Program Overview

The FIRST Technical Colloquium (TC) event is restricted to FIRST members only and will be held in Nov 14-16, 2005.

The Vendor SIG Meeting is open to all vendor teams irrespective if the are members of Vendor SIG or FIRST or not. Relevant guests are also welcomed. However, the Vendor SIG forum moderators can use their discretion and refuse participation.

Monday, 14 November

Technical Colloquium - Plenary Session
08:30 – 09:15

Registration, coffee & introductions

09:00 – 09:45

Honeypots for Security Operations

James J. Barlow (NCSA-IRST — National Center for Supercomputing Applications)

09:45 – 10:45
 US

Vulnerability Management : Past, Present and Future

Tom Briglia (ORACERT — Oracle, US)

10:45 – 11:15

Coffee break

11:15 – 12:00
 US

Incident Response : the PSS Approach

Greg Lenti (MSCERT — Microsoft Corporation, US)

12:00 – 12:30
 US

Building an Apache URL Firewall using mod_rewrite

Erik Graversen (ORACERT — Oracle, US)

12:30 – 13:30

Lunch

13:30 – 15:00

Short Updates Session

15:00 – 15:30

Coffee break

15:30 – 16:20

Dealing with Security in Open Source Software

Derrick Scholl (Sun)

16:20 – 16:50
 US

Safeguard Selection: Web Application/Web Services Scanners

Chad Hughes, Eric Veum, Mark Fallon (Oracle, US)

16:50 – 17:30
 GB

PGP Survey and Beyond

Damir (Gaus) Rajnovic (Cisco PSIRT — Cisco Systems Co., GB)

17:30 – 18:00

SC Update & Closing Session

Tuesday, 15 November

Technical Colloquium - Hands-On Classes
09:00 – 11:00
 US

CVSS

Gavin Reid (Cisco Systems); Mike Scheck (Cisco PSIRT, US)

 US

Design your network to aid forensics investigation

Robert Sisk (IBM MSS — IBM Corporation, US)

 US

Introduction to Computer Forensics

Chok Wee, Dr. Uwe Kohler (ORACERT — Oracle, US)

 US

Malware analysis workshop

Steve Romig (OSU-IRT — Ohio State University, US)

11:00 – 11:30

Coffee break

11:30 – 12:30
 US

Design your network to aid forensics investigation

Robert Sisk (IBM MSS — IBM Corporation, US)

 US

Introduction to Computer Forensics

Chok Wee, Dr. Uwe Kohler (ORACERT — Oracle, US)

 US

Malware analysis workshop

Steve Romig (OSU-IRT — Ohio State University, US)

12:30 – 13:30

Lunch

14:00 – 15:00
 US

Design your network to aid forensics investigation

Robert Sisk (IBM MSS — IBM Corporation, US)

 US

Introduction to Computer Forensics

Chok Wee, Dr. Uwe Kohler (ORACERT — Oracle, US)

 US

Malware analysis workshop

Steve Romig (OSU-IRT — Ohio State University, US)

15:00 – 15:30

Coffee break

15:30 – 17:30
 US

CVSS

Gavin Reid (Cisco Systems); Mike Scheck (Cisco PSIRT, US)

 US

Design your network to aid forensics investigation

Robert Sisk (IBM MSS — IBM Corporation, US)

 US

Introduction to Computer Forensics

Chok Wee, Dr. Uwe Kohler (ORACERT — Oracle, US)

 US

Malware analysis workshop

Steve Romig (OSU-IRT — Ohio State University, US)

Wednesday, 16 November

Vendor SIG Meeting
09:00 – 09:15
 GB

Introduction and welcome

Damir (Gaus) Rajnovic (Cisco PSIRT — Cisco Systems Co., GB)

09:15 – 10:00
 JP

Vulnerability handling in JPCERT/CC

Yurie Ito (JPCERT/CC, JP)

10:00 – 11:00

Vulnerability handling in CERT/CC

Art Manion (CERT/CC)

11:00 – 11:15

Coffee break

11:15 – 12:00

Responsible Security Coordination with Open Source

Derrick Scholl (Sun)

12:00 – 13:30

Lunch

13:30 – 14:00

Responsible Security Coordination with Open Source

Derrick Scholl (Sun)

14:00 – 14:45
 US

Legal issues

Tara Flanagan (Cisco Systems — Cisco Systems Ltd., US)

14:45 – 15:00

Coffee break

15:00 – 15:45
 US

OVAL scheme

Andrew Buttner (MyCERT — MITRE, US)

15:45 – 16:30
 JP

Feasibility Study of OVAL based Vulnerability Management Extension

Masato Terada (IPA, JP)

16:30 – 16:50
 GB

Closing remarks, next meeting

Damir (Gaus) Rajnovic (Cisco PSIRT — Cisco Systems Co., GB)