IoT: Security & Privacy Challenges

ABSTRACT

With its vast application, IoT also introduces new threat landscape, including attacks, vulnerability management, access control and data privacy issues. This half day seminar aims to address different areas of IoT Security, including IoT security threats; related solutions and practices; and how to tackle IoT security & privacy problems.

---

EVENT DETAILS

Date: 18 April 2016 (Monday)

Time: 2:30pm – 5:30pm

Venue: Cisco Systems (HK) Ltd., 31/F, Great Eagle Centre, 23 Harbour Road, Wanchai, Hong Kong.

Seats: 60 on a first-come-first-served basis with priority given to HKCS members

Language: English

Fee:

HKCS Members : Free of Charge

Non - HKCS Members : HKD $50

---

AGENDA

2:00pm

Registration

2:30pm

Opening Address

Michael Leung, President, Hong Kong Computer Society

2:45pm

Topic: Security in the new Ubiquitous World of Cloud and IoT

Michael Counsel, Chief Technology Officer and Vice President Consulting, Products & Services, Asia Pacific and Japan, Symantec Limited

Synopsis:
IoT & Cloud service adoption and increased ability to communicate was dragged a dramatic increase in threat exposure. Much like the city that opened its gates and decided to trade with its neighbours and whose merchants got exposed to threats on the open road, the business that chooses to adopt trade and buy services on the open highways of the internet has also increased its exposure to threats. The gates are more open. Trade is occurring in abundance. Cloud services are integrated with on premise services. Information is being exchanged as goods and services are bought and sold.

But there are those who want to sneak in and slip through the gates into the city. So we need to increase the response to these threats and provide better and more holistic security integration from identification and user authentication, through access management to information and application services wherever they are, to the detection and elimination of advanced threats and their perpetrators.

3:20pm

Topic: "Things" in the interconnected World

Morpheus Cheung, Head of Technical Consultant, Quann HK and Macau (e-Cop)

Synopsis
The IT world is growing rapidly, telecom, mobile, cloud-computing, big data, etc. Nowadays people talk about Internet of Things. The IoT represents a major departure in the history of the Internet, as connections move beyond computing devices, and begin to power billions of everyday devices, from parking meters to home appliances. The IoT will account for an increasingly huge number of connections: 1.9 billion devices today, and 9 billion by 2018. What is coming into the IoT world? New operating systems for IoT, new standards, new testing guide as well as new way of communication to make our world smarter than ever.

3:55pm

Break

4:20pm

Topic: A look at IoT security impact from IT, Legal and Branding perspectives

Alban Kwan, Country Manager (Greater China), CSC® Digital Brand Services Hong Kong

Synopsis

• How IoT would impact DDoS - IPv6 and DNSSEC deployment demand

• IoT and the use of DNS - Corporate DNS security, DNS management, Cloud migration or not?

• SSL on IoT

• IoT and new gTLD

4:55pm

Topic: Securing Your IoT Environment

Garrick Ng, Head of Systems Engineering, Cisco Hong Kong & Macau

Synopsis
The IoT provides extraordinary business benefits but poses serious network and security concerns. The unfortunate truth is that securing IoT devices is not always a high priority among vendors and manufacturers. Traditional infrastructure not originally intended for the Internet quickly finds its way online and is made more complex with the addition of new connectivity and data. The more infrastructure evolves and becomes connected to the World Wide Web, the more critical security has becomes as cyber criminals find ways to compromise systems and exploit for profit and other insidious motives.

We will look at how security plays a critical role in IoT, what are the security challenges and how security is played differently in Information Technology (IT) and Operation Technology (OT) environment. We will also look at some recent industrial IoT security incidents, and ways to secure your IoT environment to address the IoT security challenges with the modern day security technologies and architectures.

5:30pm

Closing

---

---

Biography

---

Michael Counsel

Chief Technology Officer and Vice President Consulting, Products & Services, Asia Pacific and Japan, Symantec Limited

Michael Counsel is chief technology officer and vice president consulting, products & services for Asia Pacific and Japan (APJ) region at Symantec. In this role, Counsel leads Symantec's consulting services and product teams across the region and helps organizations in identifying and implementing comprehensive information security and management solutions in increasingly complex environments. He is also responsible for rolling out new and exciting products, and working closely with regional and global teams on new products and solutions for Symantec customers for APJ.

Counsel joined Symantec after 19 years with Oracle where he held various senior leadership roles spanning multiple geographies and vertical industries including banking, healthcare, mining, automotive, telecommunications, and governments. Most recently, Counsel was the chief technology officer and group vice president enterprise architecture for Asia Pacific, responsible for driving larger business and more successful outcomes for customers across the region.

Counsel has been in the IT industry for over 25 years and likes to maintain a strong balance for his interests in both business and technology. He holds a Bachelor of Engineering in Information Technology from the University of Western Australia.

---

Morpheus Cheung

Head of Technical Consultant, Quann HK and Macau (e-Cop)

Morpheus Cheung is the Technical Consultant of e-Cop Hong Kong & Macau. He leads and manages Solution Consulting, and is responsible for managing overall business & delivery operations.

Morpheus has more than 14 years of experience in IT operations & security, networking technology & Professional services. He brings with him a wide scope of knowledge and experience in security operations from DDoS attack protection to endpoint security. He has been working in different leading regional MSSPs in providing technology consulting, Managed Security Solution, DDoS solution, web application security, and advanced threat protection.

Morpheus is a Certified Information System Security Professional (CISSP).

---

Alban Kwan

Country Manager (Greater China), CSC® Digital Brand Services Hong Kong

Alban has been with CSC Digital Brand Services and affiliated companies since 2009. He has developed his expertise through managing and assisting 60 of the high profile brands within the APAC region with their new gTLD applications and by providing relevant strategic consultation. Subsequently, Alban is also responsible for advising top local companies in how to best protect their brands through effective brand monitoring, digital assets management, cybersecurity best practices and legal enforcements for online infringements. Alban has both a bachelor’s and a master’s degree in management from Monash University in Australia.

---

Garrick Ng

Head of Systems Engineering, Cisco Hong Kong & Macau

Garrick Ng is the Head of Systems Engineering for Cisco Hong Kong and Macau, leading Cisco’s Enterprise and Commercial systems engineering strategy and operations in these markets. Bringing to the company more than two decades of technical and business experience in the ICT industry, Garrick is well-known as a passionate, innovative and forward-looking leader in the field. Garrick joined Cisco in 2007, contributing since then to many notable achievements in developing turnkey cross-architecture solutions to best align with customers’ business needs and goals.

Prior to joining Cisco, Garrick was the Director of Business Development and Technical Operation of BPI, managing the advanced development of mobile accessories and mobile application platform. Before that, he was the CTO of Wisespot, where he innovated the world-first music ring tone for GSM mobile network, creating a whole new business model for the mobile industry.

Garrick holds a Bachelor of Science in Computer Science from the New York University, and a Bachelor of Engineering in Electrical Engineering from the Cooper Union. He also holds a Master of Science in Electrical Engineering from the Columbia University in the US. Garrick is dedicated to contributing his expertise in the ICT field to the community. He is the Committee Member of the Hong Kong Computer Society Information Security Special Interest Group (ISSIG).

---

---

Note:

Seats are limited and will be allocated on a first-come first-served basis and priority will be given to HKCS member.

HKCS reserves the right to change terms and conditions without prior notice. In case of dispute, the decision of HKCS shall be final and binding.

Should you have any enquiry, please contact Ms Shirley Lo at 2834-2228 / issig@hkcs.org.hk

---

Organizer:

Information Security Special Interest Group, Hong Kong Computer Society

---