Check out our YouTube playlist to watch all the talks from Emerging Technologies for the Enterprise 2020. Abstract “Security though obscurity is no security.” Well… sort of. The truth is much more complicated. Obfuscation is difficult, fragile, and a never ending battle. But sometimes it’s the only tool for the job, whether to protect a … Read More
Check out our YouTube playlist to watch all the talks from Emerging Technologies for the Enterprise 2020. Abstract The delivery of software is happening faster and faster. The use of microservices, agile development, CI/CD, and containers is changing the delivery time of software. At the same time, the number of software vulnerabilities is also growing. … Read More
Check out our YouTube playlist to watch all the talks from Emerging Technologies for the Enterprise 2020. Abstract In this talk, Christopher Oster (Chief Software Systems Architect at Lutron Electronics) will provide a deep dive into the challenges and architectural considerations required to build a highly secure, responsive and scalable IoT cloud connecting a million … Read More
In this session we will walk through the steps required to securely communicate with your device using the Device Shadow service. This will include an overview of user authentication and authorization, connecting to AWS IoT, and using MQTT to communicate with the device’s “Device Shadow” to read and update its state. All this, using the AWS Amplify CLI and SDK.
This presentation will take you through the biggest areas where you need to focus your efforts in order to keep your data safe at AWS, and will show some real-life examples of what could go wrong if you make compromises or allow bad practices.
This presentation will take you through the biggest areas where you need to focus your efforts in order to keep your data safe in AWS, and will show some real-life examples of what could go wrong if you make compromises or allow bad practices.
Abstract Many believe that better security comes from robust independent gating, but DevOps has proven that you can safely deploy orders of magnitude faster without human gating. Comcast uses a DevSecOps approach which focuses on automation, speed and team ownership of end-to-end product security lifecycle. It’s agile and developer-focused. It’s about building security in rather … Read More
Justin Reagor attended “The Eleventh HOPE” – a conference from the Hacker Quarterly. This is his show review.
This talk has two parts. First, I will present technical ideas from research, including my own, that help secure software by construction. Even though these are reasonable ideas, however, the gap between academia and industry often prevents these ideas from becoming realized in practice. Second, I will discuss what prevents longer-term security solutions from being commercialized, how we started the Cybersecurity Factory accelerator bridge the research/industry gap, and how we can work together to address the issues that remain.
Social engineers use a dangerous combination of technology and old-fashioned con artistry to infiltrate organizations every day. In this talk we’ll walk through the social engineering process including research, target selection, attack selection, and attack execution.