Latest News

Educates IT and developers on latest threats and how to secure Web applications

What: Conference on California’s Future

When: May 12-16, 2008

Sacramento Convention Center

1400 J Street Sacramento, California 95814

Instructor: Paul Hinkle, CTO, Safelight Security Advisors

Security Training

Threat Update

Monday, May 12, 2008, 9:00 a.m. - 12:00 p.m.

Audience: IT network administrators and managers The news is full of stories of stolen laptops, hacked databases and identity theft on a massive scale. From social engineering and spam, to directed attacks and virtualized rootkits, learn how different threats may impact the overall security posture of your organization. This half-day course brings you up to date with the latest attack methods, and anticipates some of the changes the industry expects in the near future.

Securing your Web Applications

Monday, May 12, 2008, 1:30 p.m. - 4:30 p.m.

Audience: application developers, project managers and business analysts According to Acunetix (a vendor of Web application scanning tools), 70% of applications they reviewed contained high or medium ranked security vulnerabilities. Learn how to develop more secure applications using simple, repeatable steps. This introductory half-day session includes: demonstrations of key attacks, step-by-step analysis of those attacks and solid countermeasures that any development team can use in its Web environment.

I am out at the RSA Conference this week, and like every year, I am stunned by the number of product vendors selling “silver bullet” technology solutions to solve all of life’s security problems.  Seeing the make-up of the expo floor, you would think that you can just throw lots of technology at a problem in order to make it go away.  Given that real solutions always incorporate people, process and technology, it always amazes me that most vendors pretty much ignore the first two. (more…)