Active Defense – Strike, Counterstrike or Vigilante Justice? presented at CISOboston 2014

by Jeff Bardin,

Summary : Sensitive data flows to cyber criminals, hackers, foreign intelligence services and other adversaries at an alarming rate. The current model is based on the fallacy that penetration of networks is inevitable, positioning organizations as cyber janitors mopping up after each breach.
Some organizations view active defense as vigilante justice — ineffective, risky and not in their best interests. This discussion examines active defense while naming it what it is: a strike or counterstrike at an adversary. Legally justifiable and consistent with domestic and international law, counterstrikes are an effective tool in your cybersecurity arsenal.