| 9:00-9:05 |
Welcome and Introduction |
| 9:05-10:00 |
Invited Speaker (chair: TBD) |
|
"The Evolution of Microsoft's Exploit Mitigations"
Tim Burrell Microsoft Security Science Team
Abstract:This talk provides a view into the exploit mitigations work carried out by the security science team within the Microsoft Security Engineering Center. It'll show what we've done, why we've done it and how we systematically think about mitigations coverage. We will use examples of mitigation improvements in Windows 7 and Visual Studio 2010 to illustrate how this has worked in practice for some recent product releases.
Bio: Tim Burrell joined Microsoft's penetration testing team in 2006 with a background in analysis of systems security and reverse engineering. He is currently part of the security science team within Microsoft Security Engineering Center where his responsibilities include the development of static analysis tools to find security bugs, and developing generic security mitigation techniques: the goal in this latter case is to significantly increase the difficulty of exploiting any residual flaws in either Microsoft or 3rd party code running on a Microsoft platform.
|
| 10:00-10:30 |
 Coffee/Tea |
| 10:30-12:00 |
Session 2 (chair: TBD) |
|
"Differential Privacy for Collaborative Security"
Jason Reed, Adam J. Aviv, Daniel Wagner, Andreas Haeberlen, Benjamin C. Pierce, Jonathan M. Smith University of Pennsylvania
|
|
"Practical Protection for Personal Storage in the Cloud"
Neal H. Walfield, Paul T. Stanton, John Linwood Griffin, Randal Burns Johns Hopkins University
|
|
"Improving the Accuracy of Network Intrusion Detection Systems Under Load Using Selective Packet Discarding"
Antonis Papadogiannakis, Michalis Polychronakis, Evangelos P. Markatos FORTH-ICS
|
| 12:00-13:30 |
 Lunch |
| 13:30-14:30 |
Invited Speaker (chair: TBD) |
|
"Botnet detection and mitigation: taking down Waledac"
Thorsten Holz Ruhr-University Bochum
Abstract:At the end of February 2010, the Waledac botnet was taken down in a joint effort of several experts from both academia and industry. Waledac is a peer-to-peer botnet and thus simply taking down only Command & Control servers or domains related to the botnet would not have been an effective countermeasure. In addition, the peer-to-peer aspects also had to be taken into account to prevent the botmasters from regaining control of the bots. In this talk, we present an overview of the take-down of Waledac and shed some light into the activities that happened behind the stages. Furthermore, we will also focus on future work in the area of botnet detection and mitigation.
Bio: Thorsten Holz is an assistant professor at Ruhr-University Bochum, Germany. He is a member of the International Secure Systems Lab and recently left the Technical University Vienna, where he worked for about one year as postdoctoral researcher. His research interests include the practical aspects of secure systems, but he is also interested in more theoretical considerations of dependable systems. Currently, his work concentrates on bots/botnets, malware analysis, and security of social networks.
|
| 14:30-15:00 |
Session 4 (chair: TBD) |
|
"Detecting Wikipedia Vandalism via Spatio-Temporal Analysis of Revision Metadata"
Andrew G. West, Sampath Kannan, Insup Lee
University of Pennsylvania
|
| 15:00-15:30 |
Coffee/Tea |
| 15:30-17:00 |
Session 5 (chair: TBD) |
|
"Managing intrusion detection rule sets"
Natalia Stakhanova, Ali A. Ghorbani
University of New Brunswick
|
|
"Robustness of a new CAPTCHA"
Ahmad Salah El Ahmad, Jeff Yan, Lindsay Marshall
Newcastle University
|
|
"AESSE: A Cold-boot Resistant Implementation of AES"
Tilo Muller, Andreas Dewald, Felix C. Freiling RWTH Aachen University, University of Mannheim
|
