IT Compliance and Controls

Converging Business, Information, and Controls

IT Compliance and Controls header image 2

HITBSecConf2007 presentations are online!

September 27th, 2007 · 1 Comment

The generous conference organizers at this years “Hack In The Box Security Conference Series” Malaysia (September 3-6) have posted the full presentations for anyone to download and enjoy. This is an excellent resource for extending your knowledge and leveraging the leading thought leaders in security. My favorite reads include Andrew Cushman’s “State of Security“, Martin John’s “Exploiting the Intranet With a Webpage – Is JavaScript the New Shellcode?“, and Felix Linder’s “Attack Surface of Modern Applications” which provides a nice overview of the threats to apps if a bit bombastic.

Nothing replaces the experience, interaction, and speeches provided by these presenters but this is certainly the next best thing if you were unable to make it.

Here is the link to the full agenda
Here is the link to the U.S. download mirror.


James DeLuccia

Tags: Human Resources · Life Cycle Management · Risk Awareness · Security and Assurance · Trusted Communications and Network · Trusted Computing Platform Systems

1 response so far ↓

  • 1 dre // Oct 2, 2007 at 11:10 pm

    FX’s talk about the Attack Surface of Modern Applications was more like prolific. Will we see the vulnerability problem turn into a science like medicine? Will we be able to perform diagnostics like a doctor would? Will will be able to cure code of the sickness that is inherent in known coding weaknesses through software security assurance “vaccines” thus preventing vulnerabilities all-together? Will attack paths be categorized and prevented one-by-one? Will threats (i.e. adversaries) fail to expose weaknesses in code and locate vulnerabilities?

Leave a Comment