Pages: pp. 6-7
Peter G. Neumann is SRI Computer Science Lab's principal scientist. He previously worked at Bell Labs and was heavily involved in Multics development jointly with MIT and Honeywell. He moderates the ACM Risks Forum, edits Communication of the ACM's monthly Inside Risks column, chairs the ACM Committee on Computers and Public Policy, cochairs the ACM Advisory Committee on Security and Privacy, cofounded People For Internet Responsibility (PFIR), and cofounded the Union for Representative International Internet Cooperation and Analysis (URIICA). His book, Computer-Related Risks, is in its fifth printing. He has doctorates from Harvard and Darmstadt. He is a Fellow of the ACM, IEEE, and American Association for the Advancement of Science, and is also an SRI Fellow. He is the 2002 recipient of the National Computer System Security Award. Contact him at www.csl.sri.com/neumann.
Charles C. Palmer manages the Security, Privacy, and Cryptography department at IBM's T. J. Watson Research Center. His teams work in the areas of cryptography research, Internet security technologies, Java security, secure embedded systems, smart cards, secure signed documents, and the global security analysis lab, which he cofounded in 1995. He previously was an adjunct professor of computer science at Polytechnic University, New York. Although his primary focus is now security, Palmer remains active in the Genetic Algorithms community by participating in program committees for the various conferences since 1994. He has a PhD in computer science from Polytechnic University, an MS in computer science from Tulane University, and a BS in computer science from Oklahoma State University. He is a member of the ACM, the IEEE, and the IEEE Computer Society. Contact him at email@example.com.
Radio Frequency Identification (RFID) technology is fast becoming a lightning rod for consumer privacy activists. This workshop brings together RFID technologists, boosters, critics, privacy activists, and journalists covering the space to establish technical truths and create a framework for understanding the growing body of RFID policy issues.
A series of speakers including academics, RFID innovators, and privacy activists will discuss RFID technology, policy, and privacy. There will be ample time for discussion and questions and answers. For more information: http://rfidprivacy.org/. Sponsored in part by MIT Computer Science and Artificial Intelligence Laboratories.
Renowned security experts Gary McGraw of Cigital, Bruce Schneier of Counterpane Internet Security, and Paul Kocher of Cryptography Research present IEEE Security & Privacy's panel "Where Hardware Security Meets Software Security: Weak Points and Real Attacks," at Comdex.
When it comes to hardware systems, security is a distinct challenge. Not only are clever hardware attacks such as differential power analysis and "glitching" a risk, but because of new networking functionality on devices, remote software-based attacks also become relevant. When small device form factors include advanced network functionality, an attacker's bag of tricks really gets interesting. This panel of experts will discuss real-world attacks on a cross-section of systems, covering hardware-based attacks, software-based attacks, and some in-between. The panel would discuss how to identify security risks throughout the development lifecycle, from design to production. The good news: security risks to systems can be managed. The bad news: risk management for such devices is non-trivial.