October 14th, 2009 Private Risk Workshop
October 15th, 2009 [schedule subject to change]
Sinclair Community College’s Frederick C. Smith Auditorium
7:00AM - 8:30PM Registration & Check In
8:30AM - 9:00AM Opening Remarks (Angus Blitter)
9:00AM - 10:00AM Keynote - Tools of the Trade (Enno Rey)
10:00AM - 10:15AM Break
10:15AM - 11:15AM Cyberwar Is Bullsh*t (Marcus Ranum)
11:15AM - 12:00PM Winning The Cyberwar (Rebecca Quinn)
12:00PM - 1:00PM Lunch
1:00PM - 1:45PM Netscreen of the Dead (Graeme Neilson)
1:45PM - 3:00PM Clobbering The Cloud (Nick Arvanitis)
3:00PM - 3:15PM Break
3:15PM - 5:30PM Mega Panel: Risk, Cyberwar & “The Cloud”
5:30PM - 6:00PM Closing Remarks (Angus Blitter)
6:00PM - 7:30PM Cocktail Reception
October 16th, 2009 [schedule subject to change]
10:00AM - 10:00PM HackSec PacketWars Invitational
6:00PM - 8:00PM Dinner Break/Open Mic
8:00PM - 10:00PM Party Featuring Oxymoronatron
and a special appearance by Dual Core
-------------------------------------------------------------------------------------------------
SPEAKERS:
Raven Alder - Has a dual background in network security testing and ISP engineering. She has worked as a Senior Backbone Architect and Senior Security Consultant in IT security. Her interest in securing networks end-to-end has led her to examine and pioneer standards in the security of network infrastructure. Raven's is a frequent speaker at professional conferences on network security topics, and her resume includes engagements at the Black Hat Briefings, Black Hat Federal, Linux World Expo, AusCERT, DefCon, and HOPE. She is also a prolific technical author and editor, coauthoring "Snort 2.1 Intrusion Detection, Second Edition", "Nessus Network Auditing", and the fiction book, "Stealing the Network: How to Own an Identity". She is also a contributor to the USENIX journal "login;" and other books and articles in pre-press.
Nick Arvanitis - Is an Associate at SensePost, where he leads SensePost's security assessment and penetration testing team. Nicholas has spoken and trained throughout South Africa, Europe and the United States, including at prestigious events such as the Black Hat Briefings and Defcon. His area of expertise is in web application assessment, network security assessment and vulnerability management.
Angus Blitter - Your host and resident media whore. Angus is the founder of Hack Sec Klahn, a like-minded group of technologists. Angus is also the creator of PacketWars™ (packetwars.com) the World's first Cyber Sport. Angus believes diversity is good for the species and hackers are a national resource. Old school, grey hat and previously plump, Angus still likes to eat, drink and hack.
Sergey Bratus - Is a Research Assistant Professor of Computer Science at Dartmouth College. His research interests include designing new operating system and hardware-based features to support more expressive and developer-friendly debugging, secure programming and reverse engineering; Linux kernel security (kernel exploits, LKM rootkits, and hardening patches); data organization and other AI techniques for better log and traffic analysis; and various kinds of wired and wireless network hacking. Before coming to Dartmouth, he worked on statistical learning methods for natural text processing and information extraction at BBN Technologies. He has a Ph.D. in Mathematics from Northeastern University.
Susan W. Brenner - Is a NCR Distinguished Professor of Law and Technology at the University of Dayton School of Law in Dayton, Ohio. Professor Brenner has spoken at numerous events, including two Interpol Conferences on Cybercrimes, the Middle East IT Security Conference, the American Bar Association’s National Cybercrime Conference and the Yale Law School Conference on Cybercrime She spoke on cyberthreats and the nation-state at the Department of Homeland Security’s Global Cyber Security Conference and participated in a panel discussion of national security threats in cyberspace sponsored by the American Bar Association’s Standing Committee on Law and National Security. She has also spoken at a NATO Workshop on Cyberterrorism in Bulgaria and on terrorists’ use of the Internet at the American Society of International Law conference. She was a member of the European Union’s CTOSE project on digital evidence and served on two Department of Justice digital evidence initiatives. Professor Brenner chaired a Working Group in an American Bar Association project that developed the ITU Toolkit for Cybercrime Legislation for the United Nation’s International Telecommunications Union. She is a Senior Principal for Global CyberRisk, LLC.
Michael Hamelin - As Chief Security Architect, Hamelin identifies and champions the security standards and processes for Tufin. Bringing more than 15 years of security domain expertise to Tufin, Hamelin has deep hands-on technical knowledge in security architecture, penetration testing, intrusion detection, and anomalous detection of rouge traffic. He has authored numerous courses in information security and worked as a consultant, security analyst, forensics lead, and security practice manager. He is also a featured security speaker around the world widely regarded as a leading technical thinker in information security. Hamelin previously held technical leadership positions at VeriSign, Cox Communications, and Resilience. Prior to joining Tufin he was the Principal Network and Security Architect for ChoicePoint, a LexisNexis Company. Hamelin received Bachelor of Science degrees in Chemistry and Physics from Norwich University, and did his graduate work at Texas A&M University.
Steve McQuerry - CCIE #6108, is a Technical Solutions Architect with Cisco Systems focused on Data Center Architecture. Steve has been an active member of the internetworking community since 1991 and has held multiple certifications from Novell, Microsoft, and Cisco. Steve currently works with Enterprise customers to help align Data Center architecture with organizational priorities and help provide a roadmap for adapting to the market transition in data center technologies. This includes the support of a virtualized environment, business continuance/disaster recovery, and driving down operational costs. His areas of expertise include core infrastructure, X86 compute systems, virtualization, Fiber Channel over Ethernet (FCoE), and Cloud/Utility computing. Prior to joining Cisco Steve worked as an independent contractor and consultant with customers throughout the United States. Steve has also authored and edited several books for Cisco Press focused on core internetworking infrastructure.
Graeme Neilson - Is a security consultant / researcher for Aura Software Security based in Wellington. He has worked in security for over ten years with a focus on network infrastructure and reverse engineering. Previously he has presented at Kiwicon (Wellington, New Zealand), Ruxcon (Sydney, Australia) and BlackHat (Las Vegas, USA).
Rebecca Quinn - is A Senior Engineer on the Customer Engineering team at NetWitness where she resolves many tough issues at customer sites. As the lead of the implementations team she has seen a wide variety of networks with many different and complex problems to solve. She is a certified CISSP and has prior experience in forensics, Intrusion detection systems, vulnerability management and data trending at Lehman Brothers. She enjoys pitting her wits against the wealth of information available today and finding new solutions to problems. With her knowledge of different systems and solutions available in the market today she enjoys the diversity that various environment provide and enjoys the challenge of crafting solutions to problems encompassing multiple products.
Marcus J Ranum - is a world-renowned expert on security system design and implementation. He is recognized as an early innovator in firewall technology, and the implementor of the first commercial firewall product. Since the late 1980's, he has designed a number of groundbreaking security products including the DEC SEAL, the TIS firewall toolkit, the Gauntlet firewall, and NFR's Network Flight Recorder intrusion detection system. He has been involved in every level of operations of a security product business, from developer, to founder and CEO of NFR. Marcus has served as a consultant to many FORTUNE 500 firms and national governments, as well as serving as a guest lecturer and instructor at numerous high-tech conferences. In 2001, he was awarded the TISC "Clue" award for service to the security community, and the ISSA Lifetime Achievement Award. Marcus is Chief Of Security for Tenable Security, Inc., where he is responsible for research in open source logging tools, and product training. He serves as a technology advisor to a number of start-ups, established concerns, and venture capital groups.
Enno Rey - Loves playing around with network protocols and devices since the early 90s. Prior to founding a specialized team of security researchers (aka building his own company) in 2001 he worked as a sysadmin and network operator. He has vast experience in designing, operating, troubleshooting and securing large networks and regularly contributes to the security community as a writer of whitepapers and articles, conference speaker or just as a pentester and protocol scientist.
-------------------------------------------------------------------------------------------------
ABSTRACTS:
Keynote -Tools of the Trade for a Modern (C)ISO (Enno Rey): He will discuss some of the challenges that ISO’s face on a daily basis and the necessary skills to master those challenges. Hopefully in a moderately entertaining and practical way ;-)
Cyberwar Is Bullsh*t (Marcus Ranum): There has been a great deal of irresponsible and inaccurate talk about "cyberwar" in the last decade, in spite of the fact that it's technologically and militarily impractical. Its counterpart, "cyberespionage" makes a bit more sense, and is less mythical but falls under the category of "nothing new." In this presentation we'll look past the hype at the reality of "cyberwar".
Winning The Cyberwar (Rebecca Quinn): Some security pundits have stated that CyberWar is not happening, but such status quo thinking may be causing a dangerous sense of complacency in many large public and private organizations. In today’s threat environment it is vitally important that all organizations develop a powerful and comprehensive network forensics-based capability to analyze and respond to emerging threats to their vital I/T assets. The cyberwarring-criminal underground and national state-sponsored groups are using custom-developed malware, third-party vulnerabilities via exploit kits, and code obfuscation to bypass existing security technologies and perceptions of “good security” at most large organizations.
Netscreen of the Dead - Developing a Trojaned ScreenOS for Juniper Netscreen Appliances (Graeme Neilson): Core network security appliances are often considered to be more secure than traditional systems because the operating systems they run are supplied as undocumented binary firmware. Juniper Inc supplies the Netscreen range of security appliances that all run a closed source operating system called ScreenOS. This presentation will detail how ScreenOS firmware can be reverse engineered and modified to contain a rootkit which completely subverts the Netscreen appliance. There will be a demonstration of running modified firmware on a Juniper Netscreen.
Clobbering the Cloud (Nick Arvanitis): Cloud Computing dominates the headlines these days but like most paradigm changes this introduces new risks and new opportunities for us to consider. Some deep technical research has gone into the underlying technologies (like Virtualization) but to some extent this serves only to muddy the waters when considering the overall threat landscape. During this talk, SensePost will attempt to separate fact from fiction while walking through several real-world attacks on "the cloud." The talk will focus both on attacks against the cloud and on using these platforms as attack tools for general Internet mayhem. For purposes of demonstration we will focus most of our demos and attacks against some of the big players...
Mega Panel - Risk, Cyberwar & “The Cloud”: Raven Alder, Nick Arvanitis, Angus Blitter, Susan Brenner, Michael Hamelin, Graeme Neilson, Rebecca Quinn, Marcus Ranum, Enno Rey and special guest moderator Sergey Bratus! This should be interesting...
