Perimeter Security is Dead, Long Live Resilience

As information and network systems become ubiquitous worldwide, the attack surface is growing increasingly complex, rendering traditional perimeter defense mechanisms ineffective against modern threats. We continue to see an influx of system vulnerabilities and APT attacks, which are nearly impossible to completely eliminate. Meanwhile, the continued proliferation of ransomware groups poses a direct threat to the continuous operations of businesses and organizations, severely impacting critical infrastructure such as healthcare, transportation, energy, and telecommunications. Since it is impossible to achieve 100% protection against all attacks, the key challenge in cybersecurity today is ensuring that systems can adapt to emerging cyber threats, maintain operations and withstand cyber threats, and recover quickly after an incident. This is the core principle of Cyber Resilience.

Since HITCON 2018: "Transforming: Cybersecurity and Resilience", resilience has once again taken center stage. In recent years, events such as the Russia-Ukraine war and the sabotage of undersea cables have underscored the importance of communication security, in addition to traditional cybersecurity. Critical infrastructure, such as undersea cables and low-earth orbit (LEO) satellites, introduces new challenges and discussions in the realm of resilience.

Furthermore, this theme aligns with the Cyber Resilience Act introduced by the European Union. For Taiwan, a major producer of consumer electronics, integrating the Secure-by-Default concept into product development—embedding security into design rather than relying on post-facto mitigation—will be a critical issue worthy of further exploration.

About HITCON

There is no black nor white in the realm of technology. Hackers, as we see them, encapsulate top-notch skills and challenge-seeking spirits. Unlike commercial conferences, HITCON provides a stage for hackers to share the latest and advanced security technology and have discussions with everyone. We take great care of our sessions to make sure that everything published in HITCON is commercial-free research, latest trends, or advanced hacker skills. We also hope that every session is interesting to our attendees.

Hacks in Taiwan Conference (HITCON), a technology-orientated cybersecurity conference annually held in Taiwan, is dedicated to bringing the latest information and the most in-depth know-hows of cybersecurity technologies and practices to the community. Over the years, we have invited worldwide speakers and participants to these great events. Also, we facilitated the communities to exchange technical researches, bleeding-edge hacking technologies, and a wide range of corporate security issues.

About HIT

Since 2005, the Hacks In Taiwan Conference (HITCON) has been organizing annual conferences and also established HIT, a corporate body, to contribute to information security In Taiwan.

HITCON is dedicated to promoting information security. Since 2005, we have started to hold seminars and symposiums to discuss hot issues related to information security worldwide in combination with current affairs, so as to introduce education training courses for professional lecturers at home and abroad, assist governments, enterprises and the public in establishing friendly communication channels and providing training resources, and lead the world in the pulse of information security technology. In recent years, we have set up a non-profit vulnerability reporting platform (ZeroDay), held CTF competition, hacker's real-world escape the room (HackDoor) and enterprise security attack and defense competition (DEFENSE).

We have also supported domestic security communities and worked with the country to cultivate Taiwan's future talents.