Session F1 Alparslan Kuloglu - American-Turkish Council

BEWARE
01010010101010101010101010101010101010101010
010101010100101010101010101010101
CYBER
01010101010101010100101010101010101010101010
1010101100101010
SECURITY
010101010010001001010101010101010101010101010101010101010101010
010101010010001001010101010101010101010101010101010
010101010101010100101010101010101010101010101010101010
OR
1010101011010101010101010010010101010101010101001010101010101010101010
0101010101010110010101010101001010101010101010101010
E AWARE
010101010101010100101010010101010101010101001010
101010101010101010101010101010101010101100101010
1/18

HACKER ATTACKS
Estonia Computers Blitzed (2007)
MOSCOW, May 18 — The computer attacks, apparently
originating in Russia, first hit the Web site of Estonia’s
prime minister on April 27, the day the country was
mired in protest and violence. The president’s site went
down, too, and soon so did those of several
departments in a wired country that touts its paperless
government and likes to call itself E-stonia.
“If you have a missile attack against, let’s say, an airport,
it is an act of war,” a spokesman for the Estonian
Defense Ministry, Madis Mikko, said. “If the same result
is caused by computers, then how else do ytou describe
that kind of attack”
2/18

CYBER ATTACKS ON U.S. FEDERAL SITES
U.S. Blames China’s Military
Directly for Cyberattacks
WASHINGTON, May 6,2013 - The Obama administration
on Monday explicitly accused China’s military of
mounting attacks on American government computer
systems and defense contractors, saying one motive
could be to map “military capabilities that could be
exploited during a crisis.”
http://www.nytimes.com/2013/05/07/world/asia/us-accuses-chinas-military-in-cyberattacks.html
pagewanted=all&_r=0
3/18

STUXNET
Iran was hit by
Stuxnet worm in 2010
Iran was subjected to cyber attacks
on June 2010 when its nuclear
facility in Natanz was infected by
Stuxnet, a cyber worm, no one
claimed responsibility for its
inception.
4/18

ISRAEL-PALESTINE CONFLICT
Military activities are
responded by cyber
attacks.
Ex.: Israel-Palestine conflict (2012)
When Israel began airstrikes into Gaza - Anonymous
hackers have retaliated with millions of hacking efforts
on Israeli government and private business sites,
intermittently taking hundreds offline, defacing some
with anti-Israel messages, deleting Web databases
for others and dumping thousands of citizen’s
usernames and passwords online.
5/18

BOTNET FOR RENT
BOTNET FOR RENT
It appears the group of cyber attackers who recently went
after Twitter and Baidu are running a for-rent botnet.
Research by Seculert has found that the group, known as
the Iranian Cyber Army, which crashed both Twitter and
Baidu by tampering with DNS (Domain Name System)
records and caused users to be redirected to another
website, may also be running a botnet. Seculert found a
page where people can rent the botnet - simply by detailing
what they'd like to attack.
6/18

CYBER ATTACK DEMONSTRATION
A person can hijack a
plane with an Android
phone
"Hack in the Box security conference in
Amsterdam"
7/18

CYBER ATTACKS INCIDENTS
8/18

DAMAGE ASSESSMENT
388 Billion – The total bill for cybercrime
in 24 countries…
Ø $114bn – Direct cash costs of cybercrime
Ø $274bn – Victims valued the time lost to cybercrime
Cybercrime is bigger
than…
Ø The global black market in marijuana, cocaine,
and heroin combined ($288bn)
Ø At $388bn, cybercrime is more than 100 times
the annual expenditures of UNICEF ($3.65bn)
Cyber Crime Study, Ponemon Institute, 2011
9/18

BUDGET FOR CYBERSECURITY
12
10
8
6
Budget (blln. $)
4
2
0
2012 2013 2014 2015
DoD budget for cyber security
10/18

DoD BUDGET
11/18

HOW DO WE INCREASE AWARENESS
Ø To increase the awereness should we choose to
try radical methods
12/18

HACKER & HACKTIVITS GROUPS
Anonymous Milw0rm Masters Of Deception
LulzSec
Network Crack
Program
TeaMp0isoN
globalHell
RedHack
13/18

HAVELSAN SECURITY SOLUTION HISTORY
HAVELSAN FIREWALL (1998)
Ø HAVELSAN Firewall is soEware based applicaHon designed to provide «IP
Packet filtering», «Intrusion DetecHon», «PrevenHng Denial of Service
ASacks», «Virtual Private Network», «Network Address TranslaHon» and
«AuthenHcaHon Proxy» features.
Ø HAVELSAN Firewall is used by Turkish AirForce and Turkish General Staff
headquarters.
HAVELSAN GUARD (2001)
Ø Specifically designed network cards provide air gap between outside
network and inner network. OperaHon of this system resembles a diode.
Ø HAVELSAN GUARD is a soEware and hardware based security system
soluHon.
Ø Inner and outer network communicaHon is established with a secure
protocol which is developed by HAVELSAN cryptology engineers.
14/18

HAVELSAN PROFESSIONAL SECURITY SERVICES
Design & Review
Services for Network &
ApplicaOon
PenetraOon Test &
Vulnerability Analysis
Services
PROFESSIONAL
SECURITY
SERVİCES
Monitoring & Patch
Services for Network,
ApplicaOons & Databases
Product Consultancy
15/18

HAVELSAN CYBER IMPROVEMENT PROGRAM (HCIP)
Analysis
Target
Plan &
Implement
3 Dimensional Maturity Evaluation
Ø Understand the Leader’s next 10
Years Vision
Ø Understand the Way of Doing
Business and Stragies
Ø Balance the KPIs
Ø Cost Minimization
Ø Fast Operations
Ø Enterprise Trustworthiness &
Credibility
Ø Define the Correct Security Targets
16/18

HAVELSAN CYBER ROADMAP
TODAY : As an Integrator and
Service Provider :
Ø Professional Security Services
Ø Havelsan Cyber Improvement Program (HCIP)
FUTURE : Developing solutions for :
Ø Cyber Security Operation and Analytics Centers
Ø Product develeopment
Ø SCADA Cyber security Solutions
Ø Network traffic monitoring / network traffic analysis
Ø Detection and logging of critical information transmission.
Ø Advanced Pesistent Threat analysis tools
Ø Malware analysis tools
Ø Data Loss Prevention Software
Ø Cyber Threat Analysis tools
17/18

BEING A TRUSTED COMPANY
READY FOR COLLABORATION
18/18

TURKEY’S CYBER SECURITY ACTIVITIES
• In October 2012, NaHonal Law is published on ExecuHng,
Managing and CoordinaHon of Cybersecurity AcHviHes in
Turkey
• Turkey’s NaHonal Cybersecurity AcHon Plan is prepared
• Rep. of Turkey TransportaHon, Shipping and CommunicaHon
Ministry is leading cybersecurity acHviHes
• In order to test and improve the capabiliHes against cyber
aSacks, naHonal cybersecurity exercise is conducted in 2012
and 2013. 61 corporaHon is aSacked and analyzed by white
hackers. The exercise is last 17 days.
19/18

HOW SAFE TO RELY ON SERVICES IN THE INTERNET
Ø Firewalls can protect both individual computers
and corporate networks from hosHle intrusion
from the Internet, but can we be protected
from the firewall itself
Ø How about cloud services Are they safe
Ø Linkedin Facebook How far are they logging
internet acHviHes
20/18

IMPORTANCE OF NATIONAL PRODUCTS
• Because of these concerns, naHonal
cybersecurity product development is crucial.
• HAVELSAN is developing naHonal cyber security
products for government, military and other
naHonal corporaHons which have high security
concerns about commercial products
21/18