This Meetup is past

238 people went

Details

IMPORTANT
Please fill up the following pre-registration form: https://goo.gl/forms/aaNlBtWJICOcPRN02

AGENDA
- Food, Drinks & Networking (20mins)
- Introduction & Announcement (10mins)
- "Developing Singapore's Cybersecurity Ecosystem" by Lim Shin Yi (10mins)
- "Improving Threat Detection via Economics (& Smart Contracts)" by Tetsu Yamamoto & Yu Yiting (15mins)
- "Nabla Containers A New Approach to Workload Isolation" by Brandon Lum

THANK YOU!
VENUE SPONSOR: CSA
FOOD SPONSOR: Centurion Infosec

ABSTRACTS
DEVELOPING SINGAPORE'S CYBERSECURITY ECOSYSTEM
Lim Shin Yi, will talk about some of the work CSA has done over the past few years in cybersecurity capacity/ecosystem development and some broad plans for the coming year(s).

IMPROVING THREAT DETECTION VIA ECONOMICS (& SMART CONTRACTS)
A lot of cybersecurity solutions focus on driving up the cost for the attackers. What about the poor defenders? In this talk, we will discuss how we, at PolySwarm, are flipping the equation: making economic incentives constant, accessible, and attractive for good defenders. How can the hacker community work together to solve open challenges and make attack a low-wage job?

Stay in touch with PolySwarm: https://signup.polyswarm.io/singapore-meetup

NABLA CONTAINERS: A NEW APPROACH TO WORKLOAD ISOLATION
Horizontal attacks are an important security concern for cloud providers and its tenants. Despite its many advantages, containers have not been accepted as isolated sandboxes, which is crucial for container-native clouds. The exposure of the syscall interface directly to untrusted workloads has greatly increased the number of exploits possible to the host.

Based on a model of isolation, we will discuss the differences between VMs and containers (i.e. docker, containerd), and why VMs generally have better isolation. We will then show that the same ideas can be adopted for regular processes.

We present Nabla containers, which uses library OS/unikernel techniques to avoid system calls and thereby reduce the attack surface on the host kernel. Using our OCI runtime, runnc (https://github.com/nabla-containers/runnc), we show the running of popular applications: Node.js, python, redis, etc. permitting use of < 9 syscalls via seccomp. In this talk, we will discuss and demo how we have leveraged libOS ideas in a novel way.

BIOS
LIM SHIN YI is the Senior Assistant Director of the Ecosystem Development in CSA. She works to develop Singapore’s cybersecurity capabilities through manpower development in the cybersecurity ecosystem.

TETSU YAMAMOTO is the Japan Country Manager of PolySwarm. Tetsu has 30 years of experience working for IT companies of various sizes (from small to large enterprises). Tetsu worked closely with Marc Benioff during the early days of Salesforce (when Salesforce had only 300 staff worldwide) - focusing on the growth of the organisation.

YU YITING is a Business Development Manager at PolySwarm, focusing on partnership and Chinese market expansion. He worked as a Data Scientist at SAP and a Sofware Engineer at Citrix in the Silicon Valley. Yiting has been enjoying working on the most interesting project of his career (i.e. PolySwarm) since joining Steve Bassi, CEO of PolySwarm, who taught him during his Master (Computer Science) programme at Santa Clara University.

BRANDON LUM loves designing and implementing computer systems (with a focus on Security, Operating Systems, and Distributed/Parallel Systems). He enjoys tackling both technical and business challenges and has a side interest in organizational behaviour and leadership.

At IBM Research, Brandon designs, architects and develops for problems at the intersection of Cloud and Security. He works on various security areas such as: Container content protection via encryption and image signing, Container trusted identity and identity-based data fencing, Techniques to reduce the attack surface on the kernel and a container, and Container Cluster Update Planning.