Hacking Cybersecurity Credentials Innovation

Enhancing Cybersecurity Resilience: QESP and the "Living Off the Land" Threat

John Ellingson
John Ellingson
snake in brown leaves

In the ever-evolving landscape of cybersecurity, the "living off the land" threat has become the new normal. This threat involves threat actors operating stealthily without inserting malware into the host environment, making it challenging to detect and counteract. At QWERX, we recognize the gravity of this threat and have developed our core device authentication platform, QWERX Enterprise Secure Perimeter (QESP) to address this specific challenge. In this blog post, we delve into the intricacies of the 'living off the land threat' and how our innovative solution provides a robust defense.

Understanding the "Living Off the Land" Threat

The "living off the land" threat is characterized by threat actors avoiding traditional malware insertion methods. Instead, they focus on connecting unauthorized devices to the target host environment, exploiting existing tools and infrastructure to carry out malicious activities. This approach aims to operate stealthily, making it harder for traditional security measures to detect and thwart the threat.

How QESP Defeats the Threat

QESP takes a unique approach to counteracting this challenge. While traditional security measures may struggle to identify threats that do not involve malware insertion, QESP addresses the crux of the issue: the unauthorized connection of devices to the target host environment.

Automatic Credential Rotation

One of the key features of QESP is its ability to automatically generate complex credentials at regular intervals, for example, every three seconds. This dynamic credential rotation ensures that even if a threat actor manages to connect an unauthorized device, the credentials used become obsolete almost immediately. The "living off the land" strategy relies on persistent access, and QESP disrupts this by constantly changing the access credentials.

Secure, One-Time Use Credentials

QESP's innovative Ephemeral Key Infrastructure protocol generates credentials that are used only once and then discarded. Hackers will never be able to re-use credential information gathered at any point in time to gain access after that moment. 

No Storage, No Exchange

Unlike traditional authentication systems that store credentials or exchange them across networks, QESP operates on a principle of non-persistence. Generated credentials are never stored or exchanged, eliminating the major threat vector associated with stolen static credentials.

Adapting to Evolving Threat Landscapes

The cybersecurity landscape is dynamic, and threats constantly evolve. QESP's unique approach is not only effective against the current "living off the land" threat but is also designed to adapt to emerging cybersecurity challenges. As threat actors employ new tactics, our solution remains at the forefront, providing a resilient defense against unauthorized access.

In the face of sophisticated threats like the "living off the land" threat, traditional security measures have fallen short. QESP stands as a testament to our commitment to innovation in cybersecurity. By addressing the core of the threat – unauthorized device connection – and implementing dynamic credential rotation, secure one-time use credentials, and a non-persistent approach, we offer a comprehensive solution to enhance your organization's cybersecurity resilience. If you're ready to fortify your defenses against evolving threats, contact us to learn more about integrating QESP into your security strategy.
John Ellingson

John Ellingson

Follow me on LinkedIn Follow me on LinkedIn

John Ellingson is the Chief Technology Officer at QWERX. John started his digital career with the Boeing Company working on the 747 aircraft in the late 1960s. He became a computer-literate attorney performing what is today known as forensic accounting. As the founding chairman of the ABA/YLD Subcommittee on Tax Treatment in Bankruptcy, John worked with the Congressional Joint Tax Committee to create the Internal Revenue Code Provision enabling the tax-free merger and acquisition of debtor corporations. This law became part of the Bankruptcy Tax Act of 1980. John had a national M&A practice in this area and obtained the first IRS Private Letter Ruling on this Code section. As a result of this practice, he observed a frequent element of white-collar crime in many bankruptcy cases, and he subsequently developed and patented a method to detect identity fraud. The product derived from that patent is still deployed at most retail banks throughout the U.S. today. This success started John on a path of protecting digital systems and identity management. He continued in this role with American Operations Corporation and ASM Research before founding infOsci LLC and later QWERX, Inc. John holds numerous method patents in digital system security. John was appointed to the United States Air Force Academy and medically separated before graduation. He holds a Bachelor of Science degree from the University of Wisconsin and a Juris Doctor degree from Seattle University. For 20 years John served as a liaison officer with the United States Naval Academy and the United States Military Academy. He also served on the Service Academy Selection Boards for two U.S. Senators.

Leave a Comment