IOActive’s Security Consultant to present SSL Traffic Analysis Attacks
Seattle, Wash—November 4, 2011. IOActive, a leading provider of application security, compliance, and smart grid security services, today announced that Vincent Berg will present SSL Traffic Analysis Attacks at Ruxcon 2011. Ruxcon is a computer security conference that aims to bring together the best and brightest security talent. It’s a mixture of live presentations, activities, and demonstrations presented by security experts from the Australia-Pacific region and invited guests from around the world. Ruxcon is widely regarded as one of Australia’s leading computer security conferences and attacts all facets of the security landsacpe including industry, academia, and enthusiasts.
Mr. Berg’s presentation will focus on modern SSL traffic analysis attacks. Although this attack class is well known and great papers have been published about it, most people still are not aware of the lengths to which an attacker can go to extract useful information from SSL sessions. By showing some large targets and useful programs, Berg hopes the audience will gain a better understanding of what SSL traffic analysis is (a real threat, depending on the attacker’s skill) and some knowledge about how to avoid these attack types. Mr. Berg also will present research tools, with at least one being a proof of concept on how to perform traffic analysis of Google Maps.
WHAT SSL Traffic Analysis Attacks
WHERE CQ Function Centre; Melbourne, Australia
WHEN November 19–20, 2011. Time TBD.
HOW For more information, visit the Ruxcon website.
About Vincent Berg
As a Security Consultant at IOActive, Vincent Berg performs penetration tests, identifies system vulnerabilities, and performs code reviews for companies ranging from the small to Fortune 500 businesses.Involved in the computer security field for over a decade, he enjoys looking for exploitable vulnerabilities in new software and network protocols, and creating prevention techniques around both. Berg has authored numerous white papers and speaks at security conferences around the world including previous Outerbrains, PH-Neutral, EUSecWest, the FST IT Security Conference, and 44Con.
Established in 1998, IOActive is an industry leader that offers comprehensive computer security services with specializations in smart grid technologies, software assurance, and compliance. Boasting a well-rounded and diverse clientele, IOActive works with a majority of Global 500 companies including power and utility, hardware, retail, financial, media, aerospace, high-tech, and software development organizations. As a home for highly skilled and experienced professionals, IOActive attracts talented consultants who contribute to the growing body of security knowledge by speaking at such elite conferences as Black Hat, Ruxcon, Defcon, BlueHat, CanSec, and WhatTheHack. For more information, visit www.ioactive.com.