Black Hat Briefings DC 2008 Schedule
February 19, 2008
Informal gathering at 18:00. Gather at the Hotel Bar.This is a great time to meet and network with friends, colleagues and the speakers.
Day 1 • February 20,2008
08:00-08:50
Registration and Continental Breakfast sponsored by
08:50-09:00
Introduction,
Jeff Moss
09:00-09:50
Keynote:
The Quest for the Holy Grail, Jerry Dixon
After Jerry Dixon's keynote, Andy Fried will give more details about the latest phishing challenges related to IRS.
TRACK 1 • WEB APP
10:00 - 11:15
Preparing for the Cross Site Request Forgery Defense - Chuck Willis
11:15 - 11:30
Coffee Service:
sponsored by
11:30 - 12:45
Threats to the 2008 Presidential Election - Oliver Friedrichs
12:45 - 13:45
Lunch: Monticello Ballroom
13:45- 15:00
Bad Sushi: Beating Phishers at their Own Game - Nitesh Dhanjani and Billy Rios
15:00 - 15:15
Break
15:15 - 16:30
URI Use and Abuse - Nathan McFeters and Rob Carter
16:30 - 16:45
Coffee Service:
sponsored by
16:45 - 18:00
Scanning Applications 2.0 - Next Generation Scan, Attacks and Tools - Shreeraj Shah
18:00 - 20:00
Hosted Reception: Eat, Drink, Network and be Merry
TRACK 2 • WIRELESS
10:00 - 11:15
Cracking GSM - David Hulton and Steve
11:15 - 11:130
Coffee Service:
sponsored by
11:30 - 12:45
RFIDIOts!!! -Practical RFID hacking (without soldering irons) - Adam Laurie
12:45 - 13:45
Lunch: Monticello Ballroom
13:45- 15:00
Analyzing an unknown RF based data transmission (Aka: Fun with 27Mhz wireless keyboards) - Max Moser
15:00 - 15:15
Break
15:15 - 16:30
Attacking VoIP through IPSec Tunnels - Sachin Joglekar and Sudeep Patwardhan
16:30 - 16:45
Coffee Service:
sponsored by
16:45 - 18:00
A Picture's Worth: Digital Image Analysis - Dr. Neal Krawetz
18:00 - 20:00
Hosted Reception: Eat, Drink, Network and be Merry
Day 2 • February 21,2008
08:00-08:50
Registration and Continental Breakfast sponsored by
TRACK 1 • DEFENSE
09:00 - 09:50
DTRACE: The Reverse Engineer's Unexpected Swiss Army Knife - Tiller Beauchamp, David Weston
09:50 -10:00
Break
10:00 - 11:15
Dynamic Taint Propagation: Finding Vulnerabilities Without Attacking - Brian Chess & Jacob West
11:15 - 11:30
Coffee Service
11:30- 12:45
(un)Smashing the Stack: Overflows, Countermeasures, and the Real World - Shawn Moyer
12:45 - 13:45
Luncheon Service:
Monticello Ballroom
sponsored by
13:45 - 15:00
Classification and Detection of Application Backdoors - - Chris Wysopal
15:00 - 15:15
Break
15:15 - 16:30
Botnet Population and Intelligence Gathering Techniques - Christopher Davis & David Dagon
16:30 - 16:45
Coffee Service
16:45 - 18:00
IO in the Cyber Domain, Immunity Style - Sinan Eren & Dave Aitel
TRACK 2 • HARDWARE/EMBEDDED
09:00 - 09:50
Oracle Security - David Litchfield
09:50 -10:00
Break
10:00 - 11:15
Biometric and Token-based Access Control Systems - Zac Franken
11:15 - 11:30
Coffee Service
11:30- 12:45
Side Channel Analysis on Embedded Systems - Impact and Countermeasures - Job DeHaas
12:45 - 13:45
Luncheon Service:
Monticello Ballroom
sponsored by
13:45 - 15:00
Developments in Cisco IOS Forensics - Felix "FX" Lindner
15:00 - 15:15
Break
15:15 - 16:30
SCADA Security - Jason Larsen
16:30 - 16:45
Coffee Service
16:45 - 17:05
Exploiting Live Virtual Machine Migration - Jon Oberheide
17:15 - 18:30
Security Failures in Secure Devices - Christopher Tarnovsky
Please note that this schedule is subject to change.
Additional Scheduled Events
Feb 20, 6-7pm
Entertainment Talk - Social Engineering
Get the inside story from a true insider. Peter Earnest will share his expertise in espionage. Once Peter has shared his exclusive accounts, the audience is invited to join in an open-ended discussion.
Speaker
Feb 20th, 4:15-6pm
Birds of a Feather #1 - CyberCOPS (Not the TV series)
Join some of the longest running cybercops in a reality session not made for TV. Hang out on the front lines to learn about the most sophisticated attacks happening so far this year. We don't expect to win an Emmy, but we might get a Pwnie.
Panelists
- Ovie Carroll, DoJ
- Jim Christy, Director of Futures Exploration for the Defense Cyber Crime Center (DC3)
- Andy Fried, IRS
- Ken Privette, Special Agent in Charge, Technical Investigations Division, USPS Office of Inspector General
- SA David Trosch, Director of the Diplomatic Security Forensics Lab, Diplomatic Security Service of State Department
Feb 20, 3:15-4:30
Birds of a Feather #2 - Cyber Commission Recommendations
The goal of the talk is to provide an overview of what the Cyber Commission intends to accomplish, the goals, what the process is, and will also solicit opinions from the audience on what they think the next President should focus on when it comes to Cyber Policy.
Panelists
- Jerry Dixon, Infragard's National Member Alliance's Vice President for Government Relations, Director of Analysis for Team Cymru, and former Executive Director of the National Cyber Security Division (NCSD) & US-CERT, of the Department of Homeland Security
- Tom Kellerman, CISM, VP of Security Awareness, Core Security Technologies
- James Andrew Lewis, Senior Fellow, CSIS
- Amit Yoran, Chairman and CEO, NetWitness Corporation
Attendees must wear badges at all times in the conference areas.
Badges and/or conference proceedings that are lost or reported stolen will incur a $500 replacement fee.
All attendees must be 18 years of age or older to be on the conference floor.