عربــــي

MEITSEC Highlights

Cyber Terrorism: The UK Files, Prof. Clive Walker

 This presentation session will discuss the legal responses to cyber-terrorism and the Internet’s ancillary role in furtherance of terrorism within the United Kingdom, considering the existing limitations of a legalistic approach to the problem. Certainly, the UK legal system is a jurisdiction with a long history of anti-terrorism legislation, but emerging uses of the Internet in a supporting role to terrorist activities and the use of the Internet as the mode or the object of attack are changing the legal landscape.

Cooperating with the Prosecution, Michael J. Gunnison

Private sector’s reluctance in reporting cybercrimes can be largely attributed to the risk of bad publicity and the lack of understanding of the processes involved in a criminal prosecution of the perpetrators.
This talk will discuss issues of universal concern, such as the preservation of evidence, the need for specially trained prosecutors, who can communicate with and understand corporate security officers, and will present real-life cases from Mr. Gunnison’s career as a US federal prosecutor.

Injecting RDS-TMC Traffic Information Signals or How to Freak Out Your Satellite Navigation, Andrea Barisani

 All modern in-car Satellite Navigation systems use RDS-TMC to receive broadcasts containing up to date information about traffic conditions such as queues and accidents and provide detours in case they affect the plotted course. The system is increasingly being used around Europe and North America.
The audience will be introduced to RDS/RDS-TMC concepts and protocols and to the process of decoding/encoding such messages using a standard PC and cheap home-made electronics, with the intent of injecting information in the broadcast RDS-TMC stream and manipulating the information displayed by the  satellite navigator. This session will practically demonstrate the obscure and scary messages that can be broadcast (and that are not usually seen over legitimate RDS-TMC traffic), the limits of standard SatNav systems when flooded with unusual messages and the role that RDS-TMC injection / jamming can play in social engineering attempts.

Attacking AJAX Applications, Zane Lackey

New technologies are making web application security much more complicated. The recent cases of account harvesting at social networking websites, such as MySpace; as well as emerging cases of XSS worming and attacks against popular web-base d services, such as Yahoo Mail, are an indicator of a changing Web 2.0 security landscape. This talk will discuss how AJAX has changed web attacks, whether AJAX can be trusted as a framework for secure application delivery and will provide an in-depth look into the world of XSS and XSRF security.

VoIP Security, Zane Lackey

Have you heard of caller spoofing, VoIP phishing, SPIT, RTP injection, IAX dictionary attacks? Most people would assume that telephone calls and voicemail are difficult to tap into or intercept. Or that maybe only law enforcement can listen to their VoIP conversations after obtaining proper court permission. Well, both assumptions are not true. Attend this presentation and see how VoIP services are abused, and what are the methods for defending your VoIP traffic using both infrastructure devices and emerging security technologies for softphones.

The ISO/IEC 27001:2005 Journey at DUBAL, Ahmad AlMulla

We look at the journey of one of the leading aluminum smelters in the world, Dubai Aluminum Company Limited (DUBAL), in protecting and securing its information assets to provide assurance and availability to the stakeholders and information owners by way of implementing an Information Security Management System (ISMS) and its subsequent certification on ISO/IEC 27001:2005, challenges it faced and the lessons learnt. We also look at how DUBAL is monitoring and maintaining its ISMS and the various continuous improvement initiatives and programs and the day to day challenges that it continues to face and the benefits realized by the business.

SCADA Logical Security: Common Mistakes and Real-Life Experiences, Raoul Chiesa

Supervisory Control and Data Acquisition (SCADA) systems control critical infrastructure components and services, such as water and energy distribution, electricity generation, chemical processing and storage, but the lack of concern about security and authentication in the design, implementation and operation of these systems is simply staggering. This talk will introduce the audience to SCADA environments and their security model, outlining key differences with typical enterprise cybersecurity best practices. Speakers will analyze multiple real-life scenarios, related to various industries - petrochemical, energy and utilities; and will describe the most common security misconceptions, as well as the dire consequences of such misconceptions to a production environment. In addition, real SCADA systems’ response to cyber attacks will be demonstrated.

ISECOM’s Open Source Security Testing Methodology Manual 3.0, Raoul Chiesa

Since its appearance in 2001, the Open Source Security Testing Methodology Manual (OSSTMM) has become an international standard for professional penetration testing. The new 3.0 release enhances the Risk Assessment Values (RAV) and completely changes the OSSTMM approach. This talk will demonstrate the OSSTMM in operation, its structure, and its value in aligning the penetration tester and the security auditor approaches.

Wireless Network Security, Dr. Fadi Aloul

This talk will discuss the results of a recent study conducted by the American University of Sharjah into the UAE general population’s wireless security awareness – a wardrive run has revealed more than 4000 access points in Dubai and Sharjah. The presentation will also include various methods for hacking wireless networks as well as the steps for securing such networks.

Information Security Compliance, Simone Seth

This presentation session will take the attendee through the process that is defining what is meant by information security compliance and determining how to demonstrate it.  A framework for compliance management will be explored and hints and tips for navigating the global compliance landscape will be addressed. Organizations have traditionally needed to comply with a host of regulations and industry standards world-wide that have information security implications. The focus on information security, either explicitly or implicitly detailed in legislation, regulations and standards has increased exponentially in recent years. Although business units in organizations are ultimately responsible for compliance and would be impacted directly by a failure to be compliant, internal service functions, particularly information security and information risk management, often have responsibility for delivering and reporting on the programs associated with managing compliance risk operations.

SecureParent Project: Home, Secure Home, Faiz AlRaisi

This session introduces SecureParent – a free portal launched by a group of information security experts from different parts of the world, spreading awareness and educating parents in a simple and easy to understand non-technical language. This initiative brings free information security content to ordinary users, and is even available in four different languages: English, Arabic, Spanish and Chinese.
Having your children surfing the net for fun and education will bring you face to face with a dilemma that every responsible parent needs to resolve. How to protect your family from the risk that Internet use brings? We believe that SecureParents can serve a single source of information helping parents to better understand the risks, associated with the use of Internet, and will help provide their families a better, more secure online experience.

Building A Technical Anti-Fraud Program, Jean-Francois Legault

From performing fraud risk assessments to investigation fraud, technology plays an important part.  This session will examine technical aspects of fraud prevention, detection and investigation.  Participants will gain exposure to the technical aspects related to fraud management, including technical controls, continuous auditing and data analysis as well as computer forensics.

Computer Forensic Case Studies:  Interrogating the Digital Witness, Carole Longendyke

Referred to frequently as “the smoking gun,” the crucial evidence discovered at the digital crime scene can take many forms.  Unlike a smoking gun or a bloody knife, the link between electronic evidence and a particular crime or event may not be immediately obvious.  The digital investigator must interrogate the digital media for clues, and then combine the clues with known facts in order to extrapolate a theory.  Knowing where to find the clues is every bit as important as knowing which questions to ask a human witness.  Asking the wrong questions or omitting a critical one can take the investigation in an undesirable direction; or worse, no direction at all. This story-telling session will take a fascinating look into actual cases where electronic evidence has been used to solve a mystery, implicate a suspect, or simply open the doors to a new direction in an investigation.

Building an Identity-Centric Web Services Security

Service Oriented Architectures and Web services (SOA/WS) are emerging as the next major wave of application architectures for IT intensive enterprises. Organizations are looking to SOA/WS to improve the speed, flexibility, and cost of building and deploying applications for both internal and external uses. However, as with all new IT architectures, in particular those that are highly distributed, security management can be a significant challenge. Without a proper architecture application security is often created in silos which lead to increased risk of information leakage, cost of security administration and regulatory compliance. CA SOA Security Manager (CA SOA SM) is an Identity-Centric Web Services Security Software Solution and lets examine how it helps organizations to achieve the Identity-Centric Web Services Security.

Governance, Risk and Compliance and CA’s Innovation

The nature of enterprise risks associated with IT is becoming more varied and complex with each passing year. This is true because the number of national and international regulations continues to grow, even as existing regulations undergo near constant change. If this weren’t enough, business service architectures continue to become more complex and dynamic. These trends are combining to explode the cost of compliance. CA’s IT Governance Risk and Compliance Solution (IT GRC) tackles this demand with a portfolio approach that can also drive significant long term benefits for both IT and the business. Let’s examine CA’s IT GRC solution.

A National CERT – what can it do for you?

Q-CERT is Qatar’s national information security centre, providing expert assistance and support to improve cybersecurity in Qatar and the region. Q-CERT is working intimately with the Qatar Government and private sector Critical Sector Organisations to implement a framework of measures that will raise the bar on information security in the country and the region.
This presentation will detail the measures that are being undertaken in Qatar and what Q-CERT is offering to its critical infrastructure partners to strengthen their business capability, through cyber-security measures affecting people, policy and procedures, training and technical capability. This will include: providing accurate and timely threat and vulnerability information; serving as a central incident reporting and analysis centre, promoting standards, processes, methods, and tools, information and training ; providing an objective, unbiased and independent source of advice.

MEITSEC Workshop Highlights

MOBILE PHONE FORENSICS WORKSHOP

SUMMARY OF TOPICS COVERED

1) Getting Started in Phone Forensics

• Objectives in Mobile Phone Forensics
• Analysis of SIM cards, mobile handsets, & removable media (memory cards)
• Equipments needed
• SIM Card Reader
• Forensic SIM & Handset Reading Software
• Data Cables
• Infra-red Reader
• Bluetooth Adapter

2) SIM Reading & Analysis

• Introduction of SIM Cards
• SIM Card Reading Hands-On
• Interpreting the Results
• User Data on the SIM
• Other Data on the SIM
• PIN Protection

3) Handset Reading & Analysis

• Introduction of Mobile Phone Handsets
• Handset Reading Hands-On
• Interpreting the Results
• Retrieval of Data
• Current Tool Limitations
• Technical Problems
• Legalities & Other Considerations

4) Good Practice in Phone Forensics

• Seizure & Handling
• Network Isolation During Examination
• Connectivity Preferences
• Phone Number Confirmation
• Manual Examination & Photography
• Logging

ISO 27001 IMPLEMENTATION WORKSHOP

In this Information Age, one of the most important activities is safeguarding the information, as the information gives the competitive edge and major growth potential for the business.

The ISMS implementation workshop is designed to impart the knowledge required to establish, manage and maintain an effective Information Security Management System (ISMS), based on the ISO 27001 Standard. The guidance for ISMS is provided by the ISO 17799 standard.

The ISO 27001standard expects an organization to implement an efficient and effective management system to ensure appropriate information security in place. The information security implementation is not a one-time activity. The organization has to demonstrate continual improvement. The standard also expects an organization to implement security as per the principles of ‘defense in depth’. There should be multiple layers of controls. This requires a careful assessment of all the risks that the organization may face.

Information risk assessment is the cornerstone of successful ISMS.  It involves identification of various threats to information, the vulnerabilities of information assets and realistic evaluation of various risks. The risk assessment leads to ranking various risks and management decision, whether to reduce, transfer, accept or avoid the risks. The risk management decisions are implemented by selecting appropriate controls from ISO 27001 and various information security policies and procedures are developed to implement these controls.

The workshop takes the participants through the entire ISMS implementation methodology through a step by step approach. The workshop revolves around a case study. Participants are encouraged to actively participate in addressing the information security challenges described in the case study.

The workshop is planned in 8 sessions, each of one and half hour. The topics covered in these sessions are as below:

Day 1		Day 2
Session 1	1.Introduction 2.Terms and Definitions 3.Things around ISMS	Session 1	10.Communications and Operations Management
Session 2	4. Putting ISMS in place	Session 2	11.Access Control
Session 3	5.Security Policy 6.IS Organization 7.Asset Management	Session 3	12.System Development and Maintenance 13.Incident Management
Session 4	8.Human Resources 9.Physical and Environmental Security	Session 4	14.Business Cont Management 15.Compliance

 

The workshop will be beneficial for participants interested in pursuing the ISO 27001 certification for their organizations. The experience will help them in assessing the current level of information security within the organization. It will provide a clear direction towards establishing, managing and maintaining an effective Information Security Management System leading to certification.

The workshop will also be useful for participants who wish to understand the concepts and requirements of ISO27001.

The workshop will be conducted in an interactive environment providing greater scope for discussions and practice. Emphasis will be on a highly participative style of learning through lectures, group discussions and exercises based on the case study.

CERT TRANSITS Workshop:

The workshop aims to develop the knowledge and skills that are needed by staff who are members of a Computer Incident Response Team, or who will be involved in building such a team within their organization. The workshop deals with the operational, organizational and legal aspects of incident response. The two days workshop will be presented by members of FIRST organization (Forum of Incident Response and Security Teams).

ISF Executive Briefing

* Managing the Complexity of Security--Hints and Tips from the Front Line
* Assessing and Reducing Business Risk
* Where Is the Pain? (an interactive discussion of your hot topics, e.g.,virtualization, DRM, data eakage, SoX and EuroSoX compliance, and new and emerging threats. Your priorities will drive this discussion.)

Join us to learn the results of ISF research performed with and for its 300+ global members to determine best practices and develop solutions for both the new and the nagging problems every large organization faces.

Take home a free copy of the 2007 ISF Standard of Good Practice. Receive a summary of the discussions at all 12 of the Executive Briefings scheduled for Toronto, Atlanta, New York, Chicago, Charlotte, Munich, London, Madrid, Paris, Mexico City, Sharjah(UAE) and Mumbai

Identity Lifecycle Management using CA Identity and Access Management solution

The challenges facing those who manage and support IT users have never been greater than they are in the current business environment. Today’s IT manager needs to consider that organizations have employees joining and leaving at a rapid rate, and that current employees rarely remain in one position within the organization for any extended period of time. They continually are changing roles and responsibilities and working cross functionally within the organization, and as such, entitlements need to be provisioned, updated and documented in a dynamic manner that reflects the new realities. Similarly, a constantly changing cast of “non-employee users”—business partners, suppliers, vendors and customers—regularly need to access and utilize an organization’s data and resources. Making the job even more difficult is the looming spectre of regulatory and organization-mandated compliance and reporting protocols. CA Identity Manager along with CA Single Sign-On, CA SiteMinder and CA Access Control delivers on CA's strategic roadmap for a complete, integrated and open identity and access management (IAM) architecture that will empower IT organizations to better manage and secure their environments and successfully cope with increased complexity and a growing number of internal and external end users. It also supports CA's vision to unify and simplify

Bank safely with NBD online banking service

NBD Online is a comprehensive Internet Banking service