Programme Overview

Day Zero: Sunday, 23rd May 2004

Golf (From 1300) - Please note that the Golf afternoon is now full.
Free Workshop (1400 - 1600)
Tutorial Stream (1400 - 1730)
Conference Registration and Welcome Cocktail Party (1900 - 2100)

Days One, Two and Three

Key notes/Close note

Clarice Meets The Matrix: The Science of Profiling Takes a Whole New Direction
Max Kilger, Psychologist, Honeynet Project
Forty years of Internet Arms Races
Bill Cheswick, Lumeta
Personal and Corporate Identity Theft: How to Spot and Avoid Today's Common Techniques of Elicitation and Social Engineering?
Chris Pick, Vice-President Security Management, NetIQ
The Internet: What we'd fix if we thought it was broken
Fred Baker, Cisco Fellow, Cisco Systems

Plenary Sessions

2004 Australian Computer Crime and Security Survey Results
Kathryn Kerr, Analysis and Assessments Manager, AusCERT
Alastair MacGibbon, Director of the Australian High Tech Crime Centre
E-Security Policy Developments in Australia
Keith Besgrove, Chief General Manager, Regulation and Analysis, NOIE
Fighting High Tech Crime
Mick Deats, Detective Superintendent, Deputy Head, NHTCU
Honeynets: Detecting Insider Threats
Kirby Kuehl, Honeynet Project
Legal Liability and Security Incident Investigation
Jennifer Stisa Granick, Director of the Center for Internet and Society (CIS), Stanford Law School
Protecting NII
Larry Hale, Deputy Director of the Department of Homeland Security, National Cyber Security Division, Computer Emergency Readiness Team (US-CERT)

Day One: Monday, 24th May 2004

Business Stream
Biometric *In*security
Roger Clarke, Consultant
Building a Computer Forensics Program in a Global Company
Kathy Fithen, Manager of the KO-CIRT and Computer Forensics team at The Coca-Cola Company
Is a 21st Century Australia Card a recipe for increased Identity Fraud?
Malcolm Crompton, Former Federal Privacy Commissioner
Malicious Code Attacks in the 21st Century
Vincent Weafer, Senior Director of Development Symantec Security Response
Security Breaches: Who is responsible
Hamish Fraser, Lawyer, Optus
Security Fatigue: Threatening the Culture of Security
Nick Ellsmore, Director and Principal Consultant of SIFT Pty Ltd
Security Response at Microsoft: Tales from the Trenches
Iain Mulholland, Manager, Microsoft Security Response Center

Technical Stream
Highly Distributed Intrusion Detection Systems and Trust Relationships
Raven Alder, True North Solutions
Honeynets and Honeypots: Companion technology for detection and response
Cristine Hoepers, Senior Security Analyst, NIC BR Security Office (NBSO), Brazilian Computer Emergency Response Team
Passive Network Discovery Systems & Asset-centric Security
Marty Roesch, Founder and CTO, Sourcefire
Stopping MalWare: Has the battlefield changed?
Alex Shipp, Senior Anti Virus Technologist, MessageLabs
The Internet Storm Center in Korea (Internet Forecasting by Monitoring Project)
Arnold Yoon, KRCERT/CC
Why isn't the Internet secure yet, dammit
Peter Gutmann, Researcher, Auckland University
Wireless Security - Don't Bet the Farm Just Yet
Stephen Glass, IBM Tivoli/Griffith University

Sponsors Cocktail Party (1900-2100)

Day Two: Tuesday, 25th May 2004

Business Stream
AS 13335, The New Standard for IT Security?
Rob Siganto, Bridge Point Communications
Comparing Handheld Operating System Security
Eric Chien, Senior Software Engineer Symantec
Corporate Security: A VeriSign Perspective
Ken Silva, Vice President, Networking and Information Security, Verisign
Cyber Threats to Critical Information Infrastructure: Local Case Studies
Zahri Hj Yunos, National ICT Security and Emergency Response Centre (NISER)
Establishing security as a part of the business
John Geurts, General Manager, Group Security, Commonwealth Bank
Exploring Grand Challenges in Trustworthy Computing
Eugene Spafford, Professor, Department of Computer Sciences, Purdue University

Technical Stream
A scalable virus scanning architecture for service provider email gateways
Amar Shrestha, Telstra Corporation Ltd
Log Analysis - How to Be In The Know
Tim Daly, Atos Origin
Network Forensics - Concepts and Tools
Bruce Talbot, CA
Securing passwords over the wire; Implementing proxy digest authentication
Sean Burford, The University of Adelaide
VoIP security
Ofir Arkin, Sys-Security Group
Vulnerability research methodology
Greg Shipley, CTO, Neohapsis

Gala Dinner (1900-2300)

Day Three: Wednesday, 26th May 2004

Business Stream
It's 11 o'clock - Do You Know Where Your Kids Are?
Marcus Sachs, Director of the Internet Storm Center, SANS
New Spam laws: risks and compliance issues?
David Vaile, Executive director, Baker & McKenzie Cyberspace Law and Policy Centre, University of NSW
SCADA Systems Security - Why the IT Security approach might fail!
Andreas Tilch, ISIG
Mark Ames, ISIG
The Cost of Risk - Passing it back to the business
Karl Hanmore, Bank of Queensland

Technical Stream
Advances in security scanning
Renaud Deraison, Director of Research, Tenable Network Security
Are you spamming today?
Matthew Sullivan, The University of Queensland
Email Filtering and Mitigating Circumvention Techniques
Dr Michael Cohen, Senior Technical Adviser
Steven McLeod, Technical Adviser
Microsoft Patch Analysis
Russ Cooper, Surgeon General, TruSecure Corporation; Founder and Moderator of NTBugtraq

Research and Development Stream
Includes presentations on Intrusion Detection, Network and Wireless Security, Attack Detection / Honeynets, Critical Infrastructure Protection, Legal and Regulatory Issues, Intrusion Forensics, Incident Response.

Tutorials

Day Zero: Sunday, 23rd May 2004

Deploying Remote-Access IPSec VPNs
Tony Saunders, Cisco Systems

Day Three: Wednesday, 26th May 2004

Information System Threat & Risk Assessment (ISTRA) - the Vital Precursor to Establishing an Appropriate Security Strategy
Sue Dudley, Victoria Police
Securing your Windows Network (Security advice from the front-line)
Robert Hensing, PSS Security Incident Response Specialist, Microsoft

Day Four: Thursday, 27th May 2004

CANCELLED
Using the APNIC Whois Database to find contacts for the source or target of an attack
Samantha Dickinson, APNIC
Champika Wijayatunga, Senior Training Specialist, APNIC
Applied Information Security Risk Assessment
Gary Gaskell, Infosec Services Pty Ltd
Mark Ames, ICT Risk Pty Ltd
Hacking Techniques and Defensive Measures
Marcus Sachs, Director of the Internet Storm Center, SANS
Incident Response and Intrusion Analysis - Intermediate Level
Dr Michael Cohen, Senior Technical Adviser
Scott MacLeod, Leader
Steven McLeod, Technical Adviser
David Collett, Technical Computer Security Analyst
Steven Stroud, Manager, Technical Services
Introduction to Nessus
Renaud Deraison, Director of Research, Tenable Network Security
Patch Warfare - Losing the battle? How to win the war . . .
Robert Hensing, PSS Security Incident Response Specialist, Microsoft
Wireless Hacking: How to do it and how to avoid it happening to you
Phillip Yialeloglou, Senior Systems Engineer Cisco Systems Australia
Working with Snort
Marty Roesch, Founder and CTO, Sourcefire
Enterprise Incident Response Planning
Robert Hensing, PSS Security Incident Response Specialist, Microsoft

Conference programme information will be updated regularly. Stay tuned!