Full Attack Chain Testing – How to test any security product usefully
Security product testing can be useful to improve products and help customers make the most appropriate buying decisions. We look at what it means to test using the full attack chain, including the advantages in assessing full products and combinations of products, as well as the limitations and even dangers of taking realism too far.
The presentation will include the following:
– Test environment considerations
– Introduction to the concepts of the attack chain and the alternative approach of atomic testing
– Case studies
– Ways to construct and present attack chains
– Testing like a real Advanced Persistent Threat (APT) in seven steps
– Dealing the products that don’t cover the full attack chain
– Detection or protection testing?
– When realism gets a little too real… (unexpected interaction with criminals)
Simon Edwards
Simon Edwards is the founder and CEO of SE Labs, a London-based company that specialises in advanced security testing. He provides tailored security advice to large businesses and more general technical advice to small businesses and individuals.
Simon focuses on cybersecurity and develops ways to test computer security products and services. He built and ran the world’s first real-world anti-virus test and continues to innovate in testing that involves computer hacking.
A founder member of the Anti-Malware Testing Standards Organization (AMTSO), Simon was chairman of its Board of Directors between 2012 and 2015, and between 2017 and 2019. He is currently co-chair.
Simon features on the DE:CODED podcast, which provides different types of security advice for businesses and individuals, recognising that people need security in both their work and personal lives.