Interact with the security community
CanSecWest, the world's most advanced conference focusing on applied digital security, is about bringing the industry luminaries together in a relaxed environment which promotes collaboration and social networking. The conference lasts for three days and features a single track of thought provoking presentations, each prepared by an experienced professional and talented educator who is at the cutting edge of his or her field. We give preference to new and innovative material, highlighting important, emergent technologies, techniques, or best industry practices.
The conference is single track, with one hour presentations over the duration beginning at 9:00 a.m. The registration fee includes the catered meals, and there will be a vendor display and lounge/eating area, where wireless internet access will be available (as well as in the speaking theater). The conference discount hotel room booking system can be found here.
2011-10-21-16:55:00 Second Call For Papers December 5
So after a dozen years or so organizing conferences, you get the urge to pull levers and try experimenting with things. So this year I sent out the CanSecWest CFP only over Twitter, and G+ publicly. Just curious as to the adoption and information dispersion rate, and some estimate of the attention these newer channels are getting.
So after this experiment I hear about people having submissions and missing the CFP. So for my control set, here is the normal announce message to different e-mail lists. We'll do a Second CanSecWest CFP, but a brief one. Send us your proposal by the end of Monday next week, December 5, 2011.
The questions and information needed is the same as usual (see website), also for my curiosity could you include:
12. Where did you hear about the CFP from?
cheers,
--dr
2011-10-21-16:25:00 CanSecWest Video Posted CFP Opens Next Week
Given the current state of Bluetooth security, it seemed to make sense to release this one first(YouTube link). For your weekend viewing, Michael Ossman teaching us about the way Bluetooth works, the trials and tribulations of designing his own hardware to do Bluetooth Sniffing, the Ubertooh one, at CanSecWest 2011.
P.S. We will be opening the CanSecWest CFP next week.
2011-03-08-12:00:00 CanSecWest 2011 WiFi Weapon of Doom
This year we've decided to take a different approach for the CanSecWest wireless network.
Our network will be fully encrypted using WPA2-Enterprise(EAP-PEAP) AES/CCMP only
A total of five access points will provide coverage for the main conference hall:
- 3 in the 2.4Ghz (802.11g/n) range
- 2 in the 5Ghz (802.11n) range
Authentication and SSID information will be provided to attendees at the registration desk
Your account will provide access through one 2.4Ghz and one 5Ghz access point
If you are using a Windows XP/Vista/7 device, some manual configuration will be required (instructions and assistance will be available at the registration desk)
For all others (IOS/OSX/Android/Linux/Symbian/Mobile 7) it should "just work"
Here is our wifi CA, Windows configuration information to follow soon
CanSecWest 2011 CA Cert
SHA1: 13880612 C9BBA2E1 87853E03 FD995C09 8556D176
MD5: 0438318C 33346F31 BBF30334 0CBD00E6
2011-03-02-12:00:00 Hotel Reservation Link Closed
We have closed our hotel reservation link. If you would like to book a room, please contact yuriko@secwest.com with your name, check-in and check-out dates with contact information.
2011-02-03-07:46:00 Speaker Notifications Starting and PWN2OWN rules up
Speaker notifications have started going out and our agenda page will start being updated today.
PWN2OWN 2011 rules have been posted by Aaron and the ZDI folks on their blog.
We've also now ordered all the prizes phones:
- Android - The Google Nexus S, gets the nod as the most "droolworthy" phone, though Motorola is coming on strong with some of their new handsets.
- Windows 7 Mobile - This was by far the hardest choice, it came down to the HTC HD7 and the Dell Venue Pro, with nearly identical specs, but eventually the keyboard and the same resolution slightly more viewable screen on the Dell Venue Pro won the day. Things became a little more complicated with this one when the vendor we used(who shall remain nameless) bait and switched our unlocked phone order for a carrier locked T-Mobile unit. After searching long and hard for an in-stock unlocked unit, calling up Microsoft stores only to find out that the rumors of unlocked phones being sold there, are after all, false, and then finding this statement by Dell, we gave up and relented on the locked unit and its sexy hw. Now we get to see how forthcoming T-Mobile is with unlock codes, or have to spoof them on our OpenBTS setup.
- Blackberry - This one was a no brainer, though we are excited to try our first touchscreen equipped Blackberry Torch 9800.
- iOS - iPhone 4, you know because it has the wifis and the more geebees. Actually, we secretly wished someone had figured out a way to make phone calls on an iPad 3G so we could give one of those away, but it was not meant to be yet apparently even though the hw supports it.
PWN2OWN WIN: The browser prizes were increased to $15K. The Google folks have also tossed in $20K for a Chrome prize (thank you), but please note there are additional caveats to the Chrome prize, as they are primarily concerned about the Chrome codebase. You can win the ZDI prizes with a Windows or OSX kernel exploit for instance... Gentlemen start your debuggers...
PWN2OWN SUCK: Our vendor contacted us and informed us that unfortunately the manufacturing line for the excellent angular gaming beast the ASUS-G73SW has been hit by the Intel sandybridge SATA bug rework, and the ASUS manufacturing line for that unit is not scheduled to be restarted until after the competitions. Recalculating route to the next hottest and "droolworthy" laptop now....
You can follow @dragosr on twitter for more news and information about the conference (as well as cynical infosec curmudgeon grumblings, helicopter uav or 3-d printer trivia, and it news :).
In other news, this morning IANA said: "#IPv4: 102, 103, 104, 179 and 185 have been allocated. No unicast IPv4 /8s remain unallocated." How are your IPv6 cut-over plans going? We still have seats on both our IPv6 security courses, amongst our other excellent advanced training dojos.
