Click to return home
Site Map  |  Privacy Policy  |  Advisories

About Us

Services

News

Overview
News
Press Releases
Events
Webcasts
Speaking Engagements


Resources

Contact

 
 greybar
Press Release
 greybar
 
August 13, 2009
FOR IMMEDIATE RELEASE		 Contact:
Jennifer Steffens
206.784.4313
marketing@ioactive.com

DAN KAMINSKY SELECTED TO PRESENT AT HACKING AT RANDOM

IOActive's Director of Penetration Testing will discuss flaws in digital certificate technology

Seattle, Wash—August 13, 2009. IOActive, a leading provider of software assurance, compliance and smart grid security services, today announced that Dan Kaminsky, the Director of Penetration Testing, will present x509 is Considered Harmful at the upcoming Hacking at Random (HAR) conference.

Similar to Kaminsky's recent Black Hat presentation, he will discuss authentication bugs discovered in X.509. Approximately 60 percent of attacks are caused by weak or default passwords; X.509 was designed to solve this authentication problem, and businesses have invested significant money in the technology. However, Kaminsky has discovered structural and technical flaws, decreasing the effectiveness of X.509.

WHAT   X.509 is Considered Harmful

WHEN   August 14, 2009. 8:00–9:00 pm.

WHERE   HAR Conference. 't Frusselt 30, 8076 RE Vierhouten, the Netherlands.

HOW   For more information about HAR2009, please visit their website.

About Dan Kaminsky

Dan Kaminsky is the Director of Penetration Testing at IOActive where he specializes in design-level fault analysis, particularly against massive scale network applications. Previously of Cisco and Avaya, Kaminsky has operated professionally in the security space for over ten years. He is well known for his "Black Ops" series of talks at the well-respected Black Hat Briefings. Kaminsky regularly collects detailed data on the health of the worldwide Internet, and used this data to detect the worldwide proliferation of a major rootkit. In 2008, he discovered a major flaw in the Internet's DNS infrastructure and worked with security engineers around the world, protecting countless organizations and individuals against this threat.

About IOActive

IOActive is an industry leader that offers comprehensive security services including software assurance, smart grid security, infrastructure audits, training, incident response, PCI and risk management. Established in 1998 and headquartered in Seattle, with locations around the world, IOActive has attracted many well-known security experts including Dan Kaminsky, Jason Larsen, Steve Wozniak, Wes Brown, Tiller Beauchamp and Ilja van Sprundel. For more information, visit www.ioactive.com.

-###-
 
 greybar

More Information
Need more information?
 Contact IOActive today.


IOActive Profile:
 Established: 1998
Headquarters: Seattle, WA and London, UK
Privately held and self-funded
 
IOActive Services:
 Application Security, SCADA and Smart Grid, PCI and Compliance, Security Development Lifecycle, Infrastructure Audit, Incident Response and Training.
 
Customers:
 Global 500 companies including power and utility, game, hardware, retail, financial, media, travel, aerospace, healthcare, high-tech, social networking, and software development organizations.
 

Visit our Facebook page Visit our Twitter page Visit our LinkedIn page Visit us on Flickr