Edu (Comsats’ joint workshop on Internet Security attracts participation from the developing world)

September 18, 2015 Off By Web Desk

ISLAMABAD: The trainers and participants of a joint workshop of Comsats called for stronger collaboration for addressing national and regional issues relating to Information and Internet Security.

This consensus was arranged in collaboration with the Islamic Educational, Scientific and Cultural Organization (ISESCO); the Inter Islamic Network on Information Technology (INIT); the COMSATS Institute of Information Technology (CIIT), Pakistan; and the Statistical, Economic and Social Research and Training Centre for Islamic Countries (SESRIC), Turkey.

As many as 35 international young researchers, practitioners, academicians, system administrators and programmers working in the field of Internet/information security belonging to Brunei Darussalam, Jordan, Nigeria, Maldives, Morocco, Tanzania, Pakistan, Palestine and Turkey benefitted from the five-day workshop concluded on Saturday, says a press note issued by the Comsats Headquarters, Islamabad.

The event provided a forum to the participating researchers and professionals to learn about the latest advancements in the field of Internet security; the use of state-of-the-art technologies for protection of network and network accessible resources from different types of software attacks; and working out effective Internet/information security solutions for general public, governmental organizations and commercial enterprises through rigorous risk analyses and security management approaches.

During the workshop, the participants were imparted training by six resource persons from Saudi Arabia, Pakistan and Turkey. These included Dr. Haider Abbas, Research Fellow/Assistant Prof., Center of Excellence in Information Assurance, King Saud University, Saudi Arabia; Dr. Malik Najmus Saqib, Assistant Prof., CIIT, Pakistan; Zafar Mir, Regional Manager, Information Security Risk, HSBC-MENA, UAE; Asad Raza, School of Electrical Engineering and Computer Science (SEECS), NUST, Pakistan; Ugur Altun, Cyber Security Institute, Turkey; and Yakup Korkmaz, Cyber Security Institute, Turkey.

The training modules covered various important subjects relating to organizational security; cryptography and network security; ethical hacking; cyber and information security design principles; and security information and event management systems.

The specific topics covered during the workshop included: Critical Infrastructure Security; Weaponization of the Web; International Standards and Best Practices for Information Security; Risk Assessment – Methodology, Identification, Assessment and Treatment; Information Security Policy/Procedures Writing; Information Assets Identifications & Valuation; Risk Assessment & Treatment; Statement of Applicability; Auditing; Symmetric Key vs. Asymmetric Key Cryptography; Secure email; Ethical Hacking; Metasploit framework; Meterpreter basic; Post exploitation and back door; Pentest; Enumerating Windows Users, Open Ports and Running Services; Hacking Windows Operating Systems; Using Encoders to bypass Antivirus and Firewalls; Cracking WEP, WPA and WPA2; Capturing Insecure Passwords and Windows Systems Passwords; Installation and Configuration Procedure; OSSIM Dashboard; Advanced Persistent Threats (APT); Integration with Snare and Nessus; Prevention Methods; Information Security Design Principles; Emerging Cyber Threats and their Significance; Dissecting a Cyber Attack; Various Phases in Planning a Cyber Attack; Recent Distributed Denial of Service Attacks; and Possible Mitigation Solutions to Service Attacks.