e-Crime Congress

Day 2 - 17 March 2010

Click here for

08:00 - 09:00	Coffee & Registration
09:00 - 09:20	SPOTLIGHT TOPIC: A New Challenge for Information Security: working out the answer when technology, security regulations, and business processes don't add up Andrew Cumming, Mandatory Requirements Oversight, Information Security, UBS Data commissioners, administrative laws, privacy rights, encryption and more: what the auditors don't, and can't, tell you about baseline requirements for non-financial IT systems Cyber laws, regulatory requirements, and global business models: how do technological grey areas and black holes make 'evidencing' compliance a difficult task? Data privacy, data classification, and data processing: case examples that point towards a complex future for IT controls, regulatory, and business risk Looking for a solution by acting locally while thinking globally
09:20 - 10:20	Computing dangerously? Security, risk, and opportunity in the cloud. Expert panel discussion Speakers include: James Brokenshire MP, Member of Parliament, Miranda Mowbray, Senior Technical Contributor, HP Labs, Simon Wardley, Cloud Computing Strategist / Software Services Manager, Canonical Ltd., Andrew Yeomans, Board member, Jericho Forum, Chris Gavin, Senior Director, EMEA Information Security and Privacy, Oracle, Stephen MacGibbon, CTO EMEA, Microsoft
10:20 - 10:55	Education Seminars (Session 3 of 4) Choose from a range of seminars from the following sponsors: QinetiQ - Forensics Readiness Verizon - Where is my needle, which haystack and what type of haystack? VeriSign - The Growing Risk of DDoS and Mitigation Best Practices ESSIT - How e-Criminals pick their Targets (and how to make sure it won’t be your Bank) Skybox Security - Predict and Prevent Cyber Attacks: using risk modelling to reduce network security exposures and avoid attack Kroll Ontrack - Data Loss: Are you ready if the wheels fall off? PGP Corporation - Data Protection in 2010: managing risk in complex environments MarkMonitor - Building a Return on Investment Case for Online Brand Protection
10:55 - 11:20	Refreshments and networking break
11:20 - 11:40	A Formula For Change? (The Consumerization of Technology x Security Risks) + Loss of Control = The need for a paradigm shift in security thinking. Rob Evered, Senior Information Security Specialist, Intel Corporation Winning the battle but losing the war? How the advantages of letting people manage their own IT are converging, and what this means for the way in which 'security' has traditionally been delivered to 'the business' and 'the users' Legal liability, employee rights, device ownership, and data protection... vs. business advantage: how are consumerisised services and the search for greater productivity creating the perfect storm for compliance and security departments? Lock Down vs. The Web Gateway: can the emerging gap between 'enabling business securely' and 'the tools that enable business' be bridged in order to maintain e-crime prevention, detection, and response capability? Coming to terms with the loss of control: some practical ideas for changing the way we approach security delivery
11:40 - 12:00	e-Crime Goes Mobile: a fresh perspective on security and handheld personal devices Scott Totzke, Vice President of Blackberry Security, Research in Motion Forget security, think functionality: where are the developers going and what does the future hold for your employees' handsets? Mobility, functionality, and the Internet: what are the implications of integration, and is 'good enough' security really good enough? Features, risks, and threats: what does the mobile web and malware landscape look like today, and what key security challenges are likely to emerge in the mobile space? Can security policy be reconciled with the competitive advantage that stratospheric advances in device functionality will provide?
12:00 - 12:20	My Malware is More Profitable than Your Malware Jon Ramsey, Chief Technology Officer, SecureWorks, Inc. New revelations: what do recently discovered findings reveal about the business model behind the most profitable and pervasive financial-credential stealing Trojan in history, ZeuS? What is the owner of this Trojan up to now? An overview of new, sophisticated modules that work with ZeuS, as well as others, for Firefox and VNC (Virtual Network Computing) Detecting ZeuS and its new modules: what do actual screenshots of a current running ZeuS command and control (C&C) server look like, and what types of information is it now specifically coded to steal? How is the Pay-Per-Install (PPI) model being used by the cyber-crime underground, and what does it mean for the evolution of the underground economy? A diversifying market: how lucrative is intellectual property becoming to the international cyber-crime syndicates and why?
12:20 - 13:20	Lunch and networking break
13:20 - 13:40	Technology and Change in the Investigations Environment: intelligence fusion Peter Probert, Head of Integrity, Betfair What opportunities and challenges are presented to the modern investigator by the massive volume of diverse data types created within and outside the enterprise walls? Where the need for new technological skill sets are emerging, what events are driving the need for change? What key knowledge gaps exist between regulators, law enforcement agencies, and business, and how is technology shaping the regulatory environment? What does the future hold in terms of the changing interplay between technological and human analytics in investigative environments?
13:40 - 14:00	The Security Challenge: dealing with the deluge of security risks Joe Gottlieb, Vice President, Sensage Why are the security stakes higher than ever, and what are the systems that are driving the need for deeper analysis? How can the huge volume of "events" be used to drive intelligence gathering and provide profound risk insights? How is enterprise security evolving from merely "keeping the bad guys out" to securing critical data and "keeping it inside"? How can event data from internal systems catch the vast majority of insider security breaches prior to expensive and damaging results? What are the implications of the evolving security focus from "real-time vs. near real-time" to "real-time and all-the-time"?
14:00 - 14:20	More Than Just a Piece of Plastic: moving towards multi-channel authentication for enhanced consumer security Riten Gohil, Senior Manager, Payment Authentication Innovations, New Channels & Product Development, Visa Protecting the cardholder: where have we gone wrong in protecting against the threat of card-present fraud, online payments, remote banking transactions, and non-banking transactions? Dynamic passcodes: enhanced security vs issues of convenience and practicality - how can we deal with the need to make a trade-off? What are the challenges and benefits of a robust solution, and how has Visa worked with card issuers to incorporate all the technology required to mitigate against the risk of phishing attacks or the possibility of keystroke logging How Visa are working to provide 'hard-to-hack' authentication that is fully compliant with Verified by Visa
14:20 - 14:55	Education Seminars (Session 4 of 4) Choose from a range of seminars from the following sponsors: Trend Micro - Managing the threat, Minimising the risk SecureWorks - Modern Day Threats and Defenses for Virtualisation, Cloud Computing and Social Networking LGC Forensics - Exploring the forensic opportunities in e-Crime Outpost 24 - Field Study: Who left their windows open? NetWitness - Using Network Forensics to Uncover Advanced Persistent Threats S21Sec - Fighting Fire with Fire: how to use criminal malicious code to protect your web application against attack EMC & Sensage - Evidence - "if it's not logged it didn't happen"
14:55 - 15:15	Refreshments and networking break
15:15 - 15:35	Constantly connected: uncovering the hidden trail of 'user information' stored on mobile devices Dave Kirk, Country Manager, Cellebrite The need to go deeper into a phone's memory than ever before: how is the role of cell phones evolving in ongoing investigations and as evidential tools and why is deeper analysis becoming necessary? Case studies from an investigation perspective: what information is likely to be the most interesting and relevant? What are the challenges for law enforcement agencies in taking advantage of this wealth of information? Strategies for dealing with hidden information, multiple hand set types, and the other issues that make it hard for investigators to find the information that they need
15:35 - 16:55	Dead end trails, tracks, and trapdoors that the white hats leave behind: is security testing a risk that needs managing? Denis Edgar-Nevill, Head of Computing Department, Canterbury Christ Church Computing What are the main challenges created by incomplete disclosure for companies that employ white hat security testers? Exploring vulnerabilities in the human firewall and knowledge gaps left behind by white hats that can leave the perimeter open to attacks Once gaps are identified, what additional forensic challenges need to be addressed as regards the threats or exploits that may have got there first? How can unwanted exposure left behind by security testing exercises be limited?