Talking about one of the key speakers of OFFZONE 2019
As part of the Global Cyber Week, June 17-18, 2019, the second international conference on the practical cyber security OFFZONE will be held in Moscow. We disclose the veil of secrecy and tell about one of the key speakers OFFZONE 2019 - known researcher in the field of cyber security - Alexander Matrosov ( matrosov ).
Alexander leads offensive-research of iron and firmware for NVIDIA's main product lines. Alexander has over 20 years of international research experience in the cybersecurity industry, including reverse engineering, analysis of the most complex malware, development of operating methods for firmware, taking into account counteraction to circumvention of protection tools.
The evolution of security software has a direct correlation with the development of the modern spectrum of threats. If each new round of evolution is aimed at closing gaps in detection methods or algorithms for collecting and analyzing data about possible attacks, then the main direction of the development of complex threats, rootkits and, later, bootkits, was definitely from the very beginning - the search for the most effective methods of countering detection and long-term fixation in the attacked system.
The ongoing arms race on the field of actively introducing digital signatures for OS kernel modules, reducing the kernel’s access to the kernel for developers and the widespread use of Secure Boot methods has led to a new round of threat evolution. Today, there is a clear tendency on the part of the attacker, which consists in constantly moving to lower levels in the system. And this displacement vector is actively shifting towards the iron (Firmware / Hardware implants).
In his report Evolution of Complex Threats: An Arms Race Between Analyst and AttackerAlexander, through the prism of the evolution of complex threats, will consider how the approaches to reverse analysis and forensics have recently changed, talk about black spots in defense systems, focusing on what needs to be improved in order to continue the race towards evolution towards more effective protection.
We also invite you to apply for the Call for Papers (CFP) report on the conference website . Application deadline is April 29, 2019 .