Schedule - DeepSec IDSC 2007 Europe - Vienna, November 20-23, 2007

Preliminary Schedule

Trainings

Trainings Nov 20 - Nov 21	Workshop 1	Workshop 2	Workshop 3	Workshop 4
09:30 - 18:30	Mariano Nuñez Di Croce: SAP (In)Security	Shreeraj Shah: Web Hacking Training	Michael Kafka, René Pfeiffer: Securing Networked Infrastructure through Seven Layers of Insecurity	Klaus Darilion: Practical VOIP/SIP Hacking

All Trainings are two days long and include Lunch and two Coffee Breaks.

Conference

Day 1 - Nov 22	Great Riding School	Small Riding School
08:00	Registration Opens
09:00 - 09:10	Welcome & Introduction Paul Boehm & DeepSec Team
09:10 - 10:00	Keynote: The Business Case for removing your perimeter Paul Simmonds: Global Information Security Director, ICI, Jericho Forum
10:00 - 10:50	Stefano Zanero: Observing the Tidal Waves of Malware	Marcel Holtmann: New Security Model of Bluetooth 2.1
10:50 - 11:10	Coffee Break
11:10 - 12:00	Tyler Moore: Economics of Information Security	fukami: Flash Security Basics
12:00 - 12:50	Steve: Intercepting GSM traffic	Aaron Portnoy, Cody Pierce: RPC Auditing Tools and Techniques
12:50 - 14:00	Lunch
14:00 - 14:50	Dave Aitel: Windows Heap Protection: Bypassing requires understanding	Daniel Fabian: Browser Hijacking
14:50 - 15:40	Thomas Maus: Security -- an Obstacle for large-scale Projects and eGovernment?	Shreeraj Shah: Web 2.0 Application Kung-Fu - Securing Ajax & Web Services
15:40 - 16:00	Coffee Break
16:00 - 16:50	Mariano Nuñez Di Croce: Attacking the Giants: Exploiting SAP Internals	Ofir Arkin: kNAC!
16:50 - 17:40	David Litchfield: A Discussion on Memory-Resident Backdoors in Oracle	Nitesh Dhanjani: Breaking and Securing Web Applications
17:40 - 18:40	Night Talk: Mark Curphey: Naked Security : The State of the Application Security Industry
20:00 - 22:00	Cocktail Robotics Party @ Roboexotica

Day 2 - Nov 23	Great Riding School	Small Riding School
09:00 - 09:50	Keynote: Reasonable Disclosure Jeff Moss: Founder & Director, Blackhat
09:50 - 10:40	Halvar Flake: Automated structural classification of malware	Nguyen Anh Quynh: Hijacking Virtual Machine Execution for Fun and Profit
10:40 - 11:00	Coffee Break
11:00 - 11:50	Alexander Kornbrust: Oracle Security: Orasploit	Georg Wicherski: Collecting and Managing Accumulated Malware Automatically
11:50 - 12:40	Lukas Grunwald: Audit of the RFID ePassport and the concepts	Sylvester Keil / Clemens Kolbitsch: Fuzzing and Exploiting Wireless Drivers
12:40 - 13:40	Lunch
13:40 - 14:30	peter purgathofer: the many dimensions of security in eVoting	Heikki Kortti: Destructive Data - Designing Inputs That Make Software Fail
14:30 - 15:20	Rich Smith: Doppelgänger - novel protection against unknown file format vulnerabilities	Martin Johns: The Three Faces of CSRF
15:20 - 15:40	Coffee Break
15:40 - 16:30	Shalom Carmel: Disruptive modernization of legacy systems	Simon Roses Femerling: Carmen, Rogue Web Server
16:30 - 17:20	Night Talk: Simon Howard: Are the vendors listening?	Melanie Rieback: The RFID Guardian
20:00 - ∞	Cocktail-Robotics Party & Networking

Aftermath

The Day After	Metalab, Rathausstrasse 6, 1010 Wien
21:00 - ∞	Afterparty