From: rain forest puppy (rfp@wiretrip.net) Date: Thu Apr 18 2002 - 04:58:43 CDT _________________________________________________________________ [[ RFP's note: multiple (all?) moderators from VulnWatch will be present at CanSecWest; the conference is always a great time and I suggest everyone that can make it to try to do so. New vulnerability announcements are likely. ;) ]] The third annual CanSecWest conference is scheduled to be held on May 1-3 2002 in Vancouver B.C. Canada. Focusing on technical discussions and leading edge techniques, the speakers at CanSecWest will give an insight onto some of the latest security vulnerabilities. A must for anybody wishing to keep on top of 0day developments. cansecwest 2002 speakers http://cansecwest.com Oliver Friedrichs & Alfred Huger - Security Focus - ah, of Oliver and Alfred will be speaking about the back end analysis system of their ARIS product. Crispin Cowan - Chief Scientist - WireX Communications Crispin will be giving a presentation about the Linux Security Module project, Immunix in general and it's components: StackGuard, FormatGuard, and RaceGuard. David Dittrich - Senior Security Engineer - University of Washington David will be speaking about forensics and the latest security fun and games at UW. Dug Song - Arbor Networks - dugsong Dug will be presenting some new IDS evasion techniques including a sequel to fragrouter. Fyodor Yarochkin - Security Analyst - Trusecure/Asia Pacific - beez Fyodor will be discussing fuzzy fingerprinting stuff and an xprobe2 demo. HD Moore - Digital Defense - hdm HD will be speaking about passive analysis and distributed security scanning using Nessus. Ivan Arce - CTO - Core-SDI - wario Ivan will be discussing automated penetration testing tools and CORE's new Impact product. Jed Haile - Nitro Data Systems - jed Jed will be discussing Hogwash, the snort based Gateway Intrusion Detection System(GIDS), of which he and Jason Larsen are the principal authors. Jonathan Wilkins - Microsoft Jonathan will be discussing his taranis tool and Layer 2 hijacking attacks. jobe - w00w00 - unlearn Jobe will be presenting: Buffer Overflows, A cumulative review: It's not just %i7/%eip anymore. Jeff Nathan & Brian Caswelli - McKesson, MITRE - jnathan, cazz Jeff will be discussing IDS technology and Brian will outline some experiences in deploying _very_ large distributed IDS systems at MITRE. Halvar Flake - Reverse Engineering - Blackhat Consulting - halvar Halvar will be speaking about graph based binary analysis. Lance Spitzner - Global Enterprise Security Team - Sun Microsystems Lance will be discussing setting up Honeypots and Honeynets with excerpts from his new book on Honeypot technology. Marty Roesch - CEO - Sourcefire - mfr Marty will be discussing enterprise IDS deployment and the new IDS OpenSnort Console product from Sourcefire. Matthew Conover - w00w00 - Entercept Security Technologies - Shok Matt will be discussing .NET and releasing a new tool to play with it. (heh, nice! --dr) Mike Schiffman - Director of Security Architecture - @stake - route Mike will be discussing wireless security and probably answer some questions about the latest release of libnet. Niels Provos - C.S. PhD Candidate - University of Michigan - ActivatE Niels will be talking about a paper title TBD and probably answer some questions about the OpenSSH project he works on. Ofir Arkin - Managing Security Architect - @stake - blaad Ofir will be giving a new presentation about technical details of VoIP security: Cracking SIP - Security Problems with VoIP Architecture Rain Forrest Puppy - head puppy - Wiretrip Labs - cail Mr. Puppy will we givin a talk entitled: "Assessing the web: finally some tools that are worthy." Ralph Logan - CEO - Camisade - rkl Ralph will be presenting a paper entitled: "A call for multisensor data fusion in Intrusion Detection." Richard Salgado - Computer Crime and Intellectual Property - U.S. Department of Justice Richard will be discussing recent legislative changes in searching and seizing computers and obtaining electronic evidence in criminal investigations as a result of the anti-terrorism legislation. Sebastien Lacoste-Seris and Nicolas Fischbach - securite.org d00dz - COLT Telecom - kaneda, nico IP network infrastructure(s) in Cisco environment : attacks and defense(s). Silvio Cesare - Qualys - zilvio Silvio will be discussing reverse engineering of the RST.b remote shell trojan linux virus caught in the wild, and virii anti-reverse engineering tactics and how to foil them. Simple Nomad - Bindview I want to be a Ninja Stealth Cyberterrorist - hypothetical scenarios for stealthy internet communications and other case studies. Solar Designer - Openwall Project - Solar_Diz Solar designer will be speaking about the Openwall GNU/*/Linux (Owl) security enhanced distribution. (dr notes: hotel availability seems to be becoming an issue particularly for Fri. May 3. Some people have been having issues getting into the "CanSecWest" block when they call out of core business hours at the hotel, and get routed to the call center. The call center also lists it under "dursec.com" depending on who you reach apparently. Call 1 800 663 9255 between 9-5 PST is the recommendation. At the time of this writing rooms in the block were still available, but rates are scheduled to rise and availability is limited. In case of difficulties e-mail core02@cansecwest.com for a list of other alternate hotels downtown within a short walking distance from the conference hotel.)