RSA Conference Brochure 2008

hackErs & thrEats 2 tuEsday, april 8 1:30 p.m. – 2:40 p.m. HT2-105 WEdnEsday, april 9 8:00 a.m. – 8:50 a.m. HT2-201 (T2) What’s to Come: The Next Generation of Attacks (T3) live Malware Attack! Paul Ducklin | Head of Technology, Asia Pacific, Sophos MODERATOR: Pete Lindstrom | Senior Analyst, Burton Group PANELISTS: Mike Paquette | Chief Strategy Officer, Top Layer Networks Pradeep Singhu | CTO, Founder, Juniper Marc Willebeek-Lemair | CTO, TippingPoint Protecting enterprise assets from unwanted intrusions remains a top corporate priority, but one concern continues to plague the enterprise: Has technology adapted to the new generation of threats on the horizon? Will corporations be able to keep their networks secure against these new attacks? This panel will discuss the next generation of attacks. 3:00 p.m. – 3:50 p.m. HT2-106 Anyone can become a victim of a malware attack, putting themselves and their organizations at great risk. How do these attacks happen? How can businesses and end-users protect themselves against malware attacks? This presentation will answer these questions, demonstrate the impact these attacks have on users and networks and discuss what strategies should be in place to combat these threats. 9:10 a.m. – 10:20 a.m. HT2-202 (T2) linux vs. Windows Security — Updating the Debate (T2) Breaking Security Systems: Avi Rubin | President, Independent Security Evaluators Political, legal and Technical Aspects Richard Ford | Professor, Florida Institute of Technology Jeffrey Jones | Director, Microsoft Corporation Professor Rubin has participated in breaking the security of many different systems, including e-voting machines, RFID tags, ExxonMobil Speedpass and the iPhone. The session will focus on technical issues — how do you break systems? Political issues — what will happen if you break it? And legal issues — what are the liabilities you face? 4:10 p.m. – 5:20 p.m. HT2-107 Pro-Linux and Pro-Windows users keep the Windows vs. Linux security debate alive, but much common fodder now falls into a “historical” category. Speakers deliver a good-natured Windows vs. Linux security debate as a framework for serious analysis of old claims and progress made for Windows and Linux from 2000 to 2007. 10:40 a.m. – 11:50 a.m. HT2-203 (S) (T2) Case Notes from a Vulnerability Mark O’Neill | CTO, Vordel Assessment of a Bank’s Web Services Deconstructing the Modern Online Criminal Ecosystem MODERATOR: Patrick Peterson | Vice President, Technology, IronPort, A Cisco Business Unit PANELISTS: Lawrence Baldwin | Chief Forensics Officer, My Net Watchman Joe St. Sauver | Manager, Internet2 Security Programs, Internet2 and University of Oregon Larry | Chief Investigator, SpamHaus What happened when a bank allowed security experts to try to breach the protection of its web services? This session answers that question by showing how a vulnerability assessment of a bank’s web services was undertaken. Established attack vectors will be applied to the web services paradigm, the battery of tests will be described and examples of the discovered vulnerabilities will be analyzed. 5:40 p.m. – 6:30 p.m. HT2-108 This panel will deconstruct the online criminal enterprises causing the most damage to the Internet today. Technical, business and interoperational elements will be dissected. The emphasis of this discussion will be criminals’ use of new interdependent business models to generate enormous profits. Technical elements will also be discussed, such as malware, bots, spam, spyware and data theft. (S) July 18, 2008: The Day the internet Died Eugene Schultz | Chief Technology Officer & Chief Information Security Officer, High Tower Software Bad news: Internet attacks are getting worse, not better. Based on growing sophistication and frequency, an attack of massive proportions will soon be able to bring the Internet as a whole to a functional standstill. This session profiles the growing threat and presents how the ultimate attack may be executed, how technology should evolve to limit the risk and what organizations can do to prepare. 30 sEssion classification (L2) Intermediate Legal/Compliance (S) Strategic (T) Technical Futures (T1) Advanced Technical (T2) Intermediate Technical (T3) Basic Technical See page 5 for complete level descriptions.

Table of Contents Feed for the Digital Edition of RSA Conference Brochure 2008

Table of Contents Who Should Attend & Why Keynote Speakers Agenda At-A-Glance Session Classification Special Events & Activities Connect & Network Highlights 1-Day Pre-Conference Tutorials 2-Day Pre-Conference Tutorials Tracks & Sessions Authentication Consumer Protection Business Trends & Impact Case Studies Cryptographers Deployment Strategies Developing with Security Enterprise Defense Hackers & Threats 1 Hackers & Threats 2 Identity & Access Management Industry Experts Law & Liability Policy & Government Professional Development Security-Oriented Architecture Standards Wireless Sponsor Sessions List of Exhibitors Registration Information Sponsors

For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.