Europe 2012
9-11 October
Hilton London Metropole
United Kingdom
Events in Crypto Commons
Crypto Commons – formerly Conference Central – is the exciting, new hub of RSA Conference Europe. Redesigned and rejuvenated with Delegate needs in mind, this hub featured new experiences to maximise educational and networking opportunities. Conference-goers also had access to free WiFi to catch up on email and plenty of space to sit back and relax.
Author's Studio
Hear from renowned authors of information security literature – including both fact and fiction – during the all-new Author’s Studio sessions. We will pose some initial questions and then it is your turn to ask what’s on your mind. Join us for these insightful 30-minute interviews.
AUTH-107 - We Are Anonymous: Inside the Hacker World of LulzSec, Anonymous, and the Global Cyber Insurgency »
| Session Title: | We Are Anonymous: Inside the Hacker World of LulzSec, Anonymous, and the Global Cyber Insurgency |
| Type: | Author's Studio |
| Author: | Parmy Olson |
| Time: | Tuesday, 9 October, 14.30 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Inside the Hacker World of LulzSec, Anonymous, and the Global Cyber Insurgency. This is the first full account of how a loosely assembled group of hackers scattered across the globe formed a new kind of insurgency, seized headlines, and tortured the feds-and the ultimate betrayal that would eventually bring them down. Parmy Olson draws upon hundreds of conversations with the hackers themselves. |
AUTH-207 - Liars and Outliers: Enabling the Trust that Society Needs to Thrive (Schneier) »
Securing the Virtual Environment: How to Defend the Enterprise Against Attack (Ottenheimer) »
Securing the Virtual Environment: How to Defend the Enterprise Against Attack (Ottenheimer) »
| Session Title: | Liars and Outliers: Enabling the Trust that Society Needs to Thrive (Schneier) » Securing the Virtual Environment: How to Defend the Enterprise Against Attack (Ottenheimer) |
| Type: | Author's Studio |
| Author: | Bruce Schneier, Chief Technology Security Officer, BT Davi Ottenheimer, President, flyingpenguin |
| Time: | Wednesday, 10 October, 13.10 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Two authors interview each other! Liars and Outliers: Schneier weaves together ideas from across the social and biological sciences to explain how society induces trust. Securing the Virtual Environment: A step-by-step guide to identifying and defending against attacks on the virtual environment. |
AUTH-209 - DarkMarket: How Hackers Became the New Mafia »
| Session Title: | DarkMarket: How Hackers Became the New Mafia |
| Type: | Author's Studio |
| Author: | Misha Glenny, Author and Journalist |
| Time: | Wednesday, 10 October, 15.30 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Misha Glenny explores the three fundamental threats facing us in the twenty-first century: cybercrime, cyberwarfare and cyberindustrial espionage. Governments and the private sector are losing billions of dollars each year fighting an ever-morphing, often invisible and often supersmart new breed of criminal: the hacker. |
AUTH-300 - Hacking Exposed 7: Network Security Secrets & Solutions, Seventh Edition »
| Session Title: | Hacking Exposed 7: Network Security Secrets & Solutions, Seventh Edition |
| Type: | Author's Studio |
| Speaker: | Stuart McClure, CEO and President, Cylance, Inc |
| Time: | Tuesday, 9 October, 9.30 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | A fully updated edition of Hacking Exposed is filled with all-new information on today's most devastating attacks and proven countermeasures. The book covers: advanced persistent threats; infrastructure hacks; industrial automation and embedded devices; wireless security; the new SCADA protocol hacks; Microsoft Windows Server 2010; Web 2.0; Ubuntu Linux; hardware; Cisco; RFID; malware; and more! |
Book Signings
Stop by the Crypto Commons book shop to pick up the latest infosec titles at discounted rates while meeting the authors themselves at exclusive speaker book signings.
Tuesday, 9th October
13.00 hrs – ISO27001 in a Windows® Environment, Brian Honan
14.00 hrs – Ipv6 Security, Eric Vyncke
15.00 hrs – Web Commerce Secruity: Design and Development, Hadi Nahari
Wednesday, 10th October
12.00 hrs – Hacking Exposed 7: Network Security Secrets & Solutions, Seventh Edition, Stuart McClure
14.00 hrs – Liars and Outliers: Enabling the Trust that Society Needs to Thrive, Bruce Schneier
14.00 hrs – Securing the Virtual Environment: How to Defend the Enterprise Against Attack, Davi Ottenheimer
15.00 hrs – PCI Compliance, Third Edition, Branden Williams
16.00 hrs – Dark Market: Cyberthieves, Cybercops and You, Misha Glenny
Thursday, 11th October
10.00 hrs – Cybercrime and Espionage: An Analysis of Subversive Multi-Vector Threats, Will Gragido
Evening Reception | Tuesday, 10th October |
16:30 – 19:00 hrs
Meet and mingle with your fellow information security professionals and our sponsors over drinks and hors d'oeuvres at the Welcome Reception in Crypto Commons.
Flash Talks Powered by PechaKucha | Tuesday, 10th October | | 
|
PechaKucha (PK) events were devised in Tokyo in 2003. Drawing its name from the Japanese term for the sound of "chit chat", PK rests on a presentation format that is based on a simple idea: 20 images x 20 seconds (total presentation length – 6 minutes, 40 seconds). PK events are fast-paced to keep interest levels high. Witness high-energy presentations, like you've never seen before, from some of the biggest names in the industry.
Speakers:
- Toby Stevens, Director, pixIDust Limited
- Wolfgang Kandek, CTO, Qualys, Inc.
- Eddie Schwartz, CISO, RSA
- Hugh Thompson, Programme Committee Chairman, RSA Conference
Interact with Conference Sponsors
The success of RSA Conference Europe is largely thanks to the opportunity of learning valuable business solutions - many of which come from our sponsors. Your time spent in Crypto Commons is sure to be more meaningful after you visit our Silver, Gold, Diamond and Platinum sponsors on Tuesday, Wednesday or Thursday.
Lunch and Learn Keynotes
Join us for the closing of Crypto Commons on Thursday and listen to security pundits in our keynote sessions. Don’t forget to grab your lunch!
LLK-305: Rock Your Communications with HTML5 WebSocket - Secure! »
| Session Title: | Rock Your Communications with HTML5 WebSocket - Secure! |
| Type: | Lunch & Learn Keynote |
| Speaker: | Aidan Gogarty, Technology Evangelist, HOB, Inc. |
| Time: | Thursday, 11 October, 12.00 – 12.30 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Ensuring secure communication via the internet is key to all companies. New technologies offer interactive communication possibilities, having the power to rock your web experience. But are they still as secure as you need them to be? How will this technology impact your business applications? Deep insight into the pro's and con's will show where your business can profit. |
LLK-306: The Rise of Creativity in Cyber Security »
| Session Title: | The Rise of Creativity in Cyber Security |
| Type: | Lunch & Learn Keynotes |
| Speaker: | Mark Seward, Senior Director, Security and Compliance, Splunk Inc. |
| Time: | Thursday 11 October, 12.30 – 13.00 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | As cyber attackers have gotten more creative, most security vendors still lack understanding of the behaviour of people or machines to monitor for activities that circumvent traditional cyber defenses. Find out how big data technology that scales, is data-type and structure agnostic, and has analytics and statistical analysis capabilities is enabling the security professional to get creative too. |
| Speaker Bio: | Mark Seward is currently Senior Director of Marketing for Security & Compliance at Splunk, Inc., based in San Francisco Bay, a position he has held since December 2009. Prior to this, Mark was Director of Product Management at LogLogic where he was responsible for application logging, device supportability, and the Lasso Windows log aggregation solution. Before this, Mark spent nearly four years as Director Product Marketing at QualysGuard and APIs/Integrations and was responsible for the QualysGuard Vulnerability Management software as a service (SaaS) offering, the compliance service module and associated road maps in an agile development process; as well as analysis and mapping of compliance standards for adding system configuration checks to the service. |
LLK-307: Testing Darwinism: The History and Evolution of Network Resiliency »
| Session Title: | Testing Darwinism: The History and Evolution of Network Resiliency |
| Type: | Lunch & Learn Keynotes |
| Speaker: | Michael Hamilton, Director, Global Systems Engineering, BreakingPoint Systems, Inc. |
| Time: | Thursday 11 October, 13.00 – 13.30hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Ensuring network security, performance, and reliability must be a key corporate objective. The history of resiliency testing is explored in an effort to understand how network security has evolved into what it is today and why it needs to continue to evolve. Industry case studies and real-world test results will be used to highlight examples of organizations that are the fittest for survival. |
| Speaker Bio: | Mike Hamilton currently sits on the benchmarking methodology working group for the Internet Engineering Task Force (IETF) and serves as the Director of Systems Engineering at BreakingPoint Systems. Hamilton manages a global sales engineering team and works directly with organizations to help them harden and optimize the resiliency of networks against attack and high-stress application load. Hamilton’s experience provides unique insight into industry best practices for network device performance and cybersecurity. |
Product Shout-Outs, Company Spotlights, and Elevator Pitches
Hear from our sponsors in a variety of different formats throughout the Conference about what’s new and happening with their solutions and products. This is a great opportunity for Delegates to network with the RSA Conference Europe 2012 Sponsors!
Product Shout-Outs
PRD-100: HOB, the company and their core products for global secure remote access »
| Session Title: | HOB, the Company and Their Core Products for Global Secure Remote Access |
| Type: | Product Shout-Out |
| Speaker: | Siegfried Plommer, Director of International Sales, HOB Inc. |
| Time: | Tuesday 9 October, 12.30 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | A brief introduction to HOB and the company's most innovative secure remote access products. This presentation will outline the growing importance of secure remote connectivity in today's global markets. It will also highlight the trend towards using, and securing, mobile devices in order to enhance productivity & profitability. |
PRD-101: BYOD vs. Choose Your Own Device & the tools for success? »
| Session Title: | BYOD vs. Choose Your Own Device & the tools for success? |
| Type: | Product Shout-Out |
| Speaker: | Christian Brindley, Senior Principal Systems Engineer, Symantec Corporation |
| Time: | Tuesday, 9 October, 15.00 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Allowing consumer devices in the workplace can provide benefits to the business. Hear a fresh perspective and see how Symantec can help you achieve this. Step 1 - Gain device visibility & control natively. How to onboard devices and provision policies, applications and content. Step 2 - Enable collaboration. How to control access and information sharing to external infrastructures such as the cloud. |
PRD-200: Big data: Nought to Sixty in 5 Minutes »
| Session Title: | Big Data: Nought to Sixty in 5 Minutes |
| Type: | Product Shout-Out |
| Speaker: | DJ Skillman , Technical Services Director, EMEA, Splunk Inc. |
| Time: | Wednesday 10 October, 15.00 hrs |
| Room: | Crypto Commons |
| Abstract: | See how quickly you can raw data into actionable insight with Splunk, the first big data system for security. We will demonstrate the ease of building reports and dashboard visualisations to monitor network, host, and application behaviours in a contextual way, across all IT data, to understand the depth and breadth of persistent malware in the IT environment. |
PRD-300 - Ensure IT Resiliency with Actionable Security Intelligence »
| Session Title: | Ensure IT Resiliency with Actionable Security Intelligence |
| Type: | Product Shout-Out |
| Speaker: | Scott Register, Director of Product Management, BreakingPoint Systems, Inc. |
| Time: | Thursday, 11 October, 09.30 hrs |
| Room: | Crypto Commons |
| Abstract: | The Ultimate Insight into the performance and security of IT infrastructures in real-world scenarios is a challenge, because of a lack of visibility. As the ultimate “what if” tool, BreakingPoint's Actionable Security Intelligence solutions allow you to predict and prevent what will happen to your applications, network or data center when they are subjected to extreme user load, a new applications, or attacks. |
Company Spotlights
COS-108C - Reality Check: 3D View of your Security Stance »
| Session Title: | Reality Check: 3D View of your Security Stance |
| Type: | Company Spotlight |
| Speaker: | Ian Porteous, Security Engineering Leader |
| Time: | Tuesday, 9 October, 17.10 hrs |
| Room: | Crypto Commons |
| Abstract: | How do you establish your security priorities, when you’re unsure of which threats are targeting your business? This session will show you how to get a comprehensive, 3D view of your current security stance. This session not only highlights vulnerabilities and any existing threats, but also sets priorities for your business security strategy. |
COS-108D - Informatica Data Privacy – How to Mitigate Risk and Make the Business Case »
| Session Title: | Informatica Data Privacy – How to Mitigate Risk and Make the Business Case |
| Type: | Company Spotlight |
| Speaker: | Karen Hsu, Director Product Marketing, Informatica |
| Time: | Tuesday, 9 October, 17.30 hrs |
| Room: | Crypto Commons |
| Abstract: | In this session you will hear how Informatica customers have made the business case and benefited from a data privacy solution. You’ll hear about best practices to define and classify sensitive data, as well as identify where sensitive data lives across applications and databases. Also you’ll learn how to create data subsets and create global data protection rules across systems, and measure, monitor, and show compliance with data security. |
COS-108E - Securing the Desktop with Micro-virtualization »
| Session Title: | Securing the Desktop with Micro-virtualization |
| Type: | Company Spotlight |
| Speaker: | Ian Pratt, Co–founder & SVP of Products, Bromium |
| Time: | Tuesday, 9 October, 17.50 hrs |
| Room: | Crypto Commons |
| Abstract: | Bromium presents a powerful new technology known as micro-virtualization that prevents zero-days and polymorphic malware from compromising the endpoint. The innovation relies on a new way to use hardware virtualization to achieve light-weight isolation of execution — at the application task level. Micro-virtualization ensures that insecure code and data are unable to subvert operating systems. |
COS-108F: Cabinet Office, Government Digital Service, Identity Assurance Programme »
| Session Title: | Cabinet Office, Government Digital Service, Identity Assurance Programme |
| Type: | Company Spotlight |
| Speaker: | Chris Ferguson, Deputy Director, Identity Assurance, Cabinet Office, Government Digital Service |
| Time: | Tuesday, 9 October, 18.10 PM |
| Room: | Crypto Commons |
| Abstract: | The Identity Assurance Programme is developing a pan-govt ecosystem for assuring the identity of users accessing online govt services through simple and secure mechanisms. Focus areas include: design (technical architecture); legal and policy; market development; standards and certification; and, the engagement of key stakeholders inc. privacy interest groups. |
COS-108G - Your Indiscriminate Data »
| Session Title: | Your Indiscriminate Data |
| Type: | Company Spotlight |
| Speaker: | Andy Kahl, Senior Product Manager, Evidon, Inc. |
| Time: | Tuesday, 9 October, 18.30 hrs |
| Room: | Crypto Commons |
| Abstract: | Under your watchful and loving eye, your site has been crafted for a particular audience. Your cultivation rewards you with a set of user data that can monetize your labor of love. But your data doesn't share your devotion - it's eager to share itself with any script that finds its way on your page. How promiscuous is your data? Evidon and Ghostery can show you, and counsel you back to fidelity. |
COS-201A: Hacker Interrupted: Preventing Hackers on Your Website Using Deception »
| Session Title: | Hacker Interrupted: Preventing Hackers on Your Website Using Deception |
| Type: | Company Spotlight |
| Speaker: | Adam Hoydysh, Director Sales, Mykonos Software, a Juniper Networks Company |
| Time: | Wednesday, 10 October, 09:00 hrs |
| Room: | Crypto Commons |
| Abstract: | How would you know if you had a hacker on your website right now? Mykonos Web Security uses a new technique called Intrusion Deception. This presentation will show you:
|
COS-201B: Phishing Your Employees: Lessons Learned from Phishing Over 3.5 Million People »
| Session Title: | Phishing your employees: Lessons learned from phishing over 3.5 million people |
| Type: | Company Spotlight |
| Speaker: | Jim Hansen, Vice President, PhishMe, Inc. |
| Time: | Wednesday, 10 October, 09.20 hrs |
| Room: | Crypto Commons |
| Abstract: | Phishing has been used to break into the world's largest companies and organizations to compromise their intellectual property. Technical controls presented as silver bullets provide false hope and a false sense of security to employees, promoting dangerous behaviors. Learn how to build a scalable and effective program to educate your staff and change behavior from experts at PhishMe. |
COS-201C: Evolve or Lose »
| Session Title: | Evolve or Lose |
| Type: | Company Spotlight |
| Speaker: | Mike Maddison, Head of Cyber Security in EMEA, Deloitte |
| Time: | Wednesday, 10 October, 9.40 hrs |
| Room: | Crypto Commons |
| Abstract: | Deloitte's Cyber Defence Methodology- Prepare: commit resources to prepare for and respond to an attack; Aware: identify/predict what the targets and mechanisms of attacks are; Respond: be ready to respond to threat intel or an attack, limit damage and investigate/capture evidence. Hear how we are helping clients and what we are doing with the World Economic Forum to raise awareness of cyber at Board-level. |
Security Cinema: We Are Legion: The Story of the Hacktivists | Wednesday, 10th October | 19:00 hrs
Security Cinema will be a fun evening to kick back, mingle with your peers, and enjoy a great flick. We Are Legion: The Story of the Hacktivists is a documentary that takes us inside the world of Anonymous, the radical "hacktivist" collective that has redefined civil disobedience for the digital age. The film explores the historical roots of early hacktivist groups and then follows Anonymous to a full-blown movement with a global reach.
Produced and directed by Brian Knappenberger
Security Debates
Security experts will discuss both sides of key challenges currently being faced in information security during these spirited debates. Guaranteed to deliver lively discussion and friendly disagreement, the Security Debates will feature an action-packed topic with security pundits.
DEB-106: Should you train employees on Security Awareness? »
| Session Title: | Should You Train Employees on Security Awareness? |
| Type: | Debate |
| Panelists: | Thom Langford, Director Global Security Office, Sapient Christian Toon, European Head of Information Risk, Iron Mountain Europe Javvad Malik, Senior Security Analyst, 451 Research Rowenna Fielding, Information Security Manager, Alzheimer's Society Kai Roer, Senior partner, The Roer Group Geordie Stewart, Principle Consultant, Risk Intelligence |
| Time: | Tuesday, 9 October, 13.10 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Training your staff in security awareness is an accepted and often mandated requirement of compliance in any organisation. Its effectiveness however has been increasingly questioned and its limitations highlighted. The Acumin Risk and Network Threat (RANT) community brings together six thought leaders from across Europe to debate the conflicting and opposing views of this challenging topic. |
DEB-208: Will Accredited Private Sector Organisations Provide Better Identity Services Than Governments? »
| Session Title: | Will Accredited Private Sector Organisations Provide Better Identity Services Than Governments? |
| Type: | Debate |
| Time: | Wednesday 10 October, 14.10 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | This debate will help illustrate the different roles that are played by governments and private sector organisations in the field of identity services. This debate will help to highlight areas where the public and private sector compete on identity services and where they can potentially cooperate to provide the user with a better service. |
Town Hall
Join others in the RSA Conference community for informal Town Hall sessions in the Crypto Commons Theatre. Sessions include ENISA discussing Cloud Security, and Akamai and Qualys joining forces to discuss Industry Hot Topics.
TWN-201: ENISA's Work on Cloud Security and Cyber Exercises »
| Session Title: | ENISA's Work on Cloud Security and Cyber Exercises |
| Type: | Town Hall |
| Speaker: | Marnix Dekker, Security Expert and Information Security Officer, ENISA Razvan Gavrila , NIS Expert, ENISA |
| Time: | Wednesday 10 October, 09.00 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Marnix Dekker will present ENISA's work on cloud security (risk assessments for SMEs and government agencies). He will also discuss ENISA's latest work on secure procurement and SLAs. Razvan Garvila will present good practices on organising cyber exercises, the exercise life-cycle and the actions needed during each step. He will illustrate this with two case studies: Cyber Europe 2010 and Cyber Atlantic 2011. |
TWN-206: Industry Hot Topics – Exposed and Dissected »
| Session Title: | Industry Hot Topics – Exposed and Dissected |
| Type: | Town Hall |
| Moderator: | Hugh Thompson, Programme Committee Chairman, RSA Conference |
| Panelists: | Wolfgang Kandek, CTO, Qualys, Inc. Joshua Corman, Director, Security Intelligence, Akamai Technologies |
| Time: | Wednesday 10 October, 12.10 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Hacktivism. APTs. Mobile malware. Analytics. Offensive security. Nothing is off the table in this fast-paced and highly interactive panel as we explore the hottest topics in information security. Hugh Thompson hosts a discussion with Wolfgang Kandek, CTO at Qualys, and Josh Corman, Director of Security Intelligence at Akamai, and you, the audience. |
UK Government Lunch Session
Join the UK Cabinet Office's Government Digital Service for an informative session to learn how they are developing a pan-Government model for identity assurance.
SEM-105 - UK Government Identity Assurance Programme – Easier Done than Said »
| Session Title: | UK Government Identity Assurance Programme - Easier Done than Said |
| Type: | Seminar |
| Speaker: | Stephen Dunn, Lead Architect, ID Assurance Programme, Government Digital Service Mike Pegman, Lead Security Architect - Universal Credit, DWP. |
| Time: | Tuesday, 9 October, 12.10 hrs |
| Room: | Crypto Commons Theatre |
| Abstract: | Cabinet Office's Government Digital Service is developing a pan-Government model for identity assurance through a series of 'alpha' projects. This session will describe the approach with focus on one of the alpha projects. |
Mark your calendars for RSA Conference Europe 2013 taking place in Amsterdam from 29th to 31st October.
Continue to Learn, Share and Connect
Visit us at "Where the World Talks Security", and continue the conversation. Share information and best practices and network with your peers. Get the latest news, podcasts, webinars and blogs.
About RSA Conference
Contact RSA Conference
Registration (Toll Free): 1-866-397-5093
Toll (outside of U.S.): 1-801-523-6530
2013 Global Sponsors
