SANS Institute

SANS @Night

Registration "Popcorn" Reception
- Thursday, April 17
- Northern-Southern Hemisphere Foyers
- 5pm - 7pm
- Register early and get acquainted with your fellow students!

SANS Technology Institute Brief
- President Stephen Northcutt
- Saturday, April 19
- 6pm - 7pm
- Asia 5

Linux/Unix Command-Line Kung Fu
- Hal Pomeranz
- Saturday, April 19
- 7pm- 9pm

Strong command-line skills can save you time, allow you to more effectively react to security threats, and just make you more comfortable in the Linux/Unix environment. Think you know everything there is to know about Unix shell pipelines, input/output redirection, and command history? Well, you're wrong, and we'll prove it to you by demonstrating some neat tricks and dirty hacks that will make life easier for any Unix Admin, Security Professional, or Auditor. Also, time permitting, we'll give you a chance to play "Stump the Expert".

Security Strategies Within The Perimeter
- Chris Brenton
- Saturday, April 19
- 7pm - 9pm

Attackers have become much savvier at payload-based attacks and reverse tunnel connections. The result is that perimeter security is less capable of mitigating modern attacks against corporate assets. This talk will focus on integrating security at the host level as well as directly into the network fabric. The strengths as well as the limitations of application control, network access control and host-based intrusion prevention will be discussed in detail.

GIAC Brief
- Sunday, April 20
- Jeff Frisk
- 6pm - 7pm
- Northern Hemisphere Salon A

SANS Mythbusters: The Top Incident Response and Computer Crime
- Investigation Myths
- Rob Lee
- Monday, April 21
- 7pm - 8pm

How many times should I wipe a hard drive? What happens if I do not follow chain of custody? What happens if I accidentally manipulate key evidence? If you are asking yourself these questions, then this hour long discussion is for you. Is it confirmed or is it a myth? SANS Mythbusters will confront what Incident Responders and Computer Crime Investigators have faced in every case and will settle the record once and for all.

Future Trends in Network Security
- Eric Cole
- Monday, April 21
- 8pm - 9pm

Malicious code and other attacks are increasing in intensity and the damage that they cause. With little time to react, organizations have to become more proactive in their security stance. Reactive security will no longer work. Therefore, organizations need to better understand what the future trends, risks, and threats are so that they can be better prepared to make their organizations as secure as possible. Dr. Cole's in-depth, cross-industry experience allows him to give relevant examples in every instance. This presentation covers security issues that are relevant to IT managers and administrators alike.

Top 10 Java Security Issues and Vulnerability Demonstration
- Stephen Northcutt - sans.edu
- Paul Wright - betfair.com
- Tuesday, April 22
- 6pm - 7pm

Join Stephen Northcutt and Paul Wright for this informative talk which will summarize current best practice Java Application Security audit into a must-know Top 10 techniques. The talk will be exemplified by a live demonstration of a critical Java vulnerability and, most importantly, how to secure against it's exploitation.

The Law of E-mail Retention and E-Discovery
- Ben Wright
- Tuesday, April 22
- 7pm - 8pm

A hot topic in litigation is the discovery of electronic records such as e-mail. The retention, searching and disclosure of e-mail in a lawsuit can be very expensive. But courts are serious about it and punishing enterprises that don't play by the rules. Mr. Wright will offer some practical suggestions and predictions for the future.

Top 5 Perimeter Breaches
- Chris Brenton
- Tuesday, April 22
- 8pm - 9pm

Attack techniques have evolved to where traditional packet filtering firewalls, proxies, and even intrusion prevention systems are dramatically less effective at securing a corporate network. The common flaw in most perimeters is that they are designed to thwart inbound session establishment, while being relatively permissive in what they pass towards the Internet. This presentation will discuss the top five traffic patterns that currently breach most network perimeters. A round table discussion will follow this talk.

SANS Technology Institute Master of Science degree programs offer candidates an unparalleled opportunity to excel in the two aspects of security that are most important to the success of their employer and their own careers: management skills and technical mastery.

Over the next 20 years, information technology will become so central to all aspects of our lives, from recreation to warfare, that information security will rise in importance and scale. It will become a profession with more than 500,000, and perhaps 1,000,000 people employed in positions in which they have significant roles in shaping the security of their employers' systems. Those people need managers - technical directors and chief information security officers who are deeply skilled in the technology and who have excellent management skills.

If you aspire to help lead your organization's or your country's information security program, and you have the qualifications, organizational backing, and personal drive to excel in these challenging degree programs, we will welcome you into the program.

The following SANS Technology Institute (STI) master's students will be making the following presentations as part of their graduation requirements:

Sunday, April 20, 2008

Intrusion Detection: Catch The Bad Guys Before They Compromise Your Network
- Manuel Santander
- 6:00pm-6:40pm
- Asia 4

Threat Assessment 101: Moving Beyond Checklist Security
- Mason Pokladnik
- 6:50pm-7:30pm
- Asia 4

Genetic Regular Expressions: A New Method for Detecting and Blocking Spam
- Eric Conrad
- 6:00pm-6:40pm
- Asia 5

Log Management SIMetry: A Step by Step Guide to Selecting the Correct Solution
- Jim Beechey
- 6:50pm-7:30pm
- Asia 5

Creating Actionable Information from IntrusionDetection System (IDS) Alerts
- Russell Meyer
- 7:40pm-8:20pm
- Asia 4