SecAppDev 2010 - Program

Program

Monday, February 22^nd
09:00 - 10:40	The view from the giants' shoulders		Ken van Wyk
11:00 - 12:40	Cryptographic algorithms	Bart Preneel	C and C++ vulnerability exploits and countermeasures	Yves Younan
01:40 - 03:20	Software security: business risk	Christophe Huygens	Hands-on C and C++ vulnerability exploits	Yves Younan
03:40 - 05:20	Failboxes	Bart Jacobs	Web application security	Lieven Desmet
Tuesday, February 23^rd
09:00 - 10:40	Software Security: State of the Practice		Gary McGraw
11:00 - 12:40	Entity authentication	Bart Preneel	Security economics	Steven Murdoch
01:40 - 03:20	Public Key Infrastructures fundamentals	Bart Preneel	Advanced web application security	Lieven Desmet
03:40 - 05:20	Developing web applications as if operations mattered	Ken van Wyk	Finding security vulnerabilities	Matias Madou
Wednesday, February 24th
09:00 - 10:40	Security testing	Ken van Wyk	Hardware Security Modules	Filip Demaertelaere
11:00 - 12:40	BSIMM Europe	Gary McGraw	Access control	Frank Piessens
01:40 - 03:20	Privacy	Claudia Diaz	Sandboxing untrusted code: policies and mechanisms	Frank Piessens
03:40 - 05:20	BSIMM: fifteen things everybody does	Gary McGraw	Identity and access management	André Mariën
Thursday, February 25^th
09:00 - 10:40	Architectural risk analysis	Gary McGraw	Hands-on security tools	Ken van Wyk
11:00 - 12:40	Network protocols	Bart Preneel
01:40 - 03:20	New developments in cryptology	Bart Preneel
03:40 - 05:20	Anonymity systems requirements and architecture	Steven Murdoch
Friday, February 26^th
09:00 - 10:40	Banking security architecture		Steven Murdoch
11:00 - 12:40	Using cryptography well	Bart Preneel	VeriFast: high-assurance verification of security-critical programs	Bart Jacobs
01:40 - 03:20	Hash functions	Bart Preneel	Threat modelling	Ken van Wyk
03:40 - 05:20	Wrap-up workshop		Johan Peeters

Legend
security objectives
development process
mechanisms in current technologies
design
coding
quality assurance