Confidence - (23-24.05 2012 Krakow)
Język: polski | english

Gaweł Mikołajczyk

Bio: Gawel Mikolajczyk graduated from Warsaw University of Technology with a Masters Degree in Telecommunications.

Gawel is Security Consulting Systems Engineer with EMEA Core Borderless Networks Team at Cisco. He holds numerous industry certificates, including CCIE #24987, CISSP-ISSAP, CISA, C|EH.

He is a frequent speaker at Universities and Industry conferences including Cisco Live! Europe, PLNOG, Cisco Expo and Cisco Forum on the subject of Network Security.

His main areas of interest are Integrated Security, Identity and emerging concepts.

Before joining Cisco was a UNIX Systems Administrator and Systems Engineer with one of the prominent systems integrators in Poland.

Gawel is also a Cisco Networking Academy Instructor.

Temat I prezentacji: Holistic identity-based networking approach – an irreducible dichotomy between reality and expectations

Język prezentacji: Angielski

Skrót:
Did you seriously evaluate recently IP networking security from the access to core with hordes of users coming out of nowhere with their iPadoandroids? How about networking security in a massively scalable virtualized Data Center?

This session will guide you through security challenges with the state of the art 802.1X (not the 2000ish one), device profiling, guest access, web authentication, posture assessment, 802.1AE encryption and overlay technologies. You will be exposed to new, context-aware technical approaches for segmentation, enforcement and traffic filtering in modern IP networks.

This is where the context-awareness goes far beyond the user identity itself.

I want you to challenge these brave new ideas.




Temat II prezentacji: IPv6 insecurities at First Hop

Język prezentacji: Angielski

Skrót:
Sesja będzie dyskutować szeroki wachlarz wyzwań First-Hop Secrity, które są zarówno dziedziczone z IPv4 lub charakterystyczne dla protokołu IPv6. Ataki sieci IPv6 skierowane cashe sąsiada, Router Discovery, SLAAC, Address Resolution, DAD i DHCPv6 zostaną przedstawione w trakcie prezentacji. Między innymi zostaną opisane metody łagodzenia takie jak PACL, SeND, CGA, Address Glean, RA Guard, Prefix Guard, ND Inspection, DHCPv6 Guard, Source Guard oraz Destination Guard.Wnioski końcowe naświetlą ograniczenia sprzętowe, stan przemysłu i wysiłki IETF w celu rozwiązania tych problemów.