Big ValleyBig ValleyBig ValleyBig Valley
  • ABOUT
  • SERVICES
  • CASE STUDIES
  • CULTURE
  • RESOURCES
    • Big Valley Marketing Blog
    • Pressing Matters Podcasts
    • Top Conversations in Tech
    • AI Research
  • CONTACT

DNS Security Evolution with Dr. Mockapetris

    Home Story + Content DNS Security Evolution with Dr. Mockapetris
    NextPrevious

    DNS Security Evolution with Dr. Mockapetris

    By Karen Burke | Story + Content, Tech Industry Events | Comments are Closed | 10 April, 2024 | 1

    With AI expected to dominate this year’s RSAC sessions and keynotes, we spoke with Dr. Paul Mockapetris, the inventor of the Domain Name System (DNS), about the role of AI on cybersecurity, the latest about DNS-based risks, and what it takes to become an impactful leader in the tech industry. Note: This interview has been lightly edited and condensed for clarity.

    AI

    AI itself is not new. There was a huge wave of AI around 1985 with the Strategic Computing Initiative, but in 1990 that wave wasn’t observable anymore. I think much of the current success of AI is due to silicon providing more processing power than any new deep understanding.

    AI aids both sides [defenders and adversaries] in the cyber conflict. While we’re going to have an era of surprises with AI and security, one area today where it is already helping adversaries is phishing attacks. AI-generated phishing attacks will typically pass the Turing Test substantially in 2024. AI will tailor the attacks with personal information. Users can no longer identify machine-generated copy from human-generated copy. There are significantly fewer clues, such as misspellings, etc. As a result, phishing attacks have become almost impossible to detect by inspecting the content.

    There is no playbook for AI right now and for the foreseeable future. I think the government needs to try and regulate it, but it’s not going to be easy.

    Cybersecurity

    First of all, you should not depend on any single tool. And remember that the security of your vendors is as important as your own. All the big names in technology have been hacked at one time or another. So, you have to be cognizant of that and try to figure out how to assemble your infrastructure so you don’t have a single point of failure so even if something is infected, perhaps harm will be prevented. Successful security works in layers that can protect each other; it works in series rather than parallel.

    DNS

    When I think of DNS, I have two axes for improvement.  First, improve what we have and make it more reliable and secure. The IETF is continuing to do that, and for example, there’s work to change how a parent set of domains coordinates with children, the so-called DELEG proposal. The second axis is: how do you create something that’s a totally new capability?  You need a capability that people really want so that they will actually use it and then the mechanism to do it. For example, I think we need to think about more ways to make DNS domain entities that can figure out how to cooperate with each other.

    Regarding threats, domain abuse is not going away, but having the government decide isn’t ideal because there’s no universal definition of “bad stuff.” Governments will continue to shut down obvious criminals.  But beyond that, the ruling authorities can’t, won’t, and shouldn’t impose who’s okay and not okay. Instead, we must figure out how to empower the end users to make those decisions. Typically, since maintaining threat intelligence is hard work, they will delegate to a trusted third party.

    As long as you have vulnerable devices, you will have DDoS. You can think about various ways to regulate against it, but DDoS is always going to be with us. And nation-state actors will continue to use botnets to commit crime because the cost of a botnet is fixed and the amount of damage you can do depends on how long it takes the FBI or whomever to take it down.

    Leadership

    To be an impactful leader, I think you first need to study the great ones. I’ve benefited incredibly from my colleagues and mentors including Dave Farber, Nicholas Negroponte, Bob Kahn and others.  Once you tell the people that you’re trying to lead what you want, you need to get mostly out of the way so they can do it. And remember that you’ve got to hire people that are smarter than you or at least know more about something than you do.

    Obtaining life balance in the tech industry is hard, but not impossible. People argue that success as a startup is really a sprint, not a marathon, or it’s really a marathon, not a sprint. I’ve heard both lectures many, many, many times, and I think the answer is that it’s both. You’ve just got to figure out how to save yourself for when the sprint matters.

    *****

    We’re attending RSA Conference, are you? Schedule a meeting with our team by reaching out to hireus@bigvalley.co.

    ai, artificial intelligence, cybersecurity, dns, RSA, RSA Conference, security

    Karen Burke

    More posts by Karen Burke

    Related Post

    • Top Cybersecurity Trends from Black Hat 2023

      By Karen Burke | Comments are Closed

      Co-authored by Andy Shane and Joshua Swarz.  During her opening Black Hat 2023 keynote, “Guardians of the AI Era: Navigating the Cybersecurity Landscape of Tomorrow,” Maria Markstedter, Founder and CEO, Azeria Labs, said, “The corporateRead more

    • Client Partner Michael Lane with Media and Influencer Leads Andy Shane and Joshua Swarz photographed standingin front of the RSA Conference 2022 sign at the Moscone Center.

      Cybersecurity Highlights from RSA 2022

      By Andy Shane | Comments are Closed

      Co-written with Joshua Swarz.  More than 26,000 attendees, including 600+ speakers, 400+ exhibitors, and over 400 members of the media made their way to San Francisco’s Moscone Center and surrounding hotels for the first in-personRead more

    • RSA Conference 2022 Event Signage

      Cybersecurity Insights from RSA 2022

      By Joshua Swarz | Comments are Closed

      As the curtain goes up on the first in-person RSA Conference since 2020, this year marks something special.    It feels like a lifetime ago since the last show, and a lot has since happened inRead more

    • AI in Cybersecurity: RSAC 2023 Focus

      By Joshua Swarz | Comments are Closed

      As the curtain goes up on RSA 2023, this year in cybersecurity has started off red hot – from Russia’s continued attacks against Ukraine via WhisperGate, to the announcement of ChatGPT which has sparked aRead more

    • RSAC 2023: Media Insights from Top Journalists

      By Andy Shane | Comments are Closed

      By Big Valley Media + Influencer Leads Andy Shane and Josh Swarz Spotlight: Meet the Media Covering RSA With the RSA Conference fast approaching, we thought it would be fun and insightful to ‘turn theRead more

    NextPrevious

    Helping technology companies for ten years
    to grow, win, and lead through effective,
    expert-driven marketing and communications.

    Connect

    I want to hire Big Valley
    hireus@bigvalley.co

    I want to work for Big Valley
    workwithus@bigvalley.co

    Follow us
    • LinkedIn

    Recent Posts

    • Top Conversations in Tech: September 2024 Trends

      Is this our new normal? Welcome to Top Conversations in Tech, where

      4 November, 2024

    • How B2B Companies Can Harness AI Without Losing the Human Touch

      By Charles Cooper   B2B tech companies face unique challenges when incorporating

      30 October, 2024

    • Top Conversations in Tech: August 2024 Trends

      Regulations, Fraud, and the Election Welcome to Top Conversations in Tech, where

      30 September, 2024
    Copyright 2024 Big Valley Marketing | All Rights Reserved
    • ABOUT
    • SERVICES
    • CASE STUDIES
    • CULTURE
    • RESOURCES
      • Big Valley Marketing Blog
      • Pressing Matters Podcasts
      • Top Conversations in Tech
      • AI Research
    • CONTACT
    Big Valley