Proyectos /04/15 12:29 PM

Transcripción

1 Proyectos 2015 Contenido 1. Seguridad y Big Data Seguridad en IPv Seguridad Física Seguridad en la nube (Cloud Computing) Ethical Hacking Plan de contingencia y gestión de incidentes Computer Forensics Auditoría de Sistemas Firewalls y Sistemas de Detección/prevención de Intrusos en la Red Seguridad en redes inalámbricas: Wireless-LANs y VPN Seguridad en Virtualización Seguridad en dispositivos móviles y celulares Biometrics Seguridad en E-business BYOD: Bring your own device Seguridad en Internet de las Cosas (IoT) Seguridad y Big Data Categoría: Security Management Big data, el siguiente paso en la analítica de datos 0evoluci%f3n%20de%20la%20anal%edtica%20de%20datos_ Top 10 big data Security and Privacy Challenges Trust me: Big data is a huge security risk The big data security analytics era is here How to tackle big data from a security point of view Buying Guide: Big Data Apps for Security Big Data Analytics for Security Intelligence How Big Data is changing the security analytics landscape Big security for big data Challenges and Opportunities with Big Data Big Data Security Challenges Security and governance key concerns as big data becomes mainstream uk/news/ /security-and-governance-key-concerns-as-big-data-becomes-mainstream Big Data security, privacy concerns remain unanswered Big Data: Bigger Security Risks? Big Data Ecosystem Reference Architecture Security Considerations with Big Data Securing bigdata Isaca Offers 8 Steps For Wrangling Big Data g_big_data 1

2 2. Seguridad en IPv6 Categoría: platform Security Qué es IPv6? IPV6 para todos Biggest risks in IPv6 security today Security Features in IPv6 4 IPv6 Security Fallacies Why IPv6 Matters for Your Security IPv6 Security Overview: a Small View of the Future IPv6 First-Hop Security Concerns IPv6 Security - An Overview IPv6 Security A 5 Intro to IPv6 Security Address IPv6 security before your time runs out IPv6 tutorial: Understanding IPv6 security issues, threats, defenses IPv6 security issues: Fixing implementation problems Implicaciones de seguridad en la implantación de IPv6 IPv6 Security Overview: a Small View of the Future Holding IPv6 Neighbor Discovery to a Higher Standard of Security The Persistent Problem of State in IPv6 (Security) Security Issues in Next Generation IP and Migration Networks n_networks._iosr_journal_of_computer_engineering_17_1_13-18 Transitioning to IPv6? Here s how to beat the security risks 3. Seguridad Física Categoría: Physical Security Seguridad Fisica COMO Auditoría de la Seguridad Física PuKiTZvmFcSftgfL09CCAw&usg=AFQjCNHRRkmFBWNuZ20278BmNPomcRh_oQ Seguridad Física Seguridad Física en Centros de Cómputo Commonly used terms: PSIM COP Command & Control SCADA Physical Security Information Management Physical Security Information Management Physical Security Information Management (PSIM): 7 Companies Cómo debe ser la seguridad física de los Centros de Procesos de Datos (CPD,s) 2

3 Physical Security at Microsoft osoft.com%2fdownload%2f5%2ff%2fe%2f5fec361d-fef5-447e-acc b4c2f%2fphysicalsecuritytwp.doc&ei=mumitzcrc_cx0qg66z2zbq&usg=afqjcne7zrlyvy1bke5o a_iwrjq5sc-o_a Physical Security The Four Layers of Data Center Physical Security for a Comprehensive and Integrated Approach EN-US.pdf NORMAS Y TENDENCIAS DE CENTROS DE CÓMPUTO Norma TIA Seguridad en la nube (Cloud Computing) Categoría: Platform Security Cloud Computing Guía para la seguridad Cloud Computing Guía para empresas: seguridad y privacidad del cloud computing Las amenazas de seguridad en la nube (cloud computing) How IT Is Driving Business Innovation with Private Cloud Five Steps to Effective Cloud Planning =web&cd=1&cad=rja&ved=0ccgqfjaa&url=http%3a%2f%2fwww.frox.com%2fdownload.php%3ffile_id%3d 217%26download%3Dtrue&ei=1M8_UdqvA5C70AGA1IHQCg&usg=AFQjCNFwsM47NzjOBjbaYU_0PA1mKlHAL A&bvm=bv ,d.eWU Seven Steps to Effective Public Cloud Serviceshttp:// Seguridad en entornos 'Cloud': Evolución sí, revolución no Seguridad en Cloud Computing La inseguridad en el Cloud Computing, mito o realidad? historicas/1659-la-inseguridad-en-el-cloud-computing-imito-o-realidad.html Guía para la seguridad en áreas críticas de atención en Cloud Computing CION_EN_CLOUD_COMPUTING_V2.pdf Riesgos y amenazas en Cloud Computing mputing.pdf Above the Clouds: A Berkeley View of Cloud Computing Cloud Computing Security Considerations SaaS, PaaS, and IaaS: A security checklist for cloud models Clear Metrics for Cloud Security? Yes, Seriously Hybrid cloud computing security: Real life tales Guía de Seguridad de Cloud Computing Use cases for self-managed cloud data security in the enterprise %20on%20analyzing%20the%20Snowden/NSA%20documents_sshea&track=NL-1820&ad=

4 Mitigar las TI en las sombras requiere más que solo herramientas de seguridad a%20evoluci%f3n%20de%20la%20anal%edtica%20de%20datos_ Best practices for cloud computing adoption : the state of the modern cloud Understanding the risks and returns of enterprise cloud computing 5. Ethical Hacking Categoría: Security Management Footprinting and Reconnaissance Passive Reconnaissance Ethical Hacking and Risk Assessment ftp://ftp.eng.auburn.edu/pub/avk0002/be%20data/papers/ethical%20hacking/detail%20hack.pdf Information Security and Ethical Hacking 3.1 (Window) Ethical Hacking: Teaching Students to Hack Ethical Hacking Techniques Hacking the hacker: How a consultant shut down a malicious user Ethical hacking students guide Security, Trust and Risk Why Ethical Hacking? ETHICAL HACKING MODULO I -MÉTODOS AVANZADOS DE HACKING Y PROTECCIÓN Red Teaming: The Art of Ethical Hacking Ethical hacking: Test de intrusión. Principales metodologías Introduction to Ethical Hacking and Network Defense The codes of Ethical Hacking 19 Extensions to Turn Google Chrome into Penetration Testing tool extensions-to-turn-google-chrome-into-penetration-testing-tool/ Hands-On Ethical Hacking and Network Defense rce=bl&ots=u6kumi81ux&sig=vopomrpnlxgwkhhea4dwfymm2fe&hl=es&sa=x&ei=2cjru_deecg_0agbvigqdg& ved=0cfsq6aewbg#v=onepage&q=ethical%20hacking%20in%20a%20nutshell&f=false 15 Penetration Testing Tools-Open Source Ethical Hacking Tools Plan de contingencia y gestión de incidentes Categoría: Security Management 4

5 Qué es? Para qué? Cómo es? Selecting the "Right" Business Continuity Planning Recovery Strategy Strategy.aspx Business Continuity Management Standards A Side-by-side Comparison Standards-A-Side-by-side-Comparison.aspx Auditing Your Disaster Recovery Plan:A Closer Look At High Tech Crime Will This Be Your Most Likely Disaster in the 21st Century? Continuity in a Virtual World Business Continuity and Resumption Planning (BCRP ) Business Resumption Planning: A Progressive Approach Business Continuity Plan Testing: Considerations and Best Practices Planning.aspx Business Continuity in Distributed Environments: Respuesta ante incidentes: The Politics of Recovery Testing Disaster Recovery Plan Ten steps to a great business continuity exercise Business Continuity Plan B5A827D84E6EDBE/showMeta/0/ Business Impact Analysis Testing & Maintenance Contingency Planning Guide for Information Technology Systems Sample Plans, Outlines and other Plan writing resources Best Practices for Business Continuity and Crisis Communications ISO Standardization-standard Tips for effectively using ISO ISO/IEC 27031: PREPARING FOR CONTINGENCIES AND DISASTERS Gestión de incidentes como parte de ITIL CSIRT Management Incident Management Capability Metrics Establishing and supporting Computer Emergency Response Teams (CERTs) for Internet security 5

6 BEST-PRACTICE RECOMMENDATIONS: IT INCIDENT MANAGEMENT Computer Security Incident Handling ISO/IEC 27035:2011 Information technology Security techniques Information security incident management 7. Computer Forensics Categoría: Security Management Computer forensics Computer Forensics Basics: Frequently Asked Questions Forensic Computer Analysis: An Introduction An Explanation of Computer Forensics Open Source Forensic Tools Windows-based Tools Unix-based Tools Ejemplo de producto: encase Forensic Forensic Discovery Open Source Computer Forensics Manual Siete pasos para un análisis informático Ten Steps to Successful Computer-Based Discovery A Guide To Electronic Evidence Discovery & Its Importance Top Ten Things to Do When Collecting Electronic Evidence Expert s Role in Computer Based Discovery Essentials of Computer Discovery Open Source Digital Forensics Tools Manual Básico de Cateo y Aseguramiento de Evidencia Digital A las puertas de una Nueva Especialización: La Informática Forense Evidencia digital Computación forense Buenas prácticas en la administración de la evidencia digital Performing a Forensic Investigation Electronic Evidence and Search & Seizure "Prosecuting Computer Crimes" Manual Forensically Sound Examination of a Macintosh (Part 1, 2) ucts_id=134 ucts_id=150 e-discovery File Carving Investigating the Crime Scene, Part 1: A Brief Introduction to Computer Forensics and Autopsy Forensic Tools Guidelines on Mobile Device Forensics Solid State Disks Forensics 6

7 Auditoría de Sistemas Categoría: Security Audit, Compliance and Standards Historia de la auditoria Auditoria de Sistemas Auditoria de Sistemas FUNDAMENTOS DE AUDITORIA DE SISTEMAS DE INFORMACION Auditoría informática Conceptos de la Auditoría de Sistemas MANUAL DE AUDITORIA DE SISTEMAS La Auditoria informatica dentro de las etapas de Análisis de Sistemas Administrativos IS Auditing Guidelines Assurance-Guidelines.aspx Standards for Information Systems Auditing Strengthen IT Auditing with COBIT Continuous Auditing: Implications For Assurance, Monitoring, & Risk Assessment Information Systems Audit: The Basics Does the SAS 70 Audit Meet the Requirements of FISMA and NIST? Norma ISO ISO/IEC Controles de seguridad de información ISO/IEC guía para auditar Metodologaía Cobit 9. Firewalls y Sistemas de Detección/prevención de Intrusos en la Red Categoría: Network Security Firewalls Firewalls FAQ Network Security Using Linux/Unix Firewall Firewall Q&A Firewalls Application Firewalls i= &ksc= firewall software The Best Free Firewalls 10 things your next firewall must do Getting the most out of your next-generation firewall Web application firewalls: laying the myths to rest Evaluating network firewalls 7

8 Testing Application Identification Features of Firewalls What is a next-generation firewall? How Traditional Firewalls Fail Today s Networks And Why Next-Generation Firewalls Will Prevail UTM vs. NGFW: Comparing unified threat management, next-gen firewalls Network- vs. Host-based Intrusion Detection Autopsia de una intrusión con éxito Tarros de miel y redes trampa Intrusión Prevention Systems vs Firewalls Do you need an IDS or IPS, or both? Magic Quadrant for Intrusion Prevention Systems Seguridad en redes inalámbricas: Wireless-LANs y VPN Categoría: Network Security WPA2 Security: Choosing the Right WLAN Authentication Method for Homes and Enterprises Seguridad en redes inalámbricas Wireless LAN: Redes inalámbricas Redes inalámbricas Establishing Wireless Robust Security Networks: A Guide to IEEE i Security for Wide Area Wireless Networks 10 ways to prepare for a wireless rollout Build a secure and reliable Wireless LAN Secure your wireless LAN with these tools and techniques Mitos sobre las redes inalámbricas &~page=2&~tab=2 Wireless LAN Risks and Vulnerabilities Securing Wireless LANs with Certificate Services Ventajas del Protocolo de Autenticación Extensible Protegido (Protected Extensible Authentication Protocol, PEAP) Hacking Techniques in Wireless Networks Wireless Security: Past, Present and Future Mobile Security: Is Anyone Listening? Wireless Security: Does It Still Matter? 8

9 Could Hackers Derail Wireless LANs? nts/_static_files/new_mss_enterprisemobsec_0210-web.pdf Wireless LAN Security: What Hackers Know That You Don t Security Tip (ST05-003) Securing Wireless Networks Is there a difference between Wi-Fi and WiMax? Detection and Fortification Analysis of WiMAX Network: with Misbehavior Node Attack VPN Tutorial - An introduction to VPN software, VPN hardware and protocol solutions Redes privadas virtuales Understanding Virtual Private Networking How Virtual Private Networks Work VPN Protocols Networking 101: Understanding Tunneling Tunneling Into the Internet: Understanding VPN's Servicio de red privada virtual (VPN) Comparing MPLS-Based VPNs, IPSec-Based VPNs, and a Combined Approach From Cisco Systems Security & Savings with Virtual Private Networks A history of VPN: Disadvantages of early virtual private networks Sality: Story of a Peer-to-Peer Viral Network (.pdf) ork.pdf 11. Seguridad en Virtualización Categoría: Platform Security Virtualización para Dummies Virtualización para Dummies (y2) Seguridad en la virtualización. Mitos y leyendas L2dhaW5pbmctY29udHJvbC1vZi15b3VyLXZpcnR1YWwtZW52aXJvbm1lbnQucGRm alse McAfee Total Protection for Virtualization Bloqueo de herramientas de virtualización La seguridad en un mundo virtualizado Virtualization Security Security and Virtualization Q&A Virtualization Security 9

10 Strategies for Securing Virtual Machines Virtualization & Security Lower Security Risks with Virtual Patching VMWare Partner Network: Improving Security Meeting the Challenges of Virtualization Security Virtualization Security in Data Centers and Clouds Seguridad en dispositivos móviles y celulares Categoría: Platform Security Top Ten Cell Phone Security Problems Sistemas operativos en el teléfono móvil La gran comparación de los sistemas operativos móviles Sistemas Operativos Móviles Computer, Mobile Phone and PDA Security Overcoming Mobile Enterprise Security Challenges Mobile Handset Security: Securing Open Devices and Enabling Trust Mobile Security Redux: Comparing the Tools A Guide to Mobile Security for Citizen Journalists Mobile phones: your own personal tracking beacon Cell phone tracking examples Eavesdropping mobile calls OMTP Security Threats on embedded consumer devices Android Security Chief: Mobile-phone Attacks Coming Recomendaciones en la seguridad de sus teléfonos móviles Inside Mobile-spy "Spouseware" Malware infected memory cards of 3,000 Vodafone mobile phones Middle on SSL Connections Virus y antivirus para Android Motivation of recent Android Malware ware.pdf De dónde vienen los virus para smartphones, y cómo protegerse? El 75% de los virus para smartphones son para terminales Android What You Need to Know About Smart Phone Tracking ios vs. Android: Which is more secure? Android Hacking and Security, Part 1: Exploiting and Securing Application Components 10

11 Android Hacking and Security, Part 2: Content Provider Leakage The top three threats to mobile applications Biometrics Categoría: Identity and Access Management Biometrics background m/faq/biofaqe.htm What Are Biometrics? On the reconstruction of biometric raw data from template data Controlling Access with Biometrics The Functions of Biometric Identification Devices An Overview of Biometrics Biometrics: A Security Makeover Biometrics - a problem or solution Enforce Security with a Fingerprint Biometric Solution etric_solution.htm Audio and Video-Based Biometric Person Authentication Securing the Biometric Model BIOMETRICS COMPARISON CHART Biometrics: Advancing Effective Security Management A Practical Guide to Biometric Security Technology Biometric security measures and identification: A new enterprise rage? ney%20with%20disruptive%20technology_rlebeaux&track=nl-1808&ad= Biometrics Security Considerations Seeing the Future of Iris Recognition An Introduction to Voice Biometrics /An%20Introduction%20to%20Voice%20Biometrics.pdf Notes On Biometric Template Security Hacker Finds a Simple Way to Fool IRIS Biometric Security Systems Hacker Clones German Defense Minister's Fingerprint Using Just her Photos As hacking grows, biometric security gains momentum Special Report: Port Security Voice Biometrics Biometric security is on the rise Trends CES 2015: Why Biometric IT Is Finally Moving Into Prime Time Seguridad en E-business Categoría: Application Security Information Security Audit in e-business applications 11

12 Collaborative Businesses Succeed on an ECM Foundation aspx E-Business Tools for Active Credit Risk Management - A Market Analysis e-business Security Guideline Seguridad en e-commerce E-Commerce Security -- Components Which Make it Safe Sistema de pago electrónico El dinero electrónico Seguridad de los pagos en línea: Posibilidades de las infraestructuras de clave pública y de las firmas digitales Aproximación al Concepto Jurídico de Dinero Electrónico Medios de pago en Internet Qué es Bitcoin? Cómo asegurar su monedero Los grandes del comercio online rechazan a Bitcoin Bitcoin como medio de pago Criptomonedas, el futuro del comercio electrónico para las empresas y usuarios Ebay dice que Bitcoin amenaza a PayPal Bitcoin, refugio para el lavado de dinero? Divisas o Monedas Virtuales: El caso de Bitcoin 4 Popular Bitcoin Alternatives and How They Compare to Bitcoin PayPal La elección de los medios de pago, clave para vender más en Internet Comercio electrónico, Medios de pago por Internet Capítulos 2 y 3 de Aspectos a tener en cuenta para implantar una solución de comercio electrónico segura y efectiva Todo lo que debería saber sobre el dinero electrónico The True Cost of Downtime Pagos con huella digital revolucionan e-commerce Adiós a las tarjetas: en Suecia prueban el pago con la palma de la mano adis-a-las-tarjetas-en-suecia-prueban-el-pago-con-la-palma-de-lamano.html?utm_source=paymentmedia&utm_medium=twitter E -Money Fraud E -Money ELECTIONIC MONEY; INFORMATION SECUITY, RISKS AND IMPLICATIONS tps%3a%2f%2fwww.isaca.org%2fchapters2%2fkampala%2fnewsandannouncements%2fdocuments%2felectionic% 2520MONEY%2520%2520INFORMATION%2520SECUITY%2520RISKS%2520AND%2520IMPLICATIONS%2520Mr.%25 12

13 20Francis%2520Karuhanga.ppt&ei=udVPU6B_p4jQAfWPgJAK&usg=AFQjCNFLU- WPjnUha7Q5Om2JYedwW0SNLQ&bvm=bv ,d.dmQ 15. BYOD: Bring your own device Categoría: Security Management BYOD: pros y contras de llevar tus propios dispositivos al trabajo La gran tendencia en empresas del mundo: BYOD Las amenazas de seguridad, agravadas por el comportamiento de los jóvenes trabajadores Reflexiones sobre la tendencia BYOD en las empresas The Security Pro s Guide To MDM, MAM, MIM, and BYOD BYOD Security Trend Survey Five security risks of moving data in BYOD era BYOD Risks & Rewards BYOD Smartphones, PCs and Tablets Raise Big Security Risks, Experts Say IBM: BYOD Brings Security Woes, Consumerization & Hassles Over iphone Vs. Android OS New BYOD Threat: That Self-Destructs TEN STEPS TO SECURE BYOD Firms neglect security threat of BYOD BYOD Threats Concern British Privacy Regulator SANS Mobility/BYOD Security Survey BYOD Security: Do You Really Need MDM? BYOD & BYOC Security Concerns may Change Everything BYOD Security: Yes, It IS Possible To Have A Secure Bring Your Own Device Program Cisco Secure BYOD Solution. Best Practices for BYOD on a Budget Why is 'bring your own encryption' (BYOE) important? wasting%20money%20with%20disruptive%20technology_rlebeaux&track=nl-1808&ad= Uso de contenedores como estrategia para gestionar la movilidad y BYOD movilidad-y- BYOD?asrc=EM_EDA_ &utm_medium=EM&utm_source=EDA&utm_campaign= _Big%20data, %20la%20evoluci%f3n%20de%20la%20anal%edtica%20de%20datos_ 16. Seguridad en Internet de las Cosas (IoT) Categoría: Security Management 13

14 OWASP Internet of Things Top Ten The Internet Of Things Has A Growing Number Of Cyber Security Problems Internet of Things Security? The Internet of Things: A CISO and Network Security Perspective Security Concerns for Connected Devices in Internet of Things Era Mobile Cybersecurity and the Internet of Things SECURITY IN THE INTERNET OF THINGS An Implementers Guide to Cyber-Security for Internet of Things Devices and Beyond _an_implementers_guide_to_cyber_security_for_internet_of_things_devices_and_beyond-2.pdf Securing the Future Designing Security for the Internet of Things Achieving end-to-end security in the Internet of Things: Why it s time to embrace carrier-grade cellular IoT IoT Security Building Security in the Internet of Things IoT Privacy & Security in a Connected World The Internet of Things Adds New Complications to Incident Response The Internet of Things: New Threats Emerge in a Connected World How the Internet of Things Changes Your Security Model Understanding The Protocols Behind The Internet Of Things MQTT and CoAP, IoT Protocols IoT Devices and Local Networks The Thing: Embedded Devices Internet Usage and Protocols The Role of the Cloud in IoT The Internet of Things and the RTOS 14