Session Schedule

Session Schedule2019-01-07T06:25:51+00:00

Tuesday

1:00 PM

iOS Application Security Testing

Presented by: Hans Weisheimer
Time: Tuesday 1:00 PM - 5:00 PM

This hands-on session is aimed at mobile app developers, QA testers, aspiring security testers, and other suspicious persons. Modern mobile app development abstracts away most low-level interaction with the operating system. It is common to rely on third-party modules to handle sensitive data or...

Room: Aloeswood / LeopardwoodTrack: SecurityTags: Mobile, Security, TestingFormat: PreCompilerLevel: Intermediate

Wednesday

8:00 AM

Application Security, Basic, Intermediate, Advanced

Presented by: Bill Sempf
Time: Wednesday 8:00 AM - 12:00 PM

Bill will be joining us to teach a dynamic course to help us think like an attacker and give us all the coding tips we need to stop them cold in their tracks. Even the most experienced developers are sure to pick up some new tips and tricks. This hands-on half-day workshop will have something for...

Room: Aloeswood / LeopardwoodTrack: SecurityTags: Security, TestingFormat: PreCompilerLevel: Intermediate

Thursday

8:00 AM

Threat Modeling on the Family Road Trip and Other Strategies for Delivering Secure Applications

Presented by: Angela Pinney
Time: Thursday 8:00 AM - 9:00 AM

Gene Spafford said: “The only truly secure system is one that is powered off...” Everyone wants secure applications, but creating them is hard, and we don't all have security certifications. How do you know where to start when "security" is not your full-time job? And how do you get the rest of...

Room: Aloeswood / LeopardwoodTrack: SecurityTags: Security, Soft Skills/Business, TestingFormat: General SessionLevel: Introductory and overview

Friday

8:30 AM

Hack Your App - Intro to Mobile Security Testing

Presented by: Hans Weisheimer
Time: Friday 8:30 AM - 9:30 AM

Your phone really doesn’t want you to see what’s going on under the hood - it’s a feature. Many of the introspection capabilities that exist for web development are absent by default on mobile platforms. This is particularly frustrating when you need to validate assumptions or security...

Room: Aloeswood / LeopardwoodTrack: SecurityTags: Mobile, Security, TestingFormat: General SessionLevel: Introductory and overview
9:45 AM

Continuous Security

Presented by: Craig Hills
Time: Friday 9:45 AM - 10:45 AM

A presentation on how to build security testing into your CI/CD pipeline. The primary goal is to think about what the appropriate level of testing is for your project, and determine how to make the most significant improvements to your security, while being cost effective.

Room: Aloeswood / LeopardwoodTrack: SecurityTags: Ruby/Rails, Security, TestingFormat: General SessionLevel: Introductory and overview