>>from around the globe. It's the Cube with digital coverage of you. I path live the release show brought to you by you. >>I path Hi. Welcome back to this special R p A drill down with support from you. I path You're watching The Cube. My name is Dave Volante and Bobby CMO. You know I passed Bobby. Good to see you again. Hope you're doing well. Thanks for coming on. >>Hi, Dave. It's great to see you as well. It's always a pleasure to be on the Cube and even in the virtual format, this is really exciting. >>So, you know, last year at forward, we talked about the possibility of a downturn. Now nobody expected this kind of downturn. But we talked about that. Automation was likely something that was going to stay strong even in the downturn. We were thinking about potential recession or an economic downturn. Stock market dropped, but nothing like this. How are you guys holding up in this posted 19 pandemic? What are you seeing in the marketplace? >>Yeah, we certainly we're not thinking of a black swan or rhino or whatever we call this, but, you know, it's been a pretty crazy couple of months for everybody. You know, when When this first started, we were like everybody else. Not sure how it impact our business. The interesting thing has been that you're in code. It actually brought a reality check through. A lot of companies and organizations realize that it's very few tools to respond quickly, right? Bond with, you know, cost pressures that we're urgent or preserving revenue, perhaps, or responding to Ah, strange resource is, you know, in all centers, or or built to support. You know, the surge in in, um, in the healthcare community. And so r p a became one of those tools that quickly waas knowledge and adopted. And so we went out two months ago to go find those 1st 1st use cases. Talk about him, then. You know, 1st 30 days we had 50 in production, right? Companies, you know, great organizations like Cleveland Clinic, right? You know where they use their parking lot? Give the first tests the swab tests, right of, uh, well, who have proven right? You know, they had a line of 88 hours by, you know, putting a robot in place in two days. They got that line down by 80 or 90% right? It is a huge hit as we see that kind of a kind of benefit all across right now in the world. Right now we have. We were featured in The Wall Street Journal recently with nurses and a large hospital system in Ireland called Matter. The nurses said in the interview that, you know they have. They were able to free up time to be a patient's right, which is what they're there for, anyway, thanks to robots during this during this emergency. So I think you know, it's it's definitely raise The awareness that that this technology is provides an amazing time to value, and that's it's pretty unprecedented in the world of B two B software. >>I want to share some data with you in our community is the first time we've we've shown this. Guys would bring up the data slide, and so this is ah, chart that e. T are produced. There's enterprise technology research. They go out of reporter. They survey CIOs and I T practitioners and a survey in different segments and the use of methodology Net score. And this is sort of how method how Net scores derived. And so what this chart shows is the percent of customers that responded there were about 125 You I path customers that responded. Are you adopting new U I path? Are you increasing spending in 2020? Are you planning on flat spending or decreasing spending? Are you replacing the platform of beacons? And so basically, we take the green, uh, subtract the read from the green, and that gives us net score. But the point is that Bobby abouts about 80% of your customers are planning to spend Maurin 2020 than they spent in 2019 and only about 6% of planning on spending less, which is fairly astounding. I mean, we've been reporting on this for a while in the heat nous in the in the automation market generally and specifically. But are you seeing this in the marketplace? And maybe you could talk about why? >>Well, we just finished our first fiscal quarter into the end of April, and we're still privately held, so we can be, uh, find some insights of our company, but yeah, the the pace of our business picked up actually in in the mark. April timeframe. Um, customer adoption, large customer adoption. Um, the number of new new companies and new logos were at a record high. And, you know, we're entering into this quarter now, and we have some 20 plus $1,000,000 deals that are like that. It closed, right? I mean, that's probably a 30% increase Versus what? How many we have today alone. Right? So our business, you know, is is now well over 400 million and air are we ended last year, 3 60 and the growth rate continues fast. I think you know what's interesting is that the pace of the recode world was already fast, right? The the luxury of time has kind of disappeared. And so people are thinking about, you know, they don't have they can't wait now, months and years for digital transformation. They have to do things in days and days and days and weeks. And and that's where our technology really comes into play. Right? And and and it actually is also coming to play well in the world of the remote workforce. Reality two of the ability for remote workers to get trained while they're home on automation to build automation pipelines to to build automation. Now, with our latest release, you can download our podcast, capture and report what you're doing, and it basically generates the process definition document and the sample files, which allow for faster implementation by our center of excellence. So what's really happening here? We see it is a sense of urgency coming out of this. Prices are coming down the curve. Hopefully, now this is of urgency that our customers are facing in terms of how they respond, you know, and respond digitally to helping their business out. And it varies a lot by industry, our state and local business was really thinking was not going to be the biggest laggard of any industry picked up in a significant way in the last couple of months, New York State, with Governor Cuomo, became a big customer of ours. There's a quote from L. A County, see Iot that I've got here. They just employed us. It's public, this quote, he said. Deputy CIO said Price is always the mother of invention. We can always carry forward the good things they're coming out of this crisis situation. He's referring to our P A is being a lesson. They learned hearing this, that they're going to carry forward. And so we see this state of Oklahoma became a customer and others. So I think that's that's what we're seeing kind of a broad based. It's worldwide. >>You're really organizations can't put it off anymore. I think you're right. It sort of brought forward the future into the present. Now you mentioned 360 million last year. We had forecast 350 million was pretty good for you guys released, so it's happy about that. But so obviously still a strong trajectory. You know, it might have been higher without without covert. We'll never know, but sort of underscores the strength of the space. Um, and February you guys, there was an article that so you're essentially Theo Dan, Daniel Hernandez was quoted. Is that on hold now? Are you guys still sort of thinking about pressing forward or too early to say right? >>Yeah. I mean, I think I think the reality is we have a very, very strong business. We've raised, you know, significant money from great investors, some of which are the leading VCs in the world. and also that the public company investors and, you know, we have, ah, aggressive plan. We have an aggressive plan to build out our platform for hyper automation to continue. The growth path is now becoming the center of companies of I, T and Digital Strategies, not on the side. Right. And so to do that, you know, we're gonna want capital to help fuel our our our ambitions and fuel Our ability to serve our customers and public markets is probably a very, very logical one. As Daniel mentioned in a in a A recent, uh, he's on Bloomberg that he definitely sees. That is ah, maybe accelerating that, You know, we're late Last year, we started focusing on sustainable growth as a company and operational regular. These are important things in addition to having strong growth that, you know, a long term company has to have in place. And I can tell you, um, I'm really excited about the fact that we, you know, we operate very much like a public company. Now, internally, we you know, we do draft earnings releases that aren't public yet, and we do mock earnings, earnings calls, and we have hired Thomas Hansen is runs our chief revenue officer with storage backgrounds. And so you're gonna interview as well. These are these are these are the best of the best, right? That joint, they're joined this company, they're joining alongside the arm Kalonzo the world that are part of this company. And so I think, Yeah, I think it's an AR It's likely. And and it's gonna We're here to be a long term leader in this decade of automation. >>Well, and one of the other things that we forecast on our breaking analysis we took a look at the total available market kind of like into it. Early days of service Now is you know, people were really not fully understanding the market and chillin C it is is quite large, so video. So when we look at the competition, you know, you guys, if I showed you the same wheel with automation anywhere, it would also look strong. You know, some of the others, maybe not a strong but still stronger than many of the segments. I mean, for instance, you know, on Prem hardware. You know, compared with that and you know the automation space in general across the board is very, very strong. So I wonder if maybe you could talk a little bit about how you guys differentiate from the competition. How you see that? >>Yeah, I think you know, we've We've come a long way in the last three years, right? In terms of becoming the market leader, having the highest market share, we're very open and transparent about our numbers with We've long had the vision of a robot. Every person, uh, and and we've been delivering on that on on that vision and ah, building out a platform that helps companies, you know, transform digitally enterprise wide. Right. So, you know, I don't see any of our competitors with a platform for hyper automation like this. We have an incredible focus on the ability to help people actually find the ideas, build the pipeline, score the pipelines and integrate those with the automation center of excellence. Right? We have the ability now with our latest release to help test automation testers now not only in the world of art A but actually take robotic robots and and architecture into doing test automation. The traditional test automation market in a much better and faster way So you know, we're innovating at a pace that that it is, I think, much faster than I don't. I don't know automation anywhere. I won't share any their numbers. You know, who knows what the numbers are. We have guesses, but I'm fairly certain that we continue to gain share on them. But you know, what's most important is customer adoption, and we've also seen a number of customers switch from some of our competitors to us. Our competitors are undercapitalized and middle. Invest in R and D. This is an investment area, really build a platform out from our competitors have architectures that are hard to upgrade, right? This has been a big source of pain for companies that have been on our competitors. Where upgrades are difficult requires them to retest every time where our upgrades are very rolling, you know, are very smooth. We have an insider program which you know, I don't think any of our competitors have. If you go inside that you had pat that your customer every single bit every single review betting, private preview, public preview and general availability, you can provide feedback on and the customers can score up new ideas. They drive our our roadmap. Right. And this is I think we operate differently. I think our growth is a is a good indication of that. And, you know, and there are new competitors like Microsoft. But I think you know, you know, medium or long term, you know, they're gonna make effort around our, um and you know, they're behind the, um, automation is really hard. The buried entry here is not it's not. Not easy. And we're going to keep me on that platform, play out, and I think that's ah, that's what makes us so different. Um and ah, you know, we have the renewal numbers, retention numbers, expansion numbers and and the revenue numbers to improve that, uh, you know, we're number one. >>Well, so I mean, there's a lot of ways to skin the cat, and you're right. You guys are really focused, you know, you automation anywhere really focused on this space, and you shared with us how you differentiate there. But as you point out Microsoft, they sort of added on I had talked to Allan, preferably the day from paga. You know, those guys don't position themselves as our PC, but they have r p A. I talked to, you know, our mutual friend Robert Young John the other day, right? They're piling onto this this trend, right? So why not? Right, It's it's ah, it's hot. But so, you know, clearly you guys are innovating there. I want to talk about your vision before we get into the latest product release two things that I would call out the term hyper automation with, I think is the Gartner term. And then it will probably stick. And then this this idea of a robot for every person How would you describe your vision? >>Yeah, I mean, we think that robots can and improve, you know, the the lives of of or pers everywhere, right? We think in every every function, every role. And we see that already, the job satisfaction and the people don't want to do the mundane, repetitive work, right? The new hires coming out of college, you know, they're gonna be excel and sequel server. We're no longer the tools of productivity. For them, it's it's your path. We have business. Schools that have committed top tier business schools have committed to deploying your path or to putting you're passing every force in the school these students are graduating with the right path is their most important skill going into companies. And they're gonna expect to be able to use robots within their companies in their daily lives. A swell. So, you know, we have customers today that are rolling out a robot for every person you know. We had Ah, Conoco Phillips on just earlier in our launch, talking about citizen developers, enabling says, developer armies of developers and growing enterprise wide. See, Intel was on as well from Singapore, the large telco. They're doing the exact same thing. So I think you know, I think this is this is this is this is about broad based digital transformation. Everybody participating And what happens is the leading companies to do this, you know, they're going to get the benefit of benefits out of it. It can reinvest that productivity, benefits and data science and analytics and serving customers and in, you know, and and, ah, new product ideas. And so, you know, this is this. You know, automation is going to fuel now the ability for companies to really differentiate and serve their customers better. And it's only needed enterprise wide view on it that you really maximizing. Take Amazon, for example, a great customer during during this prices. You know, they're trying to hire hundreds of thousands of people, right? Help in the fact that in their in their distribution centers elsewhere, this all served demand to help people who like you and I home or ordering things that we need, right? Well, they're use your path robots all throughout their HR hr on boarding HR recruiting HR administration And so helping them has been a big during this prices surge of robots is helping them actually hire workers. You know another example of Schneider Electric and amazing customer of ours. They're bringing their plants, their manufacturing facilities, implants back online faster by using robots to help manage the PPE personal protective equipment in the plant allow people workers to get back to work faster. Right? So what's happening is is, you know in that in those cases is your different examples of robots and different functions, right? In all cases, it's about helping grow a company faster. It's about helping protect workers. It's about helping getting revenue machines back up and running after Kobe is going to be critical to get back to work faster. So I'm I'm really excited about the fact that as people think about automation across the organization, the number of ideas and Aaron opportunities for improvement are are we're just starting to tap that potential. >>Well, this is why I think the vision is so important because you're talking about things that are transformative. Now, as you well know, one of the criticisms of RPS. So you have people, the suppliers and just yeah, we, you know, looking at mundane tasks, just automating mundane tasks like sometimes paving the cow path and say, you're very much aware of that criticism. But if I look at the recent announcements, you're really starting to build out that vision that you just talked about. They're really four takeaways. You sort of extending the core PAP platform, injecting AI end some or and more automation end to end automation really taken that full lifestyles lifecycle systems view and the last one is sort of putting it talks to the robot. For every person that sort of citizen automation, if you will, that sort of encompasses your product announcements. So it wasn't just sort of a point Announcement really is a underscores the platform. I wonder if you could just What do we need to know about you guys? Just that out. >>So we think about how we think about the rolls back to a division of robots person how automation can help different roles. And so this product launch $20 for this large scale launch that you just articulated, um, impacts in a fax and helps many different kinds of new roles Certainly process analysts now who examined processes, passes performance improvements. You know, they're a user of our process mining solution in our past. Find a solution that helps speed on our way. Arpaio engine, no testers and quality engineers. Now they can actually use studio pro and actually used test robots are brand new, and our new test manager is sort of the orchestration and management of test executions. Now they can participate in in leveraged power of robots and what they do as well. And we kind of think about that, you know, kind of across the board in our organization across the platform. They can use tools like you have path insights in Europe. If you're an analyst or your, uh ah. B I, this intelligence person really know what's going on with robots in terms of our wife for my organization and provide that up to the, you know, sea levels in the board of directors in real time. So I think that's that's the big part. Here is we're bringing, and we're helping bring in many, many different kinds of roles different kinds of people. Data scientist. You mentioned AI. Now data scientists can build a model. The models applied to ai fabric an orchestrator. It's drag and drop by our developer in studio, and now you can turn, you know, a a mundane, rules based task right into an experience based ones where a robot can help make a decision right. Based on experience and data, they can tweak and tune that model and data scientists can interact, you know, with the automation is flowing through your path. So I think that's how we think about it, right? You know, one of the great new capabilities, as well as the ability to engage line workers, dispatch out workers If you're a telco or or retail story retail store workers you know the robots can work with humans out in the field. We've got one real large manufacturer with 18,000 drivers in a DST direct store delivery scenario. And you know the ability for them to interact with robots and help them do their job in the field. Our customers better after the list data entry and data manipulation, multiple systems. So I this is this makes us very unique in our vision and in our execution. And again, I don't I have not heard of a single ah example by competitors that has any kind of a vision or articulation to be able to help a company enterprise wide and, you know, with the speed and the and the full, full vision that we have. >>Okay, so you're not worried about downturns. You can't control black swans Anyway, you're not worried about the competition. It feels like you know, you're worried about what you're worried about. You want about growing too fast. Additionally, deploying the the capital that you've raised. What worries you? >>Yeah. You know, we're paranoid or paranoid company, right? And when it comes to the market and and trying to drive, I think we've done a lot to help actually push the rock up the hill in terms of really, really driving our market, building the market, and we want to continue that right and not let up. So there's this kind of desire to never let up, right? Well, we always remind ourselves we must work harder, must work harder. We must work harder. And that's that's That's sort of this this mentality around ourselves, by the smartest people. Hire the smartest people you work with our customers, our customers are priority. Do that with really high excellence and really high sincerity that it comes through and everything that we do, you know, to build a world class operation to be, you know, Daniel DNS. When I first met him, he said, You know, I really want to be the enemy of the great news ecology company that serve customers really well. And it was amazing things for society, and and, you know, we're on that track, but we've got, you know, we're in the in the in the early innings. So, you know, making sure that we also run our business in a way that, um, you know, uh, is ready to be Ah, you know, publicly successful company on being able to raise new sources of capital to fund our ambitions and our ideas. I mean, you saw the number of announcements from our 24 release. It reminded me of an AWS re invent conference, where it's just innovation, innovation, innovation, innovation. And these are very real. They're not made up mythical announcements that some of our competitors do about launching some kind of discovery box doesn't exist, right? These are very real with real customers behind them, and and so you know, just doing that with the same level of tenacity. But being, you know, old, fast, immersed and humble, which are four core culture values along the way and not losing that Azeri grow. That's that's something we talk about maintaining that culture that's super critical to us. >>Everybody's talking about Okay, What What's gonna be permanent? Postpone it. I was just listening to Julie Sweet, CEO of Accenture, and she was saying that, you know, prior to Covic, they had data that showed that the top 25% of companies that have leaned into digital transformation were outperforming. You know, the balance of their peers, and I know question now that the the rest of that base really is going to be focused on automation. Automation is is really going to be one of those things that is high, high priority now and really for the next decade and beyond. So, Bobby, thanks so much for coming on the Cube and supporting us in this in this r p. A drill down. Really appreciate it, >>Dave. It's always a pleasure as always. Great to see you. Thank you. >>Alright. And thank you for watching everybody. Dave Volante. We'll be right back right after this short break. You're watching the cube. >>Yeah, yeah, yeah, yeah.

>> Announcer: Live from New York City It's TheCube. Covering CyberConnect 2017. Brought to you by Centrify and the Institute for Critical Infrastructure Technology. >> It got out of control, they were testing it. Okay, welcome back everyone. We are here live in New York City for CyberConnect 2017. This is Cube's coverage is presented by Centrify. It's an industry event, bringing all the leaders of industry and government together around all the great opportunities to solve the crisis of our generation. That's cyber security. We have Cricket Liu. Chief DNS architect and senior fellow at Infoblox. Cricket, great to see you again. Welcome to theCUBE. >> Thank you, nice to be back John. >> So we're live here and really this is the first inaugural event of CyberConnect. Bringing government and industry together. We saw the retired general on stage talking about some of the history, but also the fluid nature. We saw Jim from Aetna, talking about how unconventional tactics and talking about domains and how he was handling email. That's a DNS problem. >> Yeah, yeah. >> You're the DNS guru. DNS has become a role in this. What's going on here around DNS? Why is it important to CyberConnect? >> Well, I'll be talking tomorrow about the first anniversary, well, a little bit later than the first anniversary of the big DDoS attack on Dyn. The DNS hosting provider up in Manchester, New Hampshire. And trying to determine if we've actually learned anything, have we improved our DNS infrastructure in any way in the ensuing year plus? Are we doing anything from the standards, standpoint on protecting DNS infrastructure. Those sorts of things. >> And certainly one of the highlight examples was mobile users are masked by the DNS on, say, email for example. Jim was pointing that out. I got to ask you, because we heard things like sink-holing addresses, hackers create domain names in the first 48 hours to launch attacks. So there's all kinds of tactical things that are being involved with, lets say, domain names for instance. >> Cricket: Yeah, yeah. >> That's part of the critical infrastructure. So, the question is how, in DDoS attacks, denial-of-service attacks, are coming in in the tens of thousands per day? >> Yeah, well that issue that you talked about, in particular the idea that the bad guys register brand new domain names, domain names that initially have no negative reputation associated with them, my friend Paul Vixie and his new company Farsight Security have been working on that. They have what is called a -- >> John: What's the name of the company again? >> Farsight Security. >> Farsight? >> And they have what's called a Passive DNS Database. Which is a database basically of DNS telemetry that is accumulated from big recursive DNS servers around the internet. So they know when a brand new domain name pops up, somewhere on the internet because someone has to resolve it. And they pump all of these brand new domain names into what's called a response policy zone feed. And you can get for example different thresh holds. I want to see the brand new domain names created over the last 30 minutes or seen over the last 30 minutes. And if you block resolution of those brand new domain names, it turns out you block a tremendous amount of really malicious activity. And then after say, 30 minutes if it's a legitimate domain name it falls off the list and you can resolve it. >> So this says your doing DNS signaling as a service for new name registrations because the demand is for software APIs to say "Hey, I want to create some policy around some techniques to sink-hole domain address hacks. Something like that? >> Yeah, basically this goes hand in hand with this new system response policy zone which allows you to implement DNS policy. Something that we've really never before done with DNS servers, which that's actually not quite true. There have been proprietary solutions for it. But response policy zones are an open solution that give you the ability to say "Hey I do want to allow resolution of this domain name, but not this other domain name". And then you can say "Alright, all these brand new domain names, for the first 30 minutes of their existence I don't want-- >> It's like a background check for domain names. >> Yeah, or like a wait list. Okay, you don't get resolved for the first 30 minutes, that gives the sort of traditional, reputational, analyzers, Spamhaus and Serval and people like that a chance to look you over and say "yeah, it's malicious or it's not malicious". >> So serves to be run my Paul Vixie who is the contributor to the DNS protocol-- >> Right, enormous contributor. >> So we should keep an eye on that. Check it out, Paul Vixie. Alright, so DNS's critical infrastructure that we've been talking about, that you and I, love to riff about DNS and the role What's it enabled? Obviously it's ASCII, but I got to ask you, all these Unicode stuff about the emoji and the open source, really it highlight's the Unicode phenomenon. So this is a hacker potential haven. DNS and Unicode distinction. >> It's really interesting from a DNS standpoint, because we went to a lot of effort within the IETF, the Internet Engineering Task Force, some years ago, back when I was more involved in the IETF, some people spent a tremendous amount of effort coming up with a way to use allow people to use Unicode within domain name. So that you could type something into your browser that was in traditional or simplified Chinese or that was in Arabic or was in Hebrew or any number of other scripts. And you could type that in and it would be translated into something that we call puny code, in the DNS community, which is an ASCII equivalent to that. The issue with that though, becomes that there are, we would say glifs, most people I guess would say characters, but there are characters in Unicode that look just like, say Latin alphabet characters. So there's a lowercase 'a' for example, in cyrillic, it's not a lowercase 'a' in the Latin alphabet, it's a cyrillic 'a', but it looks just like an 'a'. So it's possible for people to register names, domain names, that in there Unicode representation, look like for example, PayPal, which of course has two a's in it, and those two a's could be cyrillic a's. >> Not truly the ASCII representation of PayPal which we resolve through the DNS. >> Exactly, so imagine how subtle an attack that would be if you were able to send out a bunch of email, including the links that said www.-- >> Someone's hacked your PayPal account, click here. >> Yeah, exactly. And if you eyeballed it you'd think Well, sure that's www.PayPal.com, but little do you know it's actually not the -- >> So Jim Ruth talked about applying some unconventional methods, because the bad guys don't subscribe to the conventional methods . They don't buy into it. He said that they change up their standards, is what I wrote down, but that was maybe their sort of security footprint. 1.5 times a day, how does that apply to your DNS world, how do you even do that? >> Well, we're beginning to do more and more with analytics DNS. The passive DNS database that I talked about. More and more big security players, including Infoblox are collecting passive DNS data. And you can run interesting analytics on that passive DNS data. And you can, in some cases, automatically detect suspicious or malicious behavior. For example you can say "Hey, look this named IP address mapping is changing really, really rapidly" and that might be an indication of let's say, fast flux. Or you can say "These domain names have really high entropy. We did an engram analysis of the labels of these". The consequence of that we believe that this resolution of these domain names, is actually being used to tunnel data out of an organization or into an organization. So there's some things you can do with these analytical algorithms in order to suss out suspicious and malicious. >> And you're doing that in as close to real time as possible, presumably right? >> Cricket: That's right. >> And so, now everybody's talking about Edge, Edge computing, Edge analytics. How will the Edge effect your ability to keep up? >> Well, the challenge I think with doing analytics on passive DNS is that you have to be able to collect that data from a lot of places. The more places that you have, the more sensors that you have collecting passive DNS data the better. You need to be able to get it out from the Edge. From those local recursive DNS servers that are actually responding to the query's that come from say your smart phone or your laptop or what have you. If you don't have that kind of data, you've only got, say, big ISPs, then you may not detect the compromise of somebody's corporate network, for example. >> I was looking at some stats when I asked the IOT questions, 'cause you're kind of teasing out kind of the edge of the network and with mobile and wearables as the general was pointing out, is that it's going to create more service area, but I just also saw a story, I don't know if it's from Google or wherever, but 80% plus roughly, websites are going to have SSL HTBS that they're resolving through. And there's reports out here that a lot of the anti virus provisions have been failing because of compromised certificates. And to quote someone from Research Park, and we want to get your reaction to this "Our results show", this is from University of Maryland College Park. "Our results show that compromised certificates pose a bigger threat than we previously believed, and is not restricted to advanced threats and digitally signed malware was common in the wild." Well before Stuxnet. >> Yeah, yeah. >> And so breaches have been caused by compromising certificates of actual authority. So this brings up the whole SSL was supposed to be solving this, that's just one problem. Now you've got the certificates, well before Stuxnet. So Stuxnet really was kind of going on before Stuxnet. Now you've got the edge of the network. Who has the DNS control for these devices? Is it kind of like failing? Is it crumbling? How do we get that trust back? >> That's a good question. One of the issues that we've had is that at various points, CAs, Certificate Authorities, have been conned into issuing certificates for websites that they shouldn't have. For example, "Hey, generate a cert for me". >> John: The Chinese do it all the time. >> Exactly. I run www. Bank of America .com. They give it to the wrong guy. He installs it. We have I think, something like 1,500 top level certification authorities. Something crazy like that. Dan Komenski had a number in one of his blog posts and it was absolutely ridiculous. The number of different CA's that we trust that are built into the most common browsers, like Chrome and Firefox and things like that. We're actually trying to address some of those issues with DNS, so there are two new resource records being introduced to DNS. One is TLSA. >> John: TLSA? >> Yeah, TLSA. And the other one is called CAA I think, which always makes me think of a California Automotive Association. (laughter) But TLSA is basically a way of publishing data in your own zone that says My cert looks like this. You can say "This is my cert." You can just completely go around the CA. And you can say "This is my cert" and then your DNS sec sign your zone and you're done. Or you can do something short of that and you can say "My cert should look like this "and it should have this CA. "This is my CA. "Don't trust any other one" >> So it's metadata about the cert or the cert itself. >> Exactly, so that way if somebody manages to go get a cert for your website, but they get that cert from some untrustworthy CA. I don't know who that would be. >> John: Or a comprimised-- >> Right, or a compromised CA. No body would trust it. No body who actually looks up the TSLA record because they'll go "Oh, Okay. I can see that Infoblox's cert that their CA is Symantech. And this is not a Symantech signed cert. So I'm not going to believe it". And at the same time this CAA record is designed to be consumed by the CA's themselves, and it's a way of saying, say Infoblox can say "We are a customer of Symantech or whoever" And when somebody goes to the cert and says "Hey, I want to generate a certificate for www.Infoblox.com, they'll look it up and say "Oh, they're a Symantech customer, I'm not going to do that for you". >> So it creates trust. So how does this impact the edge of the network, because the question really is, the question that's on everyone's mind is, does the internet of things create more trust or does it create more vulnerabilities? Everyone knows it's a surface area, but still there are technical solutions when you're talking about, how does this play out in your mind? How does Infoblox see it? How do you see it? What's Paul Vixie working on, does that tie into it? Because out in the hinterlands and the edge of the network and the wild, is it like a DNS server on the device. It could be a sensor? How are they resolving things? What is the protocol for these? >> At least this gives you a greater assurance if you're using TLS to encrypt communication between a client and a web server or some other resource out there on the internet. It at least gives you a better assurance that you really aren't being spoofed. That you're going to the right place. That your communications are secure. So that's all really good. IOT, I think of as slightly orthogonal to that. IOT is still a real challenge. I mean there is so many IOT devices out there. I look at IOT though, and I'll talk about this tomorrow, and actually I've got a live event on Thursday, where I'll talk about it some more with my friend Matt Larson. >> John: Is that going to be here in New York? >> Actually we're going to be broadcasting out of Washington, D.C. >> John: Were you streaming that? >> It is streamed. In fact it's only streamed. >> John: Put a plug in for the URL. >> If you go to www.Infoblox.com I think it's one of the first things that will slide into your view. >> So you're putting it onto your company site. Infoblox.com. You and Matt Larson. Okay, cool. Thursday event, check it out. >> It is somewhat embarrassingly called Cricket Liu Live. >> You're a celebrity. >> It's also Matt Larson Live. >> Both of you guys know what you're talking about. It's great. >> So there's a discussion among certain boards of directors that says, "Look, we're losing the battle, "we're losing the war. "We got to shift more on response "and at least cover our butts. "And get some of our response mechanisms in place." What do you advise those boards? What's the right balance between sort of defense perimeter, core infrastructure, and response. >> Well, I would certainly advocate as a DNS guy, that people instrument their DNS infrastructure to the extent that they can to be able to detect evidence of compromise. And that's a relatively straight forward thing to do. And most organizations haven't gone through the trouble to plumb their DNS infrastructure into their, for example, their sim infrastructure, so they can get query log information, they can use RPZs to flag when a client looks up the domain name of a known command and control server, which is a clear indication of compromise. Those sorts of things. I think that's really important. It's a pretty easy win. I do think at this point that we have to resign ourselves to the idea that we have devices on our network that are infected. That game is lost. There's no more crunchy outer shell security. It just doesn't really work. So you have to have defensive depth as they say. >> Now servs has been around for such a long time. It's been one of those threats that just keeps coming. It's like waves and waves. So it looks like there's some things happening, that's cool. So I got to ask you, CyberConnect is the first real inaugural event that brings industry and some obviously government and tech geeks together, but it's not black hat or ETF. It's not those geeky forums. It's really a business community coming together. What's your take of this event? What's your observations? What are you seeing here? >> Well, I'm really excited to actually get the opportunity to talk to people who are chiefly security people. I think that's kind of a novelty for me, because most of the time I think I speak to people who are chiefly networking people and in particular that little niche of networking people who are interested in DNS. Although truth be told, maybe they're not really interested in DNS, maybe they just put up with me. >> Well the community is really strong. The DNS community has always been organically grown and reliable. >> But I love the idea of talking about DNS security to a security audience. And hopefully some of the folks we get to talk to here, will come away from it thinking oh, wow, so I didn't even realize that my DNS infrastructure could actually be a security tool for me. Could actually be helpful in any way in detecting compromise. >> And what about this final question, 'cause I know we got a time check here. But, operational impact of some of these DNS changes that are coming down from Paul Vixie, you and Matt Larson doing some things together, What's the impact of the customer and they say "okay, DNS will play a role in how I role out my architecture. New solutions for cyber, IOT is right around the corner. What's the impact to them in your mind operationally. >> There certainly is some operational impact, for example if you want to subscribe to RPZ feeds, you've got to become a customer of somebody who provides a commercial RPZ feed or somebody who provides a free RPZ feed. You have to plumb that into your DNS infrastructure. You have to make sure that it continues transferring. You have to plumb that into your sim, so when you get a hit against an RPZ, you're notified about it, your security folks. All that stuff is routine day to day stuff. Nothing out of the ordinary. >> No radical plumbing changes. >> Right, but I think one of the big challenges in so many of the organizations that I go to visit, the security organization and the networking organization are in different silos and they don't necessarily communicate a lot. So maybe the more difficult operational challenge is just making sure that you have that communication. And that the security guys know the DNS guys, the networking guys, and vice versa. And they cooperate to work on problems. >> This seems to be the big collaboration thing that's happening here. That it's more of a community model coming together, rather than security. Cricket Liu here, DNS, Chief Architect of DNS and senior fellow of Infoblox. The legend in the DNS community. Paul Vixie amongst the peers. Really that community holding down the fort I'll see a lot of exploits that they have to watch out for. Thanks for your commentary here at the CyberConnect 2017 inaugural event. This is theCUBE. We'll be right back with more after this short break. (techno music)