COMDEX Las Vegas 2003, IEEE Security & Privacy Magazine Spotlight the Intersection of Hardware and Software Security with Blockbuster Panel.Business Editors/High-Tech Writers COMDEX The former, premier computer trade show in the U.S. Although it grew into an end user event, it was originally created for dealers and distributors (it was the COMputer Dealers EXposition). Las Vegas Las Vegas (läs vā`gəs), city (1990 pop. 258,295), seat of Clark co., S Nev.; inc. 1911. It is the largest city in Nevada and the center of one of the fastest-growing urban areas in the United States. 2003 SAN FRANCISCO--(BUSINESS WIRE)--Nov. 11, 2003 Renowned Author and Security Pundit An expert or knowledgeable person. From "pandit" in Hindi. See guru. , Bruce Schneier, Joins Industry and Academic Leaders to Dissect dissect /dis·sect/ (di-sekt´) (di-sekt´) 1. to cut apart, or separate. 2. to expose structures of a cadaver for anatomical study. dis·sect v. the Security Issues of this Vulnerable Area MediaLive International, Inc., producer of the world's best-known events, related media and marketing services for technology buyers and sellers, announced today that its conference session entitled, "Where Hardware Security Meets Software Security Weak Points and Real Attacks," to be held from 3:30-4:45 PM, Tuesday, November 18, in room N245 of the Las Vegas Convention Center The Las Vegas Convention Center is owned and operated by the Las Vegas Convention and Visitors Authority and is located in Clark County, Nevada. It is one of the largest Convention centers in the world. At the end of 2004, the center had 3. , will be a centerpiece of the security conference at COMDEX Las Vegas 2003, November 16-20. The session, produced by IEEE (Institute of Electrical and Electronics Engineers, New York, www.ieee.org) A membership organization that includes engineers, scientists and students in electronics and allied fields. Security & Privacy magazine, with panelists Paul Kocher This article is about the cryptographer. For the author, see Paul H. Kocher. Paul Carl Kocher (born June 11, 1973) is an American cryptographer and cryptography consultant, currently the president of Cryptography Research, Inc. , president, Cryptography Research; Gary McGraw, chief technology officer, Cigital; and Bruce Schneier, chief technology officer, Counterpane Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. Inc., will focus on the distinct challenge of securing hardware systems. "I am gratified grat·i·fy tr.v. grat·i·fied, grat·i·fy·ing, grat·i·fies 1. To please or satisfy: His achievement gratified his father. See Synonyms at please. 2. that COMDEX has decided to focus on hardware security," said Schneier. "As networking becomes more embedded in hardware systems -- mobile devices, embedded controllers, entertainment consoles -- the security risks change. For companies to get the most out of their information technology, they need to clearly understand the security traded-offs that they will inevitably make. Events like COMDEX provide the scope and depth for these valuable discussions to take place." "One of the central concerns of any technology buyer is the security of their systems," said Eric Faurot, vice president and general manager of COMDEX. "With the participation of nationally and internationally respected panelists such as Bruce, Paul and Gary, I am pleased to be able to offer sound, industry leading guidance to attendees looking to better control the security risks to their systems." Within hardware systems, not only are creative hardware attacks such as differential power analysis (DPA DPA - Data Protection Act ) and "glitching Glitching is the practice of finding and exploiting flaws in video games to achieve something that was not intended by the game designers*. Glitching became controversial when multiplayer gaming became popular and glitches were exploited to give players an advantage over other " a risk, but because of new networking functionality on devices, remote software-based attacks are an increasing concern. When small device form factors include advanced network functionality, the tools at an attacker's disposal are more complex and potentially damaging. COMDEX's panel of experts will discuss real-world attacks on a cross-section of systems, covering hardware-based attacks, software-based attacks and those in-between. The panel will detail how to identify security risks throughout the development lifecycle -- from design to production. About the Panelists Paul Kocher Kocher has gained an international reputation for his consulting work and academic research in cryptography. He brings unsurpassed expertise to the Cryptography Research team, having provided applied cryptographic solutions to clients ranging from start-ups to Fortune 500 companies. An active contributor to major conferences and standards bodies Following are some of the standards bodies defined in this database. For Windows users of CDE, look up Lessons/Review/Associations. For Web users of CDE's online HTML version, review the Lessons list at the bottom of the definition. Organization Covers ANSI U.S. , Kocher has designed many cryptographic applications and protocols including SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. v3.0. His development of timing attacks to break RSA (1) (Rural Service Area) See MSA. (2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. and other algorithms received front-page coverage in the New York New York, state, United States New York, Middle Atlantic state of the United States. It is bordered by Vermont, Massachusetts, Connecticut, and the Atlantic Ocean (E), New Jersey and Pennsylvania (S), Lakes Erie and Ontario and the Canadian province of Times. More recently he has led research to develop Differential Power Analysis and designs for securing smart cards Example of widely used contactless smart cards are Hong Kong's Octopus card, Paris' Calypso/Navigo card and Lisbon' LisboaViva card, which predate the ISO/IEC 14443 standard. The following tables list smart cards used for public transportation and other electronic purse applications. and other devices against these attacks, as well as to design a record-breaking DES Key Search machine. Kocher also currently serves as Chief Scientist to ValiCert, Inc., a company implementing high-performance certificate revocation technologies. Paul holds a BS degree from Stanford University. Dr. Gary McGraw Dr. McGraw holds a dual Ph.D. in Cognitive Science and Computer Science from Indiana University and a BA in Philosophy from the University of Virginia. He is a noted authority on Java security and co-authored "Java Security: Hostile Applets, Holes, & Antidotes" (John Wiley & Sons, 1996), with Professor Ed Felten of Princeton University. The second McGraw/Felten book, "Securing Java: Getting Down to Business with Mobile Code," was published in 1998. Along with RST co-founder and Chief Scientist Dr. Jeff Voas, McGraw wrote "Software Fault Injection: Inoculating Programs Against Errors" (Wiley, 1998). He has written more than 50 peer-reviewed technical publications, consults with major e-commerce vendors including Visa, and is principal investigator on grants from Air Force Research Labs, DARPA DARPA: see Defense Advanced Research Projects Agency. (Defense Advanced Research Projects Agency) The name given to the U.S. Advanced Research Projects Agency during the 1980s. It was later renamed back to ARPA. , and NIST's Advanced Technology Program. Bruce Schneier Internationally renowned security technologist and author Bruce Schneier is both a founder and the chief technical officer of Counterpane Internet Security, Inc. Counterpane provides Managed Security Monitoring services to organizations worldwide. Schneier is the author of six books including the best seller "Beyond Fear: Thinking Sensibly About Security in an Uncertain World." One of his earlier books, "Applied Cryptography," now in its second edition, is the seminal work in its field and has sold over 150,000 copies and has been translated into five languages. He writes the free email newsletter Crypto-Gram, which has more than 90,000 readers. He has presented papers at many international conferences, and is a frequent writer, contributing editor, and lecturer on the topics of security, and privacy. COMDEX Las Vegas 2003 focuses on IT in the B2B (Business to Business) Refers to one business communicating with or selling to another. See B2B e-commerce, B2C and B2G. B2B - business to business marketplace and covers seven core technology themes: Linux and Open Source, Wireless and Mobility, the Digital Enterprise, Web Services, Windows Platform, On-Demand Computing and Security. Together, these themes represent the fastest growing areas of technology advancement that will drive the majority of market innovation in support of user needs in 2003 and beyond. How to Register for COMDEX Online registration is available immediately at www.comdex.com/lasvegas2003/register, or by calling toll free at 888-508-7510 or 508-743-0186 (outside the U.S.). Call center hours are Monday-Friday 7 AM-5 PM, Pacific. Closed Saturday and Sunday. About COMDEX Part of the MediaLive International, Inc. family of global brands, COMDEX hosts educational forums, events and conferences that focus on the technology areas most critical to today's IT buyer. COMDEX fosters ongoing collaboration, communication and commerce for the $879 billion IT market by connecting IT vendors with decision makers in Global 2000 companies. Upcoming regional events include COMDEX Sweden 2004, January 23-25, in Goteborg; COMDEX Saudi Arabia 2004, March 14-17, in Jeddah and COMDEX Canada 2004, March 24-26, in Toronto. About IEEE Security & Privacy IEEE Security & Privacy magazine, published by the IEEE Computer Society (body) IEEE Computer Society - The society of the IEEE which publishes the journal "Computer". http://computer.org/. , addresses a broad range of topics related to securing information and computing resources. Its primary goal is to bridge the gap between theory and practice. Published six times a year, the magazine provides a combination of research articles, case studies, tutorials and regular departments and columnists for the information security industry. IEEE Computer Society is part of IEEE, the largest and most influential technical professional organization in the world with 385,000 members. IEEE Security & Privacy is available by subscription only. For more information or to subscribe, visit www.computer.org/security. About MediaLive International, Inc. MediaLive International is producer of the world's best-known events, related media and marketing services for technology buyers and sellers. MediaLive International's products and services encompass the IT industry's largest exhibitions, including COMDEX and NetWorld+Interop, such highly focused educational programs as BioSecurity and Next Generation Networks, custom seminars including JavaOne, respected publications including Business Communications Review, and specialized vendor marketing programs. Created in 2003 from the assets of Key3Media, MediaLive International is a privately held company privately held company A firm whose shares are held within a relatively small circle of owners and are not traded publicly. headquartered in San Francisco, with offices throughout the world. For more information about MediaLive International, visit www.medialiveinternational.com. MediaLive International, COMDEX, NetWorld, NetWorld+Interop, Next Generation Networks, Business Communications Review, BioSecurity and associated design marks and logos are trademarks or service marks owned or used under license by MediaLive International, Inc., and may or may not be registered in the United States and other countries. Other names mentioned may be trademarks or service marks of their respective owners. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion