The third full day of the conference began with a keynote looking at security innovation from the point of view of a venture capital firm. As someone in an organisation far removed from that of Silicon Valley startups it was fascinating to learn about this very different world.
Next I attended a talk on a methodology for evaluating threat intelligence feeds, especially important when considering some of the many commercial feeds available. Security company Flashpoint then gave an interesting presentation on DDoS attacks.US-CERT presented on best practices and big mistakes in responding to major incidents. Their idea of major incidents is typically on a much greater scale to ours, with some investigations taking months. Their tips included good practice for all stages of the response process, as well as things not to do, for instance because they may lose critical evidence or tip off attackers that they’ve been noticed.
The final talk considered an approach to attracting young talent into the field of cybersecurity, in particular through the hosting of cybersecurity exercises and “capture the flag” competitions, though I do wonder whether how such approaches work in attempting to level the highly male-dominated gender balance within the industry.The day ended with the conference banquet, held at Seoul’s LetsRun Park racetrack. Inclement weather that day meant that the plans to hold it outdoors had to be abandoned, but the venue offered copious interior space. Excellent entertainment was offered throughout the evening, ranging from traditional Korean music and dance to modern K-pop hits, naturally including Gangnam Style, named for the nearby district of Seoul.