. We have to protect ourselves the best we could. Remember, 100% save IT system do not exist even in theory.
3. Have you heard about onion routing protocol?
Of course. TOR networks are very popular. Onion routing is a technique for anonymous communication over a computer network. In an onion network, messages are encapsulated in layers of encryption, analogous to layers of an onion. The encrypted data is transmitted through a series of network nodes called onion routers, each of which "peels" away a single layer, uncovering the data's next destination. When the final layer is decrypted, the message arrives at its destination. The sender remains anonymous because each intermediary knows only the location of the immediately preceding and following nodes.[1]
References:
Goldschlag D., Reed M., Syverson P. (1999.) Onion Routing for Anonymous and Private Internet Connections, Onion Router.
1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteI think that it has pros and cons. For sure it can broader the knowledge of the methods and scale of the attacks. Other organizations can update their security policies and prepare to them. But it might also inspire "less creative" hackers or reveal information about the company that this organization would like not to make public (as their security methods).
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
I think that they will adapt, because it is usually their way of getting money. But despite of this we should try to improve current solutions and be one step ahead of them. Security is a crutial thing for the organizations and private individuals.
3. Have you heard about onion routing protocol?
Yes, I did. It is connected with TOR browser, but I never needed to use it.
1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteI believe it is a good idea. It will be much easier for other organizations to be ready for such an occurrence. It is more than possible that the other organizations will be attacked.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
I think they will always adapt to new situations. It looks like that there is no such complexity that can prevent from the attacks. People create systems and the systems cannot be immune.
3. Have you heard about onion routing protocol?
Yes, I have heard about onion routing protocol. As far as I know it is a quite old technique and it allows for anonymous communication.
Ad. 1
ReplyDeleteI think sharing data about cyberattacks could be a good idea to maximize and accumulate the energy against it. It would be ideal, if organizations could do it without constraint.
Ad. 2
Definitely, they would always adapt to new situation. But it made me thinking just about the way it works – why not to be better than cyber criminals? Why not to predict their next moves? I mean being practically prepared instead of always following them. On the other hand, I also mean directing clever people energy for good purposes. Why those attacking must always be ahead?
Ad. 3
I’ve heard about onion routing protocol as technique for anonymous communication over network – in such onion network data is encapsulated, encrypted and each intermediary knows only immediately preceding and following node, and as a result the sender remains anonymous.
1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteThey should share to increase general security. However, it's easy to show how bad they were and so on. It can compromise them even more.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
They will adapt, like they always do. It's tempting, like with forbidden fruit.
3. Have you heard about onion routing protocol?
Old topic, not so safe anymore. It is used by police and hackers, so it's far from being usable. However, it's still safer than most protocols we are using on daily basis.
This comment has been removed by the author.
ReplyDelete1. Do you think it's a good idea for organisations to share data about cyber attacks?
ReplyDeleteIf companies want to protect themselves with AI solutions, they should share data to achieve better trained and more efficient models.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
As in most areas in industry it is constant competition. Both sides try to be one step ahead competitor.
3. Have you heard about onion routing protocol?
No, I haven't.
1. Do you think it's a good idea for organisations to share data about cyberattacks?
ReplyDeleteYes, I think it is a good way. It can improve the experience of cyberattacks to find out how to deal with them.
2. Is it possible to change the economics for the cyber criminals or do you think they'll always adapt to the new situation?
They will :) In my opinion it will be always an interesting task for them. Economics is not my cup of tea however it seems to be difficult to find a good solution for cyberattacks in this area...
3. Have you heard about onion routing protocol?
Yes, I have. I think it is connected to Tor issue ;) It’s a protocol created to improve security of network packets traffic.
Some of the most effective hackjobs are executed by employees. Speaker uses the phrase "criminal gangs", leading some to believe that all the hackers are individuals located in some mysterious place writing malicious code that breaches corporate security from the outside. As a matter of fact, the most effective "breaches of security" are perpetrated by individuals who are employees of agencies, organizations, corporations, etc. The stolen information is then sold to the "criminal gangs". Government agencies and businesses are loathe to announce publicly that the breaches were committed by their own employees.
ReplyDelete