In the event that your password table gets into the wild, how long will it take an attacker to expose the plaintext passwords? The recent set of well publicized disclosures of user passwords raises the question of whether current best practices adequately protect passwords from brute force attacks. This training will discuss the pros and cons of the current practices such as salted-hashes, adaptive hashes and proposes an alternative solution for strengthening these existing practices. The talk will discuss the cryptographic properties of the current practices, but does not require a PhD. in mathematics to understand the details.
This exclusive training event will be taught by Cigital Internal CTO and well-known security expert, John Steven
John’s expertise runs the gamut of software security from threat modeling and architectural risk analysis, through static analysis (with an emphasis on automation), to security testing. As a consultant, John has provided strategic direction to many multi-national corporations, and his keen interest in automation keeps Cigital technology at the cutting edge.
Who should attend?
Anyone who is in development, testing, or design, including security professionals, executives, architects, developers, code reviewers, and test personnel.
When is the Training?
Tuesday, November 13th
- 8:00am: Hot breakfast
- 8:30am: Training
- 10:30am: Networking
Where is the training located?
Hodges Room, 3rd floor, Centergy Building at Georgia Tech, 75 Fifth Street, Atlanta, GA, 30308
See here for directions.
Parking is located behind the Technology Square Research Building, accessible from Williams Street. (Note: Williams Street is one way heading north).
How much to attend?
FREE - When you show up! The $20 registration fee will be refunded in cash as soon as you arrive! Registration is limited, so sign up early!
Would you like more information on Cigital Training?