RSA Conference 2017: Reporter's Visual NotebookThe Greatest Cybersecurity Ever - Hype, Hope and Humor in San Francisco
Every year, information security professionals flock to San Francisco for the annual RSA Conference.
See Also: You've Got BEC!
Here are some visual highlights:
Record-Setting Attendance Numbers
Organizers say the information security conference, now in its 26th year, drew a record-setting 43,000 attendees to its keynotes, peer-to-peer sessions, track sessions, tutorials and seminars (see 11 Takeaways From RSA Conference 2017).
Hacking's Greatest Hits
RSA launched in a visual and sonic riot - DJ, drummer, and finally the hip-hop duo Black Violin, who played before a montage of cybersecurity news headlines.
John Lithgow Salutes You
Surprise guest John Lithgow, aka self-described "serial killer, alien high commander, transgender football player, children's book writer" and current Winston Churchill in "The Crown," saluted attendees' cybersecurity contributions in an opening monologue.
The conference included more than 500 sessions featuring more than 700 speakers. Keynotes were held in the Moscone West building, which also - with Moscone North and Moscone South - was the site of numerous presentations.
The nearby Marriott Marquis, which includes a subterranean - and what feels to be subway-level - massive conference space was also the site of numerous presentations.
RSA Conference 2017 included 15 keynote presentations, held in Moscone West.
Keynotes ranged from Eric Schmidt, executive chairman of Alphabet, discussing artificial intelligence, and RSA's CTO, Zulfikar Ramzan, talking incident response, to Rep. Michael McCaul, R-Texas, discussing how the new administration must work with Congress to combat emerging cybersecurity threats, and a panel of top cryptographers discussing everything from post-quantum cryptography to combatting vote fraud.
The Greatest Crypto Ever
The potential impact of Donald Trump's still-new presidency dominated many RSA discussions, sometimes in humorous ways. The Cryptographers' Panel moderator Paul Kocher, president and chief scientist of the cryptography research division of manufacturer Rambus, detailed a new proposal for what he calls "Trumpcryption."
"It's a scheme that keeps your information secure but it has a backdoor that outputs alternative facts," Kocher explained. "It's a zero knowledge scheme."
Numerous RSA speakers, responding to Trump's executive order on immigration, saluted immigrants' contributions to the IT and information security space. Microsoft CEO and president Brad Smith, for example, gave a shout-out to the many and varied backgrounds of Microsoft's employees, saying they hail from 157 countries and make him feel like he works at "the United Nations of information technology."
Bet on Chaos
The political sphere aside, organizations and individuals are facing increasing amounts of information security-related chaos (see Cybersecurity Chaos Dominates RSA Conference Discussions).
Some of the dominant themes that I kept hearing at this year's RSA centered on:
- Internet of things devices plagued by poor security and targeted by malware such as Mirai;
- Ransomware, which increasingly targets not just endpoints but also servers and backups;
- Data breaches, which continue disrupt IT operations and data security;
- The continuing challenge of verifying the integrity of data.
Also on the chaos front, vast parts of the Moscone Center - owned by the city and county of San Francisco - remain under construction, as was the case with the RSA 2016 conference. For members of the media, that has meant decamping to the W Hotel for meetings.
ISMG Video Interviews
This year, however, Information Security Media Group also created a temporary studio in a nearby membership-based, do-it-yourself workshop called TechShop.
Experts on Camera
At our video studio, ISMG conducted dozens of interviews with everyone from FBI cybercrime investigator M.K. Palmore and Cisco chief privacy officer Michelle Dennedy to secure development expert Chris Wysopal and Gartner's Avivah Litan.
Hype and Hope
RSA wouldn't be complete without an inordinate amount of presentations - as well as vendors - focusing on some technology purported to be the latest silver bullet. My nominations for this year's most overhyped RSA technology include:
- Artificial intelligence
- Machine learning
- User behavior and user behavioral analytics
Some old hands at the conference didn't hold fire on the supposed upsides of some of the silver-bullet technologies being discussed.
"I'm skeptical that AI will have much of an impact on security," said Israeli cryptographer Adi Shamir - the "S" in the RSA public-key cryptographic algorithm, during the Cryptographers' Panel keynote discussion. "If you talk about 15 years from now, when AI systems are going to be super intelligent, I can foresee when you give all of the information about cybersecurity to the AI and it will think about it and then say, in a very calm voice, 'In order to save the internet, I'll have to kill it.'"
Already, some chat bots - thanks to AI techniques - are becoming difficult to distinguish from real people. That led co-panelist Whitfield Diffie, a pioneer in public-key cryptography, to predict that AI bots would become incredibly useful, albeit for "automated social engineering."
Multiple Expo Floors
The RSA expo floors featured more than 550 companies spread across two underground halls - known as Moscone North and Moscone South - beneath the city's Yerba Buena Gardens, as well as the three-level Moscone West exhibition hall on nearby 4th Street. The nearby Marriott Marquis, meanwhile, included the Early Stage Expo, highlighting emerging startups.
Identity platform maker UnifyID bagged the award for "RSA Conference 2017's Most Innovative Startup."
Let's Get Physical
With sessions spread across so many locations, cue walking - lots of walking. Which is perhaps not a bad turn of events, given all of the vendor-sponsored lunch trucks dispensing free food.
This being San Francisco, of course, alternative methods of transportation were also available.
Additional Summit Insight:
Hear from more industry influencers, earn CPE credits, and network with leaders of technology at our global events. Learn more at our Fraud & Breach Prevention Events site.