SECURE 2010 – Call for Speakers is now open!
11 May 2010 przemek
SECURE is the oldest IT security conference in Poland, serving as a forum for discussion about current computer and network security problems. Organized by CERT Polska, SECURE is targeted primarily at IT administrators, security officers and security practicioners. CERT Polska, a team experienced with incident handling and coordination, focuses the conference on practical technical solutions, current trends in attacks, threats and their mitigation, as well as legal aspects of data security, making the event a great meeting place for security experts. Participants of the conference gain access to up-to-date knowledge, as well as a chance for experience sharing and networking opportunities.
SECURE 2010 will be held on October 25-27 at Adgar Conference Center in Warsaw, Poland, focused around three main tracks:
- technical – practical aspects of implementation and integration of security solutions
- organizational – new trends in attacks, threats and their mitigation
- legal
This year, the conference will experience a face-lifting, involving introduction of lightning talks – short speeches or presentations about almost anything that bothers the participants in IT security world.
Lightning talks
We encourage participants of SECURE to share their thoughts. One of the conference blocks will include lightning talks, allowing everyone to talk briefly about their projects, works, ideas or problems. Everything goes, as long as it touches IT security.
Important facts about lightning talks
- maximum time for a talk is 5 minutes and total time for all talks will be limited
- application for a lightning talk can be submitted anytime after registration for the conference; this can be done early, by sending an email to: cfp@secure.edu.pl, or at the conference
- the organizers reserve the right to refuse any lightning talk application
Full presentations
We are looking for speakers willing deliver a talk covering one or more of the following subjects:
- malware analysis, including viruses, worms and botnets
- monitoring of network threats
- intrusion detection
- new applications of honeypots
- visualization of security events
- early warning against network threats
- computer security incident handling
- standards for security and incident information exchange
- new attacks, threats and mitigation techniques
- evaluation of the effectiveness of open source tools
- online identity protection
- threats from user-generated content
- human factor in computer and network security
- Polish and European law in regards to computer and information security
- law enforcement tasks in regards to computer and information security
- research projects in the area of computer and information security
- international cooperation in the area of computer and information security
- public-private partnership in the area of computer and information security
Important facts about full presentations
- proposals for presentations should be submitted via email to cfp@secure.edu.pl and should include the title of presentation, its abstract and short bio of the author, mentioning former conference talks where applicable.
- time for presentation: 45 minutes, including q&a
- commercial presentations will not be accepted
- all materials should be submitted in one of the following formats: OpenOffice, Microsoft Office, PDF
- slides of the presentations will be distributed to the participants electronically
- authors of accepted proposals will be given the full conference package (excl. workshops, 1 package per presentation)
- important dates:
- proposal submission deadline: 30 June 2010
- acceptance notice: 19 July 2010
- submission due: 11 October 2010
Wraz ze wzrostem zainfekowanych stron internetowych pojawiają się również narzędzia służące do identyfikacji oraz analizy złośliwego kodu. Potrafią one wydobywać kod (głównie JavaScript, ale także VBScript) z dokumentów HTML i PDF oraz z animacji Flash. Następnie, w badanym kodzie, wyszukiwane są exploity. Mogą to być standardowe przepełnienia bufora jak i pływające ramki pobierające szkodliwy program, czy automatyczne przekierowania do złośliwych stron. Do takich narzędzi należą min. PhoneyC, jsunpack oraz wepawet.
Zespół CERT Polska opublikował raport podsumowujący rok 2009.
