Master Class: The Latest Vulnerabilities

vulWhy?

Ever wondered what really lies behind major computer vulnerabilities such as Webview, Logjam, Crypolocker, FREAK, Heartbleed and ShellShock, and how they really work? Well this is the event for you … and hosted by the UK University Cipher Cracking winner in 2015 … Charley‎ Celice.

Event

The Cyber Academy and ENUSEC> are hosting a Master Class on the latest vulnerabilities on Tuesday 10 November 2015 in the  Glass Room at Merchiston, Edinburgh Napier University from 1pm until 4pm. It is free to attend and will demonstrate some of the latest vulnerabilities including WebView, ShellShock, Heartbleed, StageFright, FREAK, Logjam, Cryptolocker, and others.

Stage Fright is one of the most recent vulnerabilities and allow a malicious agent access to a device by sending a video or audio file to the target. At present, too, WebView affects over one billion Android devices around the World, and can allow remote access to a mobile device. Your Apple Mac is also not immune from vulnerabilities, and the event will showcase ShellShock which affects Linux-based systems.

It focuses on practical demonstrations, and aims to showcase how a range of devices are vulnerable and how they can be protected.

Booking

The event is free, and open to all.

Programme

Date: Tuesday 10 Nov 2015. Time: 12:45pm-4pm. Location: Glass Room, Merchiston, Edinburgh Napier University.

12:45pm-1pm Arrival
1-1:10pm Introduction. Charley Celice.
1:10pm-1:40pm David Stubley, Log Analysis.
1:40pm-2:10pm Alexandre Arbelet, Shell Shock.
2:10pm-2:40pm Bill Buchanan, WebView and Logjam.
2:40pm-3:10pm Peter Aaby, Stagefright.
3:10pm-3:30pm Refreshments
3:30pm-4pm Charley Celice, Heartbleed.
Conclusion.

Presenters

Charley Celice
Researcher
Charley has been a student at Edinburgh Napier University starting in 2010, graduating with a 1st Class Honours degree in Computer Security and Digital Forensics, followed by an M.Sc. degree in Advanced Security and Digital Forensics with Distinction. He thoroughly enjoys challenges, particularly ciphers and CTF hacking exercises, and has won competition awards such as the recent Universally Cyber Security Challenge UK. He is now a PhD Candidate in Cyber Security at the Centre for Distributed Computing, Networking and Security at Napier University, researching new ways of detecting and proactively countering malware and zero-days threats, with the ambition of becoming a world renown expert in this field. Charley is also the funder and current President of the newly created ENU Cyber Security Society, which thrives to gather students around topics such as penetration testing, hardware security, and digital forensics.
Peter Aaby
Student, ENU
Peter has 7 years of technical experience setting up corporate and campus network infrastructure during employment as an IT technician. Three years ago Peter decided to commence his studies and was rewarded for his good fellowship amongst students at Business Academy Aarhus together with excellent grades for his final internship project at Bankdata 2014. Since then he has accelerated through third year of BEng(Hons) Computer Security and Forensics where he enjoyed playing with ciphers and was part of the winning team in the UK University Cipher Challenge 2015. Peter is also the co-founder of ENU Cyber Security Society with the core role of engaging students socially around academic topics such as penetration testing, hardware security and digital forensics.
David Stubley
CEO, 7elements
Founder of 7 Elements, David brings over 15 years of experience within the technical security market, where he has gained a wealth of knowledge and expertise through the delivery of security testing and in the provision of technical expertise to high profile incidents. He has performed key roles in security programmes, aligning a risk managed security approach and business risk appetites across multiple business functions in order to provide pragmatic security solutions for regulatory requirements. David has also devised bespoke risk assessment methodologies for a number of security projects, including technical and business risk assessments aimed at understanding the risk profile for a multinational organisation, and has developed a new thematic for resilient information security assurance. His specialist skill is bridging the gap between technical teams, senior management and C-level executives, to improve the understanding, use and development of security testing. As such, he has recently taken on the role of Strategic Cyber Security Advisor to the Scottish Government's Resiliency Advisory Board.
Bill Buchanan
Professor, The Cyber Academy
Bill is a Professor in the School of Computing at Edinburgh Napier University, and a Fellow of the BCS and the IET. He currently leads The Cyber Academy and is involved in research and teaching in the areas of security, e-Health, Cloud Security, Web-based infrastructures, e-Crime, cryptography, triage, intrusion detection systems, and many other areas. Bill has an extensive background in innovation and research, with two successful spin-out companies, along with developing some of the most extensive Web sites in education. He also has won many teaching and innovation awards including being voted as most innovative tutor and best tutor in the Edinburgh Napier Excellence Teaching Awards in 2012, 2104 and 2015, and was included in the JISC Top 50 Social Media Influencers on Higher Education. Over the past three years he has also been included in the Tech 100 in Scotland, and has given many keynote speeches at conferences. His work currently involves leading an EU Cyber Security infrastructure for training and innovation.
Alex Arbelet
KTP Associate, Farrpoint
Currently KTP associate and researcher at FarrPoint Ltd, and is investigating new ways to approach intrusion detection using artificial intelligence and bio-inspired computing. He recently graduated with distinction from Edinburgh Napier University with a Master's degree in advanced security and digital forensics, and was also awarded with the school medal in recognition of outstanding achievements in 2014. He is a cyber-security aficionado and participant in the “Cyber Security UK’s University Challenge 2014”.

Questions

If you have any questions on this event, please complete the following:

Your Name (required)
Your Email (required)
Your Organisation
Role
Message (if any)