Mobile Security Developments: 2014 & beyond
Thursday, February 13, 2014 from 1:00 PM to 6:00 PM (CET)
Mobile Security Developments: 2014 & beyond, TNO & LSEC
In 2013, mobile computing causes ongoing concern for CIOs and CISOs everywhere, dealing with the introduction of new smartphones and tablets, sensitive corporate information stored on employee- devices, and an explosive business demand for mobile applications. In this era of hyper connectivity, all devices are connected, from cars to refrigerators to all kinds of consumer electronics, allowing existing vulnerabilities to be exploited in multiple ways. But…..Mobility also provides a unique opportunity for genuine business innovation in these pressed economic times.
Ceasing the opportunity, delivering on the agility required by business and addressing the risks that are associated seems to be the ultimate challenge. LSEC & TNO invite you to examine what exactly those risks are and evaluate some of the recommended counter measures and controls.
13.00 h: Registration, Sandwich Lunch
13.30 h: Introduction by Ulrich Seldeslachts, CEO LSEC
A wider perspective security in mobile, the challenges today and challenges ahead. From the FIRE project, LSEC has investigated the ongoing developments of mobile security research activities and current challenges towards security on mobile. An enlightening view, putting some perspective in the day to day considerations of smartphone, tablet and other mobile devices challenges.
13.40 h: The state of Mobile Malware: Frank Fransen, TNO
The last decade threat predictions for the following year always included mobile malware. Moreover, 2013 has been called “the year of mobile malware”. But how real is the mobile malware threat? In this talk, we will give an overview of the state of mobile malware, the risks to end-users and to mobile network operators. Finally, we will discuss some of the countermeasures to protect against the threat of mobile malware.
Frank Fransen: Frank is a senior scientist in the Information Security group of TNO. His work at TNO involves study of emerging security technologies, security of mobile communication systems, cyber security of smart energy grid. Frank has been involved in several European projects. He was among others work package leader in FP6 project MOSQUITO. Frank actively participates in 3GPP SA3 on standardisation of mobile network security and in the Dutch counterpart of ISO JTC1 SC27 on IT security techniques (e.g. ISO/IEC 27001)
14.20 h: How did they listen in on Angela’s Nokia? Securing Mobile communications, WiFi and apps on mobile devices: Ralph Moonen, CEO of ITSX
In this short presentation, Ralph will provide an overview of the current state of the art in securing and hacking mobile 2/3/4G communication. How easy is it to eavesdrop GSM traffic, and how can the US listen in on Merkel's Nokia from the roof of their embassy. Could we do the same? Or is it maybe even possible for a hobbyist? Also, Ralph takes a look at the security of WiFi and apps on mobile devices. The latest results from the research by Karsten Nohol will be reviewed, and Ralph will also cover his own experiences with hacking a femtocell to eavesdrop on 3G voice calls.
Ralph Moonen: Ralph is director of ITSX and security researcher. Ralph recently gave workshops Mobile Security in Kuala Lumpur and Abu Dhabi, and reverse engineered the security of several mobile banking apps. His primary interests are cryptography and security large scale networks against eavesdropping and snooping.
15.00 h: Coffee Break
15.30 h: Securing corporate access for mobile devices, Gerard van Bon, Cisco
Being one of the largest install bases of corporate networking equipment, Cisco has a number of different components that can serve to improve security on mobile. With an operational Cisco network, the Cisco Identity Services Engine could be an interesting way to identify access. But there could be more. Maybe considering software defined networks to improve mobile security?
Gerard Van Bon: Gerard has been in the ICT since 1985; of which the last 6 years as a network security specialist and technical pre-sales consultant. Prior to that he worked in the partner field for network design and implementation. Gerard is CCIE Certified since 2001. With a lot of field experience and practical knowledge, Gerard has a deep understanding on how to build and apply security from the ground up.
16.00h: To be confirmed
16.30 h: Panel Discussion
16.50 h: Closing notes
17.00 h: Reception & networking
18.00 h: End of seminar
LSEC & TNO: Mobile Security Developments: 2013 & beyond
Thursday, February 13, TNO Offices Delft from 13 – 18h, at Brassersplein, Delft
Attendance to this event is free upon prior registration
When & Where
This event is organized by LSEC (Leaders In Security), a not-for-profit association focused on Information Security in Europe. LSEC has been organizing over the last couple of years over 200 highly professional information security oriented activities. With over 130 ICT Security industry and research members, more than 5000 enterprise and government it security professionals connected, and reaching out to over 25.000 business professionals, LSEC welcomes the active participation of companies to participate in the discussion of potential threats, challenges and opportunities for companies in the domain of Security, or to the enterprise market and government institutions. LSEC raises awareness on cybersecurity and information security with government, enterprises, professionals and researchers, by organizing thought leadership events, awareness activities and joint industrial and research projects. Join LSEC today as individual by subscribing to this event, or registering at www.leadersinsecurity.org.