Protection of customer privacy and security has become a dominant factor in the technology operation of major financial institutions. Assessment and management of security risk is being incorporated as an integral part of the business planning process. Fraud prevention and management has likewise taken on a different perspective where the Internet channel is concerned.

Growth in the use of Internet for financial transactions will continue to expand. Financial institutions need to implement multi-pronged proactive capabilities to protect their customers and to manage the risks for the institutions.

This talk will give a number of amusing illustrationsfrom financial services, on-line marketing, and industrial automation, of the need for a new security management technology for intrusion detection. It will then illustrate the basic concepts underlying such a technology, called Complex Event Processing (CEP). CEP technology is described in Dr. David Luckham's new book, "The Power of Events".

In this session, Joe Tomasello, senior product manager for the Avalanche product line at Spirent Communications, will use real-world case studies to show how corporations are using security testing to protect their networks and their investments.

The audience will learn best testing practices gleaned from enterprise security case studies:

• How to devise a test plan
• Which metrics will provide the best picture of a system¡¦s reliability
• What are the critical features to test
• How often should testing be done to keep security up-to-date

The work presented in this talk is on the defense of DDoS attacks.  To better understand DDoS attacks and to design effective and appropriate DDoS defense and response, in the first part of this talk, we elaborate the causes of DDoS attacks, types of attack streams, and commonly used attack tools. Afterwards, we move on to identify fundamental challenges to DDoS defense and investigate existing approaches to DDoS attacks.  The second part of this talk concerns with the design of DDoS defense mechanisms. In particular, it explores defensive approaches from three distinct directions, namely victim-end defense, attack traceback and attacker-end defense. The proposed victim-end defense scheme aims at identifying spoofed IP packets which dominate DDoS attack traffic. This allows Internet servers to sustain their services to legitimate clients when under attack. With the presence of IP spoofing, the source IP addresses inscribed in DDoS attack packets are usually untrustworthy, and DDoS attackers run at low risk of being discovered. To deter DDoS attacks, it is imperative to locate origins of DDoS attack flows, and therefore the second focus of our research is to trace the sources of spoofed DDoS attack flows even if there is only one single packet in each attack flow. With the proposed traceback scheme, an Internet path traversed by an IP packet can be encoded with a small number of bits, and transmitted to the packet's destination along with the packet itself or in a few additional ICMP packets. The third defense approach targets at detecting DDoS attack flows at their sources and confining attack packets at source networks. With a widespread deployment of this scheme, we can filter out attack packets from entering the Internet and subsequently reduce possible network congestions caused by attack streams.

As E-Taiwan project had successfully made wide adoption of ICT all over Taiwan and M-Taiwan project was launched to ensure intensive wireless coverage. A planned S-Taiwan project is being cooked to resolve ICT security issues as ICT prevails wirelessly. After all, Taiwan aims to deliver a foreseeable future of enjoying a high quality living space anywhere and anytime for its people.

In reaching the above goals, dual network is the most key enabler for driving the digital convergence of datacom and telecom. III has been actively involved in delivering key components in dual network to address 4A1I (authentication, authorization, auditing, accounting plus identification) in order to ensure wireless data availability and security as we moved into a trust, reliable and sustainable ubiquitous information society.