| New User, Welcome! Login |
cyber war
-----
Call for Papers!
Conference on Cyber Warfare
June 17-19, 2009
Tallinn, Estonia
Cooperative Cyber Defence Centre of Excellence
Conference on Cyber Warfare
June 17-19, 2009
Tallinn, Estonia
www.ccdcoe.org
Jaak Aaviksoo, Estonian Defence Minister
Opening Remarks
KEYNOTE
CFP due March 15, 2009
Conference on Cyber Warfare in Tallinn, Estonia: June 17-19, 2009
Host: Cooperative Cyber Defence Centre of Excellence (www.ccdcoe.org)
CCD CoE is soliciting research papers within the emerging field of
cyber warfare, including but not limited to:
Concepts and Doctrine
More of that, living here, and working in the IT sector for a half of my
life I have noticed none of increasing hacker activity on my servers. (also
the company servers)
Neither did a lot of my friends here. In fact, yet I have not seen anyone,
except for some political party though, who would have suffered from so
called "cyber-war".
All those stories about banks going offline, etc. etc. etc. - well may I
tell you that my visa was working properly all the time, and my bank was
24/7 available.
This all led me to the conclusion, that all the hush is about a couple (ok,
#####
Greetings from the Cooperative Cyber Defence Centre of Excellence (CCD CoE) in Tallinn, Estonia!
Registration is now open for the CCD CoE Conference on Cyber Warfare, which will take place at the Estonian National Theater on June 17-19, 2009.
Following a worldwide Call for Papers, there will be 29 presentations given by researchers from 13 countries. Highlights include:
• Jaak Aaviksoo, Estonian Defence Minister
• Information Warfare Monitor: Tracking GhostNet: Investigating a Cyber Espionage Network
> More of that, living here, and working in the IT sector for a half of my
> life I have noticed none of increasing hacker activity on my servers. (also
> the company servers)
> Neither did a lot of my friends here. In fact, yet I have not seen anyone,
> except for some political party though, who would have suffered from so
> called "cyber-war".
> All those stories about banks going offline, etc. etc. etc. - well may I
> tell you that my visa was working properly all the time, and my bank was
> 24/7 available.
>
> This all led me to the conclusion, that all the hush is about a couple (ok,
+ - new(new version)Tool being released
First list of speakers (not in any specific order)
**0. Anonymous - Desi Special(pronounced pay-sul, as in chai) Hacking
+1. Abhisek Datta - Software Fuzzing with Wireplay
2. WhiteKnight - The art of cyber-warfare
3. Veysel Ozer - The evil Karmetasploit upgrade
+4. Anant Kochhar - Malware detection tool for Websites - A proof of Concept
5. Cassio Goldshmidt - Tracking the progress of SDL program
6. Vinoth Sivasubramanian - Defending Industrial espionage in Today's
Environment.
=====
http://thepiratebay.org/torrent/4654588/HITBSecConf2008_-_Malaysia_Videos___Day_1
Keynote Address 1: The Art of Click-Jacking - Jeremiah Grossman
Keynote Address 2: Cyberwar is Bullshit - Marcus Ranum
Presentations:
- Delivering Identity Management 2.0 by Leveraging OPSS
- Bluepilling the Xen Hypervisor
attacking targets which seem affiliated with the opposing side, and vise-versa.
Up to the Estonian war, such attacks would be called "hacker enthusiast
attacks" or "cyber terrorism" (of the weak sort). Nowadays any attack with a
political nature seems to get the "information warfare" tag. When 300
Lithuanian web sites were defaced last month, "cyber war" was the buzzword.
Running security for the Israeli government Internet operation and later the
Israeli government CERT such attacks were routine, and just by speaking on them
in the local news outlets I started bigger so-called "wars" when enthusiasts
responded in the story comments and then attacks the "other side".
==========================================
KEYNOTE 1 - "The Art of Click-Jacking" - Jeremiah Grossman (Founder &
Chief Technology Officer, White Hat Security.)
KEYNOTE 2 - "Cyberwar is Bullshit" - Marcus Ranum (Chief Security
Officer, Tenable Network Security)
KEYNOTE 3 - "Welcome to the 0wned World" - Dr. Anton Chuvakin (Chief
Research Officer, Log Logic Inc.)
system allows you to join in and comment and discuss the incidents.
The first incidents reports for 2009 are:
* WHID 2009-2: Prominent Twitter accounts hacked
(http://www.xiom.com/whid-2009-2)
* WHID 2009-1: Gaza conflict cyber war (http://www.xiom.com/whid-2009-1)
Other incidents of interest added recently to WHID:
* WHID 2008-43: Russian nuclear power web sites attacked amid accident
rumors
* WHID 2008-36: RBS WorldPay Data Breach Hits 1.5 Million
we made much progress in our efforts fighting cyber crime, we had nearly
no effect what-so-ever on the criminals and the attackers. Non. They
maintain their business and we play at writing analysis and whack-a-mole.
Using the botnets mailing list, I am burrowing a page from the apparent
Russian cyber war doctrine, getting people involved, engaged. Personally
aware and a part of what's going on.
It can't hurt us, and perhaps now, four years over-due and two years after
the previous attempt, we may be ready to give it a go and test the
concept.
A subset of topics we would be interested in (but not
limited to): Application security, Web security, social engineering,
Mobile Networks GSM/CDMA/3G, Bluetooth, OS/Kernel, Virtualization,
cloud security/hacking, protocol vulnerabilities, hardware security,
cyber warfare, cyber forensics, cryptography, spam, malware, L2-L4
hacking.
SUBMISSIONS
____________
Initially an abstract will be required with your details.
[--- SPEAKING LINE UP ---]
Speaker: Jayson Street, CISSP (Stratagem One)
Keynote: "Dispelling the myths and discussing the facts of global
cyber-warfare"
Language: English
Track: Information warfare
Speaker: Stephen Ridley (Matasano)
their infrastructure
(http://www.informationweek.com/showArticle.jhtml?articleID=199602023)
not an 0day attack.
0day's defined as "unpublished exploit" wouldn't do much in a
cyberwarfare theater as country against country as the purpose of such
warfare would LIKELY be to disconnect/disrupt communications. In the
cases of industrial/country vs. country espionage it might (likely) will
be more effective for the long haul but in the short term, 0days will
be useless in this type of "cyberfight". Think about it logically, you
want to "disrupt" country X's communications, not tap them. You'd want
|
|
|
