Favorite
0 Like
Facebook
Tweet This
Print

What Could it Hurt: How Framework and Library Dependence is Weakening Our Development

Tuesday, May 8

10:30 AM - 11:05 AM

Location: Bellagio

Speaker(s)

Kevin Johnson

CEO
Secure Ideas

When we look at the progress things like the OWASP Top 10 and other reports reflect, we may begin to think the fight to secure our systems and applications is well on its way to victory. As we discuss topics like the latest and greatest technology stack and how it implements solutions for our security woes, are we sure we understand what we are being protected from and how it is doing that?

In this presentation, Kevin Johnson of Secure Ideas will discuss how security works, why we do the things we do and where platforms and libraries can be both good and bad. This will be done through a series of real-world examples directly from his testing and assessment of modern applications and the SDLC. Attendees will be able to understand where it is important to understand fundamental security and technology topics and how to safely lean on the shoulders of others to improve everything.

213 Views

Favorite
0 Like
Print

Kevin Johnson

CEO
Secure Ideas

Kevin has performed a large number of trainings, briefings and presentations for both public events and internal trainings. He is the author of three SANS Institute classes: SEC542: Web Application Penetration Testing and Ethical Hacking, SEC642: Advanced Web Application Penetration Testing and SEC571: Mobile Device Security. Kevin has also presented at a large number of conventions, meetings and industry events. Some examples of these are: DerbyCon, ShmooCon, DEFCON, Blackhat, ISACA, Infragard and ISSA.

Kevin is also very involved in the open source community. He runs a number of open source projects. These include SamuraiWTF; a web pen-testing environment, Laudanum; a collection of injectable web payloads, Yokoso; an infrastructure fingerprinting project and a number of others. Kevin is also involved in MobiSec and SH5ARK. Kevin was the founder and lead of the BASE project for Snort before transitioning that to another developer.

In his free time, Kevin enjoys spending time with his family and is an avid Star Wars fan and member of the 501st Legion (Star Wars charity group).

Presentation(s):

What Could it Hurt: How Framework and Library Dependence is Weakening Our Development
Tuesday, May 8
10:30 AM – 11:05 AM

213 Views

Send Email for Kevin Johnson

Subject

Body

Normal text
Bold Italic Underline

<h1>  shared a speaker with you!</h1><div><b>Name:</b> Kevin Johnson</div><div><b>Organization:</b> Secure Ideas</div><div><b>Position:</b> CEO</div><div><b>Bio:</b> Kevin has performed a large number of trainings, briefings and presentations for both public events and internal trainings. He is the author of three SANS Institute classes: SEC542: Web Application Penetration Testing and Ethical Hacking, SEC642: Advanced Web Application Penetration Testing and SEC571: Mobile Device Security. Kevin has also presented at a large number of conventions, meetings and industry events. Some examples of these are: DerbyCon, ShmooCon, DEFCON, Blackhat, ISACA, Infragard and ISSA.

Kevin is also very involved in the open source community. He runs a number of open source projects. These include SamuraiWTF; a web pen-testing environment, Laudanum; a collection of injectable web payloads, Yokoso; an infrastructure fingerprinting project and a number of others. Kevin is also involved in MobiSec and SH5ARK. Kevin was the founder and lead of the BASE project for Snort before transitioning that to another developer.

In his free time, Kevin enjoys spending time with his family and is an avid Star Wars fan and member of the 501st Legion (Star Wars charity group).</div>

Assets