Session Schedule

Session Schedule2019-01-07T06:25:51-05:00


No Sessions


8:00 AM

Realizing The Benefits Of Container DevSecOps With AWS

Presented by: James Strong
Time: Wednesday 8:00 AM - 12:00 PM

Attendees will learn how to set up, harden, & secure a container pipeline in AWS in this workshop using no servers for that pipeline. Please attend, If you’re interested in integrating security and compliance into a container pipeline to realize the benefits of DevSecOps. We will be using these...

Room: Indigo BayTrack: SecurityTags: SecurityFormat: PreCompilerLevel: Intermediate


4:45 PM

Getting started with Kubenetes Policy Development

Presented by: Robert Sirchia
Time: Thursday 4:45 PM - 5:45 PM

This session is designed to get a user started in writing Kubernetes policies in Rust. We will, touch on what is a policy. How we are going to leverage Rust and Web Assembly to write our policy. What tools you will need to develop a policy. Build out a sample policy and test it on a local...

Room: CypressTrack: SecurityFormat: General SessionLevel: Intermediate


8:30 AM

Introduction to inner-loop security. Shifting left, but better.

Presented by: Josh Wallace
Time: Friday 8:30 AM - 9:30 AM

We can barely make it through an AppSec talk or article without hearing about the wonders of “shift left” and how it is the key to solving all of our security problems. Every intro to AppSec talk starts with the cost savings and return on investment associated with discovering security defects...

Room: CypressTrack: SecurityTags: Security, TestingFormat: General SessionLevel: Intermediate
11:00 AM

Mistaken Identity: SAML and OAuth Security

Presented by: Wolfgang Goerlich
Time: Friday 11:00 AM - 12:00 PM

While everyone was focused on credentials, criminals quietly moved to exploiting mistakes in identity. You have a long and strong password? That’s sweet. You’re using all three types of multi-factor? That’s cute. It won’t matter when the adversaries compromise identity protocols after...

Room: Salon A/HTrack: SecurityTags: SecurityFormat: General SessionLevel: Intermediate