Penetration Testing mailing list archives
Call for Participation - DIMVA 2010
From: Sebastian Schmerl <sbs () informatik tu-cottbus de>
Date: Thu, 20 May 2010 20:00:14 +0200
C A L L F O R P A R T I C I P A T I O N
======================================================================
DIMVA 2010
Seventh International Conference on
Detection of Intrusions and Malware & Vulnerability Assessment
Organized by GI SIG SIDAR
In Cooperation with
IEEE Computer Society Task Force on Information Assurance
Bonn, Germany
July 8-9 2010
http://www.dimva.org/dimva2010
info () dimva org
----------------------------------------------------------------------
The annual DIMVA conference serves as a premier forum for advancing
the state of the art in intrusion detection, malware detection, and
vulnerability assessment. Each year DIMVA brings together
international experts from academia, industry and government to
present and discuss novel research in these areas. DIMVA is organized
by the special interest group Security - Intrusion Detection and
Response (SIDAR) of the German Informatics Society (GI). The
conference proceedings will appear in Springer's Lecture Notes in
Computer Science (LNCS) series.
High-class Keynotes
DIMVA 2010 conference program will include 3 high-class keynotes. The
confirmed speakers are: Jose Nazario (Arbor Networks), Carel van
Straaten (Spamhaus), and Marc Dacier (Symantec/Eurecom).
Rump session
As in previous years, DIMVA 2010 will hold a Rump Session: a series
of short and entertaining talks where attendees can present recent
research results, work in progress, or other topics of interest to
the community. Please contact the Rump Session Chair for submission
questions.
Sponsorship Opportunities
We solicit interested organizations to serve as sponsors for DIMVA
2010; please contact the sponsorship chair for information regarding
corporate sponsorship.
Gold Sponsor: Qualys, http://www.qualys.com
Sponsor: FGA Global, http://www.fgaglobal.com
Preliminary Program
Thursday, July 8
9:00-9:15 Opening remarks
9:15-10:30 Keynote
Jose Nazario
Arbor Networks
10:30-11:00 Coffee break
11:00-12:30 Session 1 - Host Security
HookScout: Proactive Binary-Centric Hook Detection
Heng Yin, Pongsin Poosankam, Steve Hanna,
and Dawn Song
Conqueror: Tamper-proof Code Execution on Legacy
Systems
Lorenzo Martignoni, Roberto Paleari,
and Danilo Bruschi
dAnubis - Dynamic Device Driver Analysis Based on
Virtual Machine Introspection
Matthias Neugschwandtner, Christian Platzer,
Paolo Milani Comparetti, and Ulrich Bayer
12:30-13:30 Lunch
13:30-14:45 Invited Talk
Carel van Straaten
Spamhaus
14:45-16:00 Session 2 - Trends
Evaluating Bluetooth as a Medium for Botnet Command
and Control
Kapil Singh, Samrit Sangal, Nehil Jain, Patrick
Traynor, and Wenke Lee
Take a Deep Breath: a Stealthy, Resilient and
Cost-Effective Botnet Using Skype
Antonio Nappa, Aristide Fattori, Marco Balduzzi,
Matteo Dell'Amico, and Lorenzo Cavallaro
Covertly Probing Underground Economy Marketplaces
Hanno Fallmann, Gilbert Wondracek,
and Christian Platzer
16:00-16:15 Coffee break
16:15-17:15 Session 3 - Vulnerabilities
Why Johnny Can't Pentest: An Analysis of Black-box
Web Vulnerability Scanners
Adam Doupe, Marco Cova, and Giovanni Vigna
Organizing Large Scale Hacking Competitions
Nick Childers, Bryce Boe, Lorenzo Cavallaro,
Ludovico Cavedon, Marco Cova, Manuel Egele,
and Giovanni Vigna
17:15-17:45 Meeting of GI SIG SIDAR (open for all interested
attendees)
Friday, July 9
9:00-10:15 Invited Talk
Marc Dacier
Symantec/Eurecom
10:15-10:45 Coffee break
10:45-11:45 Session 4 - Intrusion Detection
An Online Adaptive Approach to Alert Correlation
Hanli Ren, Natalia Stakhanova and Ali Ghorbani
KIDS - Keyed Intrusion Detection System
Sasa Mrdovic
11:45-12:30 Rump Session
12:30-13:30 Lunch
13:30-14:30 Session 5 - Web Security
Modeling and Containment of Search Worms
Targeting Web Applications
Jingyu Hua and Kouichi Sakurai
HProxy: Client-side detection of SSL stripping
attacks
Nick Nikiforakis, Yves Younan and Wouter Joosen
14:30-14:45 Concluding remarks
Organizing Committee
General Chair: Marko Jahnke, Fraunhofer FKIE, Wachtberg,
Germany (info () dimva org)
Program Chair: Christian Kreibich, International Computer
Science Institute, Berkeley, USA
(pc-chair () dimva org)
Local Chair: Jens Toelle, Fraunhofer FKIE, Wachtberg,
Germany (info () dimva org)
Rump Session Chair: Sven Dietrich, Stevens Institute of Technology,
USA (rump-chair () dimva org)
Sponsorship Chair: Felix Leder, University of Bonn, Germany
(sponsor-chair () dimva org)
Publicity Chair: Sebastian Schmerl, Technical University of
Cottbus, Germany (publicity-chair () dimva org)
Program Committee
* Michael Bailey, University of Michigan, USA
* Herbert Bos, Vrije Universiteit Amsterdam, Netherlands
* Juan Caballero, CMU/UC Berkeley, USA
* Herve Debar, Telecom SudParis, France
* Sven Dietrich, Stevens Institute of Technology, USA
* Holger Dreger, Siemens CERT, Germany
* Ulrich Flegel, SAP Research, Germany
* Carrie Gates, CA Labs, USA
* Chris Grier, University of California, Berkeley, USA
* Guofei Gu, Texas A&M University, USA
* Thorsten Holz, Vienna University of Technology, Austria
* Piotr Kijewski, NASK/CERT Polska, Poland
* Engin Kirda, Eurecom, France
* Christopher Kruegel, University of California, Santa Barbara, USA
* Wenke Lee, Georgia Institute of Technology, USA.
* Corrado Leita, Symantec Research Labs, France
* Kirill Levchenko, University of California, San Diego, USA
* Pavel Laskov, University of Tuebingen, Germany
* Ludovic Me, Supelec, France
* Michael Meier, Technical University of Dortmund, Germany
* Tyler Moore, Harvard University, USA
* Lexi Pimenidis, iDev GmbH, Germany
* Moheeb Rajab, Google/Johns Hopkins University, USA
* Sebastian Schmerl, Technical University of Cottbus, Germany
* Robin Sommer, ICSI/LBNL, USA
* Henry Stern, Cisco/Ironport, USA
* Diego Zamboni, HP Professional Services, Mexico
Steering Committee
Chairs:
* Ulrich Flegel, SAP Research, Germany
* Michael Meier, Technical University of Dortmund, Germany
Members:
* Roland Bueschkes, RWE, Germany
* Danilo M. Bruschi, Universita degli Studi di Milano, Italy
* Herve Debar, Telecom SudParis, France
* Bernhard Haemmerli, Acris GmbH & HSLU Lucerne, Switzerland
* Marc Heuse, Baseline Security Consulting, Germany
* Klaus Julisch, IBM Zurich Research Lab, Switzerland
* Christopher Kruegel, UC Santa Barbara, USA
* Pavel Laskov, University of Tuebingen, Germany
* Robin Sommer, ICSI/LBNL, USA
* Diego Zamboni, HP Professional Services, Mexico
--
_____________________________________________________________________
Sebastian Schmerl Tel: +49 (0) 355 69 20 29
sbs () informatik tu-cottbus de Fax: +49 (0) 355 69 21 27
BTU Cottbus
Computer Networks and Communication System
P.O.Box 10 13 44, 03013 Cottbus, Germany
http://www-rnks.informatik.tu-cottbus.de/~sbs
_____________________________________________________________________
------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board
Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Call for Participation - DIMVA 2010 Sebastian Schmerl (May 21)