Speakers & Organizers   

www.0x52.net Biography
Jamie Reid's Toronto based security consulting practice is the culmination of a decade long career in the IT security field. His practice focuses on the security of emerging technologies and providing advice, research, and development services to firms with advanced security products and services.

His professional career has included time with the Information Protection Centre for the Government of Ontario, Guardent, and management of the vulnerability reserach team at nCircle, along with Unix systems, backbone operations and security for early Canadian Internet service providers such as UUNet, among others.

As a consultant, Mr. Reid's clients have been a diverse international group of private and public sector firms and organizations, for whom he provided network intrusion and intrusion detection R&D services, whose common need has been that they required someone with expertise in the "Unknown unknowns" that affect their network.

---

Session TE1: Information Warfare
February 18, 9:00 - 9:45 Lessons and Evidence for the Real World from Network intrusion Detection and Computer Security
Abstract:
Analogies from network security for the real world. The Internet has provided us with a giant lab in which to test different approaches to security. From behavioral profiling, to traffic analysis, systems and statistical analysis, to gamesmanship, each of these has had advantages and limitations that might also apply in the real world. Mr. Reid will describe the problems that computer security technologies are solving, the approaches taken so far, the limitations in their approaches, and open questions about how well they work. Topics covered will include Intrusion Detection and Prevention systems, Dealing with polymorphism in attacks, Honeynets, Vulnerability Management, and Advanced Attack Tools and techniques, what we are going to do about them, and how some of the problems we've encountered on the network might be showing up in the real world. The purpose of this talk to provide some common ground for technologists and policy makers, who may be solving the same problems, in only slightly different forms."