http://blog.gmane.org/gmane.comp.security.honeypots hourly 1 1901-01-01T00:00+00:00 http://gmane.org/img/gmane-25t.png http://gmane.org http://comments.gmane.org/gmane.comp.security.honeypots/3953 <pre>Hello everyone, I would like share with you for educational purposes and without any commercial purpose, data collected by the my homemade honeypot. Nothing new, nothing shocking, nothing sensational... but I think can be of interest to newcomers to the world of analysis of malware, botnets, etc... maybe for a thesis. The files collected are divided into zip archives, in alphabetical order, with password (which must be request via email). Some details: - Honeypot ISP: AS3269 Interbusiness (Telecom Italia) - Honeypot software: amun, dionaea - Total files: 7085 - Period of time: Aug 2009 - Feb 2013 - Type of files: ASCII, data, HTML, MS-DOS, PE32 (dll, gui, Mono/.Net) More information can be viewed here: http://www.nothink.org/honeypots.php Always from this page, daily, some logs are available for download, parsabili easily and used for statistical purposes. Cheers, Matteo Cantoni </pre> Matteo Cantoni 2013-02-14T09:46:27 http://comments.gmane.org/gmane.comp.security.honeypots/3951 <pre>EUSecWest 2012, Amsterdam, September 19/20, Featuring Mobile PWN2OWN CALL FOR PAPERS - Deadline June 15 2012    AMSTERDAM, Nederland -- The seventh annual EUSecWest    applied technical security conference - where the eminent    figures in the international security industry get    together share best practices and technology - will be    held in downtown Amsterdam near Leidseplein Square on    September 19/20, 2012. The most significant new    discoveries about computer network hack attacks and    defenses, commercial security solutions, and pragmatic    real world security experience will be presented in a    series of informative tutorials.    This year the EUSecWest conference will also host    dedicated security coverage of mobile devices, and host    the first mobile device only focused PWN2OWN competition,    where researchers get to demonstrate live vulnerability    attack code against designated targets and, if    successful, get to keep the target hardware and cash    prizes.    The EUSecWest meeting provides international researchers    a relaxed, comfortable environment to learn from    informative tutorials on key developments in security    technology, and collaborate and socialize with their    peers in one of the world's most scenic cities - a short    walk away from several large hotels and the Leidseplein    entertainment and shopping district, conveniently close    to many famous museums, convenient transport, Vondel    Park, and a plentitude of restaurants and bars.    The EUSecWest conference will also feature the    availability of the Security Masters Dojo expert network    security sensei instructors, and their advanced, and    intermediate, hands-on training courses - featuring small    class sizes and practical application excercises to    maximize information transfer.    We would like to announce the opportunity to submit    papers, courses, and/or lightning talk proposals for    selection by the EUSecWest technical review committee.    This year we will be doing one hour talks, and some    shorter talk sessions.    Please make your proposal submissions before June 15th,    2012.    Some invited papers have been confirmed, but a limited    number of speaking slots are still available. The    conference is responsible for travel and accommodations    for the speakers. If you have a proposal for a tutorial    session then please make your submission by mailing a    plain text version of the information along with any    other supporting material or formats to synopsis of the    material and your biography, papers and, speaking    background to "secwest12 [at] eusecwest.com" Only slides    will be needed for the September paper deadline, full    text does not have to be submitted - but will be accepted    if available. This year we will be opening up the    presentation guidelines to include talks not in English    (particularly Dutch, Chinese, French, Russian, and    Spanish) which we will offer to translate for the speaker    if they are not a native English speaker.    The EUSecWest 2012 conference consists of tutorials on    technical details about current issues, innovative    techniques and best practices in the information security    realm. The audiences are a multi-national mix of    professionals involved on a daily basis with security    work: security product vendors, programmers, security    officers, and network administrators. We give preference    to technical details and new education for a technical    audience.    The conference itself is a single track series of    presentations in a lecture theater environment. The    presentations offer speakers the opportunity to showcase    on-going research and collaborate with peers while    educating and highlighting advancements in security    products and techniques. The focus is on innovation,    tutorials, and education instead of product pitches. Some    commercial content is tolerated, but it needs to be    backed up by a technical presenter - either giving a    valuable tutorial and best practices instruction or    detailing significant new technology in the products.    Paper proposals should consist of the following    information:     1. Presenter, and geographical location (country of        origin/passport) and contact info (e-mail, postal        address, phone, fax).     2. Employer and/or affiliations.     3. Brief biography, list of publications and papers.     4. Any significant presentation and educational        experience/background.     5. Topic synopsis, Proposed paper title, and a one        paragraph description.     6. Reason why this material is innovative or significant        or an important tutorial.     7. Optionally, any samples of prepared material or        outlines ready.     8. Will you have full text available or only slides?     9. Language of preference for submission.    10. Please list any other publications or conferences        where this material has been or will be        published/submitted.    11. If there are multiple speaker applicants please        outline carefully what each speaker covers.        Restrictions on expenses for multiple speakers may        apply.    IMPORTANT:Please include the plain text version of this    information in your email as well as any file, pdf, sxw,    ppt, or html attachments.    Please forward the above information to "secwest12 [at]    eusecwest.com" to be considered for placement on the    speaker roster, or have your lightning talk scheduled. If    you contact anyone else at our organization please ensure    you also forward a copy of the submission info to the    submission address else it may be omitted from the    review process. thanks, --dr </pre> Dragos Ruiu 2012-06-05T01:26:44 http://comments.gmane.org/gmane.comp.security.honeypots/3950 <pre>The 8th issue of the HITB Quarterly Magazine is now available for download! http://magazine.hitb.org/ This edition is a little bit 'lighter' than previous issues as the editorial team is busy working on an extra special release for our 10th year anniversary conference in October, HITBSecConf2012 - Malaysia. http://conference.hitb.org/hitbsecconf2012kul/ For the first time ever though, we're making print editions of the magazine available (courtesy of HP MagCloud) - A print edition of the HITB Quarterly is a perfect addition for your coffee table or office reception area and we'll be making past issues also available for print over the next couple of weeks. We're hoping that print sales will allow us to pay our authors and contributors for their articles, so ordering a print copy is a way for you to help support them! Putting together content for the magazine is practically a full time job and it would be nice to offer authors some form of compensation for the time and energy taken to produce the high quality articles that you all enjoy. Enjoy the issue and hopefully see you at #HITB2012AMS in May: http://conference.hitb.org/hitbsecconf2012ams/ --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2012-04-23T14:19:13 http://comments.gmane.org/gmane.comp.security.honeypots/3949 <pre>This is a call for submissions for the HITB SIGINT sessions at HITB2012AMS - The third annual HITB conference in Amsterdam taking place at the Okura from the 21st - 25th of May. The HITB SIGINT (Signal Intelligence/Interrupt) sessions are designed to provide a quick 15 - 30 minute overview for material and research that's up and coming - stuff that isn't quite ready for the mainstream tracks of the conference but deserve a mention nonetheless. These sessions are not only for seasoned security professionals but are also open to all final year students based in The Netherlands or around Europe who want to present their projects to industry experts and prove their worth before they graduate. These sessions are held during the conference coffee and lunch breaks and are strictly meant for research papers that are at least 50% COMPLETE by the time of submission and are NON COMMERCIAL in nature. INTERESTED IN SUBMITTING? ========================= Send us your proposed talk abstract (1250 words), your bio (including affiliations and interests) and above all else, tell us why you think your presentation deserves it's 15 minutes of fame! Accepted speakers will receive: 1 x complimentary pass to the quad track conference (worth EUR899) 1 x VIP invite to the post conference party sponsored by Microsoft and IOActive All submissions for HITB SIGINT sessions must be sent in via email to hitb-sigint&lt; at &gt;hackinthebox.org before the 14th of April == On a related note, we are happy to announce that the first set of accepted speakers and submissions for HITB2012AMS includes a HISTORIC FIRST TIME appearance by the iOS jailbreak 'Dream Team' comprising members of both Chronic Dev and the legendary iPhone Dev Team! In addition, former member of Last Stage of Delirium Group and the guy who epically pwned J2ME in 2004, Adam Gowdiak, will be on hand with his in-depth research on the insecurities of satellite television and Digital Video Broadcast chipsets - research that he's been quietly working on over the last year and a half! Further details and the initial list of HITB2012AMS speakers is here: http://conference.hitb.org/hitbsecconf2012ams/pagelist2/conference-2/ Online Registration: http://conference.hitb.org/hitbsecconf2012ams/register/ --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2012-03-08T14:10:59 http://comments.gmane.org/gmane.comp.security.honeypots/3948 <pre>Hi. The Honeynet Project holds its second Public Event on March 19 - 20, 2012 at Facebook HQ, SF Bay Area, Ca (USA). Public event consists on a one-day technical presentations and a one-day hands-on tutorial trainings. All details available here: https://honeynet.org/SecurityWorkshops/2012_SF_Bay_Area Regards, Guillaume Arcas ------------------------- PR - The Honeynet Project </pre> Guillaume Arcas 2012-02-02T13:53:09 http://comments.gmane.org/gmane.comp.security.honeypots/3946 <pre>Hi, I would like to ask if you guys have any suggestions (including articles, references, books, sites, ideas, anything) on how to build a "Poor man's Cyber Warfare / Network Defense Simulation" for: 1 - study 2 - forensic analysis 3 - vulnerabilities replication 4 - worm/virus spreading 5 - DLP (data leak/loss prevention) study 6 - ??? For my first attempts I used a dual-quad xeon server with 32GB ram and managed to create a whole network with ids/ips, firewall, workstations, attackers, database, log collecting using linux containers (lxc). Thank you all Teophilo Athos Brauns ------------------------------------ Security Enthusiast </pre> Teóphilo Athos Brauns 2012-01-24T11:45:03 http://comments.gmane.org/gmane.comp.security.honeypots/3945 <pre>So after a dozen years or so organizing conferences, you get the urge to pull levers and try experimenting with things. So this year I sent out the CanSecWest CFP only over Twitter, and G+ publicly. Just curious as to the adoption and information dispersion rate, and some estimate of the attention these newer channels are getting. So after this experiment I hear about people having submissions and missing  the CFP. So for my control set, here is the normal announce message to different e-mail lists. We'll do a Second CanSecWest CFP, but a brief one. Send us your proposal by the end of Monday next week, December 5, 2011. The questions and information needed is the same as usual (see website), also for my curiosity could you include: 12. Where did you hear about the CFP from? cheers, --dr </pre> Dragos Ruiu 2011-12-02T02:27:23 http://comments.gmane.org/gmane.comp.security.honeypots/3944 <pre>CFP: Special Issue of COMPUTER NETWORS (ELSEVIER) on "Botnet Activity: Analysis, Detection and Shutdown" Apologies for multiple copies of this announcement. ------------------------- Dear Colleagues, Please consider the following opportunity to submit and publish original scientific results to a SPECIAL ISSUE of COMPUTER NETWORKS (ELSEVIER journal) on "Botnet Activity: Analysis, Detection and Shutdown". The submission deadline is set to December 1st, 2011. http://ees.elsevier.com/comnet/ A pdf version of this CFP is available at http://faculty.cse.tamu.edu/guofei/CFP_COMNET-Botnets.pdf Please help distribute. Thanks! ------------------------- Large scale attacks and criminal activities experienced in recent years have exposed the Internet to serious security breaches, and alarmed the world regarding cyber crime. In the center of this problem are the so called botnets -- collections of infected zombie machines (bots) controlled by the botmaster to perpetrate malicious activities and massive attacks. Some recent botnets are composed of millions of infected machines, making use of this attack vector inevitably harmfully. Hence, it is paramount to detect, analyze and shutdown such overlay networks before they become active. Research on botnet activity is mostly related to detection and disruption. Detection of botnets has focused on monitoring bot activities, especially during the spread of malicious software to infect new hosts (initial infection phase) and the communication messages exchanged between bots and botmasters (rallying and updating phases). Some behavioral aspects are common: bots have to signal the botmaster informing they are alive, each time their hosts are started; bots send messages whenever connecting and joining with the botnet; the botmaster has to send commands to each zombie machine before initiating malicious activities. This special issue of Computer Networks is intended to foster the dissemination of high quality research in all aspects regarding botnet activity, detection and countermeasures. The objective of this special issue is to publish papers presenting detection algorithms, traffic monitoring and identification, protocols and architectures, as well as botnet modeling, behavior, simulation, statistics, dissemination, analysis, preventive procedures and possible countermeasures. Only technical papers describing previously unpublished, original, state-of-the-art research, and not currently under review by a conference or journal will be considered. We solicit papers in a variety of topics related to botnet research including, but not limited to: - Traffic Monitoring and Detection Algorithms - Data Collection, Statistics and Analysis - Modeling Behavior and Simulation - Protocols and Architectures (IRC, HTTP, P2P, etc) - Firewalls and IDS - Cyber Crime Case Studies - Reverse Engineering and Automated Analysis of Bots - Honeypots and Honeynets - New Platforms: Cellular and Wireless networks, Mobile devices, TV, etc. - Legal Issues and Countermeasures - Underground Markets, Vulnerability Markets and Zero-day Economics - Mini-Botnets Guest Editors Ronaldo Salles Military Institute of Engineering Pra</pre> Guofei Gu 2011-08-24T14:59:11 http://comments.gmane.org/gmane.comp.security.honeypots/3942 <pre>Hi everyone and greetings from Netherlands! We're finally done with the epicness that was HITB2011AMS! Over 300 attendees and 45 speakers joined us for 2 days of trainings and a 2 day quad-track conference and it was a blast as always! Presentation materials can be downloaded from: http://conference.hitb.nl/hitbsecconf2011ams/materials/ In addition, photos from the event have also been uploaded to a gallery on HITBSecPhotos: http://photos.hitb.org/ The Call for Papers (CFP) for HITB2011KUL (October 10th - 13th &lt; at &gt; Intercontinental Kuala Lumpur, Malaysia) is still open and submissions are due before the 15th of July: http://cfp.hackinthebox.org/ --- On a somewhat related note, we've also recently migrated our old hackinthebox.org news portal to a new home - HITBSecNews running at http://news.hitb.org/ and also launched a new landing page at the old URL. We know a fair number of folks have been asking about the next issue of the HITB quarterly magazine (http://magazine.hitb.org) and we're happy to announce that Issue 006 will be out this week (in &lt; 48 hours to be exact)! As always we'll let everyone here know when the magazine is available for download or you could also follow our &lt; at &gt;hackinthebox Twitter stream where we'll post the links as well. --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2011-06-08T03:48:11 http://comments.gmane.org/gmane.comp.security.honeypots/3941 <pre>Call for Papers Hack.lu 2011 The purpose of the hack.lu convention is to give an open and free playground where people can discuss the implication of new technologies in society. hack.lu is a balanced mix convention where technical and non-technical people can meet each others and share freely all kind of information. The convention will be held in the Grand-Duchy of Luxembourg in September (19-21.09.2011). The most significant new discoveries about computer network attacks and defenses, commercial security solutions, and pragmatic real world security experience will be presented in a three days series of informative tutorials. We would like to announce the opportunity to submit papers, and/or lightning talk proposals for selection by the hack.lu technical review committee. This year we will be doing workshops on the first day PM and talks of 1 hour or 30 minutes in the main track for the two following days. A capture the flag contest will take place during the whole conference. Scope ====== Topics of interest include, but are not limited to: * Software Engineering and Security * Honeypots/Honeynets * Spyware, Phishing and Botnets (Distributed attacks) * Newly discovered vulnerabilities in software and hardware * Electronic/Digital Privacy * Wireless Network and Security * Attacks on Information Systems and/or Digital Information Storage * Electronic Voting * Free Software and Security * Assessment of Computer, Electronic Devices and Information Systems * Standards for Information Security * Legal and Social Aspect of Information Security * Software Engineering and Security * Security in Information Retrieval * Network Security * Forensics and Anti-Forensics * Mobile Communications Security and Vulnerabilities * CSIRTs, Incident Analysis and Response Deadlines ========= The following dates are important if you want to participate in the CfP Abstract submission: no later than 1st June 2011 Full paper submission: no later than 30th June 2011 Notification date: end of July 2011 Submission guideline ==================== Authors should submit a paper in English up to 5.000 words, using a non-proprietary and open electronic format. The program committee will review all papers and the author of each paper will be notified of the result, by electronic means. Abstract is up to 400 words. Submissions must be sent to http://2011.hack.lu/cfp/ Submissions should also include the following: 1. Presenter, and geographical location (country of origin/passport) and contact info. 2. Employer and/or affiliations. 3. Brief biography, list of publications or papers. 4. Any significant presentation and/or educational experience/background. 5. Reason why this material is innovative or significant or an important tutorial. 6. Optionally, any samples of prepared material or outlines ready. 7. Information about if yes or no the submission has already been presented and where. Presentations/topics that haven't been presented before will be rewarded. The information will be used only for the sole purpose of the hack.lu convention including the information on the public website. If you want to remain anonymous, you have the right to use a nickname. If the paper is not accepted in the main track, it could be accepted in short or lightning talk session but in this case the speakers' privileges are not applicable. Speakers' Privileges ==================== * Accommodation will be provided (3 nights) * Travel expenses will be covered up to a max amount * Conference speakers night Publication and rights ====================== Authors keep the full rights on their publication/papers but give an unrestricted right to redistribute their papers for the hack.lu convention and its related electronic/paper publication. Sponsoring ========== If you want to support the initiative and gain visibility by sponsoring, please contact us by writing an e-mail to info(AT)hack.lu Web site and wiki ================= http://www.hack.lu/ CfP website: http://2011.hack.lu/cfp/ </pre> hack.lu 2011 information team 2011-04-21T13:31:24 http://comments.gmane.org/gmane.comp.security.honeypots/3940 <pre>Call for Papers 8th Annual Collaboration, Electronic Messaging, Anti-Abuse and Spam Conference (CEAS 2011) Perth, Western Australia, 1-2 Sept, 2011 http://ceas2011.debii.edu.au/ Proudly Hosted by the Anti Spam Research Lab in the Digital Ecosystems &amp; Business Intelligence Institute, Curtin University http://asrl.debii.curtin.edu.au ========================================================================== Topics of Interests ========================================================================== Track: Email Spam - Prevention &amp; Detection Techniques - Scalability, reliability, archiving, and retrieval - Early Detection Techniques - Behaviour based Techniques Track: Network Security - Message filtering, organization, and security - Network layer protocols for anti spam - Network traffic monitoring for spam prevention - IP &amp; MPLS security, Anti-DDoS techniques - Sand box, malware/botnet detection - Risk assessment, Vulnerability detection - Deep packet inspection, IPv6 security Track: Web Spam &amp; Spam 2.0 - Adversarial learning using machine learning and NLP - Behaviour based techniques for spambot detection - Web spambot characterization - Botnet Detection &amp; Elimination Track: Information Technology Security - Anti-Virus &amp; Anti-Worm Techniques - Trojan horse &amp; Data loss protection - Web Applications Security - IM &amp; Email Security - Cloud computing security Track: Spam &amp; Security in Social Networks - Social networking security, privacy, and fraud prevention - Collaborative filtering of user-generated content - Protocols &amp; standards for social networking, collaboration - Crowdsourcing analysis, applications, and theory - Novel uses of wikis and blogs in science, problem solving, - Studies on the use of citizen science and human-based computing - Novel modes of distributed collaboration - User trust and reputation - Terrorist network identification Track: Security Technologies - Information hiding and watermarking - Security processor / chip - Encryption and Decryption algorithm - Mobile device security - Code analysis - Trusted computing - Software security - Black box &amp; White box testing - Penetration testing - Model driven security Track: Cyber Crime - Collaboration in adversarial environments - Studies of abuse tactics and patterns - Standards for abuse reporting and monitoring - User identity issues that relate to the conference topics - Phishing Attacks, Real Case Studies on Phishing - Links between Scam, Fraud and Spam - Case studies on scam &amp; fraud , Cyber Forensics Track: Security Management - Information Security Management System - Security Operation Center - System security architecture - Framework and standards - Disaster recovery - IT control and audit Track: Spam Economics - Modeling &amp; analysis of economics of abuse, phishing, spam, &amp; fraud - Studies on Cost Benefit Analysis of Spam - Money Laundering - Underground Spam Economy ========================================================================== Important Dates ========================================================================== Abstract Deadline5th April 2011 Submission Deadline15th April 2011 Author Notification15th June 2011 Final Accepted Papers Due15th Aug 2011 Conference Dates1st &amp; 2nd Sept 2011 ========================================================================== ********CEAS 2011 is a ERA-B Conference******** Warm Regards Conference General Chair Vidyasagar M. Potdar CEAS 2011 http://ceas2011.debii.edu.au/ </pre> ceas2011< at >gmail.com 2011-03-10T06:19:29 http://comments.gmane.org/gmane.comp.security.honeypots/3939 <pre>HITB Magazine is currently seeking submissions for our next issue. If you have something interesting to write, please drop us an email at: editorial&lt; at &gt;hackinthebox.org TOPICS Topics of interest include, but are not limited to the following: * New Attack and Defense Techniques * Reverse Code Engineering * Network Security * Forensics and Incident Response * WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security * Cryptography * Hardware Hacking * Malware Analysis * Lock Picking / Physical Security HITB Magazine is a deep-knowledge technical magazine. Articles that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. Please send your article to editorial () hackinthebox org Submissions for issue #6 due no later than 5th of April 2011 --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2011-03-08T10:14:42 http://comments.gmane.org/gmane.comp.security.honeypots/3938 <pre>[ Apologies if you receive multiple copies of this announcement. Please pass it on to your colleagues and students who might be interested in contributing. ] Ninth Annual Conference on Privacy, Security and Trust ------------------------------------------------------ July 19-21, 2011 Montreal, Quebec, Canada http://www.unb.ca/pstnet/pst2011 Call for Papers --------------- The PST2011 International Conference on Privacy, Security and Trust (PST) is being held in Montreal, Quebec, Canada, July 19-21, 2011. PST2011 is the ninth such annual conference focusing on PST technologies. PST2011 provides a forum for researchers world-wide to unveil their latest work in privacy, security and trust and to show how this research can be used to enable innovation. Easychair submission link of PST 2011: http://www.easychair.org/conferences/?conf=pst2011. IMPORTANT DATES: ---------------- Submission Deadline: March 20, 2011 Notification of Acceptance: May 9, 2011 Final Manuscript Due: May 22, 2011 PST2011 will include an Innovation Day featuring workshops and tutorials followed by two days of high-quality research papers whose topics include, but are NOT limited to, the following: * Privacy Preserving / Enhancing Technologies * Trust Technologies, Technologies for Building Trust in e-Business Strategy * Critical Infrastructure Protection * Observations of PST in Practice, Society, Policy and Legislation * Network and Wireless Security * Digital Rights Management * Operating Systems Security * Identity and Trust management * Intrusion Detection Technologies * PST and Cloud Computing * Secure Software Development and Architecture * Human Computer Interaction and PST * PST Challenges in e-Services, e.g. e-Health, e-Government, e-Commerce * Implications of, and Technologies for, Lawful Surveillance * Network Enabled Operations * Biometrics, National ID Cards, Identity Theft * Digital forensics * PST and Web Services / SOA * Information Filtering, Data Mining &amp; Knowledge from Data * Privacy, Traceability, and Anonymity * National Security and Public Safety * Trust and Reputation in Self-Organizing Environments * Security Metrics * Anonymity and Privacy vs. Accountability * Recommendation, Reputation and Delivery Technologies * Access Control and Capability Delegation * Continuous Authentication * Representations and Formalizations of Trust in Electronic and Physical Social Systems High-quality papers in all PST related areas that, at the time of submission, are not under review and have not already been published or accepted for publications elsewhere are solicited. Accepted papers will either be accepted as regular papers up to 8 pages and with oral presentations, or short papers of up to 2 pages with poster presentations. Up to 2 additional pages will be allowed in each category with over-length charges. The standard IEEE two-column conference format should be used for all submissions. A copy of the IEEE Manuscript Templates for Microsoft Word or LaTeX and additional information about paper submission and conference topics and events can be found at the conference web site. All accepted papers will be published in the conference proceedings and by IEEE and will be accessible via IEEE Xplore Digital Library. Best Paper and Best Student Paper awards will be presented. Some travel grants to students who are presenting their work in the conference will also be made available. Organizing Committee -------------------- Honorary Conference Chair: Andrew Vallerand, Director S&amp;T Public Security, National Defense, Canada General Co-Chairs: Mourad Debbabi, Concordia University, Canada Amr M. Youssef, Concordia University, Canada Program Co-Chairs: Frederic Cuppens (Privacy), ENST-Bretagne, France Natalia Stakhanova (Security), University of South Alabama, USA Jianying Zhou (Trust), Institute for Infocomm Research, Singapore Workshop &amp; Tutorial Chair: Ali Miri, Ryerson University, Canada Poster Session Chair: Franois Cosquer, Alcatel Lucent, France Publication &amp; Publicity Chair: Indrajit Ray, Colorado State University, USA Carlisle Adams, University of Ottawa, Canada PST Steering Committee Chair: Ali Ghorbani, University of New Brunswick, Canada Conference Manager: Greg Sprague, National Research Council, Canada Local Arrangements: Benjamin Fung, Concordia University, Canada Webmaster: Ilia Goldfarb, National Research Council, Canada Finance and Registration: Linda Vienneau, National Research Council, Canada Privacy Theme ------------- Privacy concerns the operational policies, procedures and regulations implemented within an information system to control for the unauthorized use of, access to, or release of personal information held in any format. Topics of interest in this theme include (but are not limited to): * privacy preserving/enhancing technologies * identity management and biometrics * privacy and ubiquitous computing, e.g. RFIDs * reputation, privacy and communities * e-health and privacy * anonymity and medical research * employee privacy and network administration * privacy and location-based technologies and services * privacy and traceability * spyware and stalking * anonymity, pseudonimity and accountability * responding to hate speech, flaming and trolls * privacy and emergency management policies and technologies * vulnerable online users and privacy sensitization * evolving nature of lawful surveillance * smart cards and privacy * identity theft and management * privacy audits and risk analysis * evolving role of privacy officers Privacy Theme Chair: Frederic Cuppens, TELECOM Bretagne, France Privace Theme Committee: Sushil Jajodia, George Mason University, USA Vijay Atluri, Rutgers University, USA Joaquin Garcia-Alfaro, Telecom Bretagne, France Nora Cuppens-Boulahia, Telecom Bretagne, France Alban Gabillon, Universit de la Polynsie Franaise, France Josep Domingo-Ferrer, Universitat Rovira i Virgili, Spain Ernesto Damiani (Universit degli Studi di Milano, Italy) Ehud Gudes, Ben-Gurion University, Israel Carlisle Adams, University of Ottawa Esma Aimeur, University of Montreal Norm Archer, McMaster University Debra Grant, Office of the Information and Privacy Commissioner of Canada Steve Johnston, Office of the Privacy Commissioner of Canada Bradley Malin, Vanderbilt University Jian Pei, Simon Fraser University Teresa Scassa, University of Ottawa Jean-Marc Seigneur, University of Geneva Lisa Singh, Georgetown University Traian Truta, Northern Kentucky University Jens Weber, University of Victoria Security Theme -------------- Security addresses the various components of an information system that safeguard the data and associated infrastructure from unauthorized activity. Topics of interest in this theme include (but are not limited to): * access control * adaptive security and system management * analysis of network and security protocols * applications of cryptographic techniques * attacks against networks and machines * authentication and authorization of users, systems, and applications * botnets * critical infrastructure security * firewall technologies * forensics and diagnostics for security * intrusion and anomaly detection and prevention * malicious code analysis, anti-virus, anti-spyware * network infrastructure security * operating system security * public safety and emergency management * security architectures * security in heterogeneous and large-scale environments * techniques for developing secure systems * web security * wireless and pervasive/ubiquitous computing security Security Theme Chair: Natalia Stakhanova, University of South Alabama, USA Security Theme Committee: Michel Barbeau, Carleton University, Canada Mike Burmester, Florida State University, US Alvaro A. Cardenas, Fujitsu Laboratories, US Anton Chuvakin, Security Warrior Consulting, US Mathieu Couture, CRC, Canada Jos M. Fernandez, Ecole Polytechnique, Montreal, Canada Thorsten Holz, Ruhr-University Bochum, Germany Mohammed Houssaini Sqalli, King Fahd University of Petroleum &amp; Minerals, Saudi Arabia H. Gunes Kayacik, Carleton University, Canada David Lie, University of Toronto, Canada Wei Lu, Keene State College, US Xinming Ou, Kansas State University, US Maria Papadaki, University of Plymouth, UK Nadia Tawbi, Universit Laval, Canada Julie Thorpe, University of Ontario Institute of Technology, Canada Issa Traore, University of Victoria, Canada Isaac Woungang, Ryerson University, Canada Alec Yasinsac, University of South Alabama, US Nur Zincir-Heywood, Dalhousie University, Canada Trust Theme ----------- Trust is a fundamental human behavior. It is necessary for people to function in social groups, and it forms the foundation for many of our organizations and relationships. The conference solicits original papers on any topic related to the personal, social, and economic aspects of trust. Topics of interest in this theme include (but are not limited to): * trust models * components and dimensions of trust * game theory and trusting behaviors * trust and risk * trust, regret, and forgiveness * perceptions of trustworthiness * trust management * automating trust decisions * attacks on trust * trust influences on security and privacy * economic drivers for trustworthy systems * cross-cultural differences * computing about trust * applications of trust * trust and economics * trust in e-commerce * reputation systems Trust Theme Chair: Jianying Zhou, Institute for Infocomm Research, Singapore Trust Theme Committee: Habtamu Abie, Norwegian Computing Center, Norway Claudio Agostino Ardagna, Universit degli Studi di Milano, Italy Robin Cohen, University of Waterloo, Canada Rino Falcone, National Research Council, Italy Jordi Forne, UPC, Spain Xinyi Huang, I2R, Singapore Steve Kremer, INRIA, France Costas Lambrinoudakis, University of Piraeus, Greece Albert Levi, Sabanci University, Turkey Hui Li, Xidian University, China Joseph Liu, I2R, Singapore Sangjae Moon, Kyungpook National University, Korea Yuko Murayama, Iwate Prefectural University, Japan Jose Onieva, University of Malaga, Spain Rolf Oppliger, eSECURITY Technologies, Switzerland Gunther Pernul, Universitt Regensburg, Germany Pierangela Samarati, Universit degli Studi di Milano, Italy Guilin Wang, University of Wollongong, Australia Yunlei Zhao, Fudan University, China Partners / Sponsors ------------------- NRC-CNRC Canada University of New Brunswick, Canada Information Security Center of eXcellence (ISCX) Concordia University, Montreal, Canada National Cyberforensics and Training Alliance (NCFTA), Canada PST'11 </pre> Serguei A. Mokhov 2011-02-19T09:39:27 http://comments.gmane.org/gmane.comp.security.honeypots/3936 <pre>Happy 2011 everyone! Just a reminder that the Call for Papers for the second annual HITBSecConf in Europe is closing on the 18TH OF FEBRUARY! We've received some awesome submissions so far and the event is really shaping up nicely. The event will once again take place at the NH Grand Krasnapolsky in Amsterdam from the 17th - 20th of May. HITB2011AMS will be a quad-track conference line up featuring keynote speaker Joe Sullivan (Chief Security Officer of Facebook) and a special keynote panel discussion on 'The Economics of Vulnerabilities' In addition, the event also features a brand new Capture The Flag - World Domination competition run by the HITB.nl CTF Crew, an expanded Hackerspaces Village (now featuring a Hackerspaces Challenge with LEGO MINDSTORMS!) an updated Lock Picking Village run by members from TOOOL.nl and of course the HITBSIGINT sessions - 15 minute talks held during the coffee and lunch breaks with a focus on highlighting up and coming research and researchers. As always, talks that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. HITB CFP: http://cfp.hackinthebox.org/ === Topics of interest include, but are not limited to the following: # Cloud Security # 3G/4G/WIMAX Security # File System Security # SS7/GSM/VoIP Security # Smart Card and Physical Security # Network Protocols, Analysis and Attacks # Applications of Cryptographic Techniques # Side Channel Analysis of Hardware Devices # Data Recovery, Forensics and Incident Response # Analysis of Malicious Code / Viruses / Malware # Windows / Linux / OS X / *NIX Security Vulnerabilities # Next Generation Exploit and Exploit Mitigation Techniques # WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security Each non-resident speaker will receive accommodation for 3 nights / 4 days at the Krasnapolsky. For each non-resident speaker, HITB will cover travel expenses up to EUR1200.00. Your submission will be reviewed by The HITB CFP Review Committee which includes: Charlie Miller (Principal Analyst, Independent Security Evaluators) Jeremiah Grossman (Founder, Whitehat Security) Red Dragon Thanh (THC, VNSECURITY, Intel Corp) Mark Curphey (Director, Microsoft Corp) Cesar Cerrudo (Founder / CEO ArgenISS) Saumil Shah (Founder CEO Net-Square) Shreeraj Shah (Founder, BlueInfy) Fredric Raynal (Sogeti/Cap Gemini) Robert Hansen (rsnake) (SecTheory) Alexander Kornburst (Red Database) Emmanuel Gadaix (Founder, TSTF) Andrea Barisani (Inverse Path) Ed Skoudis (InGuardians) Haroon Meer (Sensepost) Chris Evans (Google) Philippe Langlois (TSTF) Skyper (THC) PLEASE NOTE: We do not accept product or vendor related pitches. If you would like to showcase your company's products or technology, please contact us for further participation opportunities. === Event Website: http://conference.hackinthebox.org/hitbsecconf2011ams/ We look forward to receiving your submissions and to seeing you in Amsterdam in May! - The HITB.nl Team - http://conference.hitb.nl --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2011-01-31T04:14:02 http://comments.gmane.org/gmane.comp.security.honeypots/3935 <pre>CALL FOR PAPERS - 6th Annual Symposium on Information Assurance (ASIA '11) 14th Annual New York State Cyber Security Conference Empire State Plaza, Albany, NY June 7-8, 2011 WEBSITES: http://www.albany.edu/iasymposium (ASIA - for academic peer-reviewed presentations &amp; proceedings) http://www.cscic.state.ny.us/security/conferences/security/2011/2011call.cfm (Cyber Security Conference - for practitioner presentations) IMPORTANT DATES Paper Submission DeadlineFebruary 15, 2010 Reviewer Feedback March 15, 2011 Final Paper SubmissionMarch 31, 2011 Symposium DatesJune 7-8, 2011 Authors are invited to submit original and unpublished papers to the 6th Annual Symposium on Information Assurance. Accepted papers will appear in the symposium proceedings. This symposium is jointly held with the 14th Annual New York State Cyber Security Conference. This two-day event attracts practitioners, researchers, and vendors providing opportunities for business and intellectual engagement among attendees. The symposium is organized by the University at Albany, State University of New York, the NYS Division of Homeland Security and Emergency Services Office of Cyber Security (OCS), and the NYS Forum. There is no registration fee for authors of accepted papers. All participants in ASIA '11 will also be able to attend the rest of the NYS Cyber Security Conference sessions. In the past, the NYS Cyber Security Conference and ASIA have had excellent keynote speakers such as Larry Ponemon from the Ponemon Institute; Billy Rios from Google; Philip Reitinger, the Deputy Under Secretary of the National Protection and Programs Directorate (NPPD), U.S. Department of Homeland Security; and Raphael Perl, Head, Action Against Terrorism Unit, Office of Security Cooperation in Europe among others. In addition to the keynotes, we have had wonderful presenters including top information security officials, consultants, policy developers and analysts, and researchers from a myriad of well-known institutions. This includes the Lance Spitzer of Honeytech; Johnny Starrunner from the FBI Cyber Division, Deputy Director of the Office of SAFETY Act Implementation, Science and Technology Directorate, Department of Homeland Security; the Lead for Cyber, Public Sector, Global Business Services, IBM; National Security and Emergency Preparedness Department, U.S. Chamber of Commerce; Team Cymru; M&amp;T Bank Corporation, Principal Architect for the Microsoft Malware Protection Center (MMPC), Microsoft; Identity Force; Booz Allen Hamilton; LexisNexis; President, EMPACT America; Anti-Phishing Working Group, Greylogic, Nassau County District Attorney's Office; General Electric; NYS Attorney General's Office, NYS Department of Health; Computer Crime Unit, USPS Office of the Inspector General, National Institute of Standards and Technology, and the PCI Security Standard Council. Suggested topics for submission of papers are listed below (but not limited to): Cyber Warfare, Information Assurance, Security Data Collection and Analysis, Linguistic Analysis for Security and Intelligence, Internet-based Terrorism and Espionage, Reverse Engineering of Viruses and Worms, Security Policy Implementation &amp; Compliance, Botnet Detection and Prevention, Information Security Risk Management, Self-organization Based Security Models, Economics of Information Security, Biological Models of Security, Computer &amp; Network Forensics, Network Security and Intrusion Detection, Computer Crime and Digital Forensics, Security in the Cloud / Distributed Systems, Forensic Accounting and Fraud Detection,Curriculum Development in Information Security, Digital Rights Management, Privacy &amp; Security, Smart Grid / Critical Infrastructure Security SUBMISSION CATEGORIES Submissions can be made in a number of categories: Completed research papers, research-in-progress papers, case studies, and panel proposals/round table discussions. Please follow the following guidelines in preparing your submission. * Completed Research Papers: Typically 5,000 words long (excluding abstract and references). * Research in Progress Papers: Typically 2,500 words (excluding abstract and references). * Case Studies: Typically between 3,000 and 5,000 words long. * Round Table Discussion: Typically a 1,000 word synopsis of the topic area. * Panel Proposals: Typically a 1,000 word description, identifying the panelists to be involved. SUBMISSION GUIDELINES 1. Submitted papers must not have been previously published, or currently under consideration for publication elsewhere, or have substantial overlap with papers the author has submitted elsewhere. 2. Submissions undergo a double-blind peer review process. 3. Papers selected for presentation will be published in formal proceedings. Arrangements are also being made with journals to publish extended versions of selected papers from the symposium. 4. Papers in the topic areas discussed are preferred, although contributions outside those topics may also be of interest. Please feel free at any time to contact the symposium chair if you have questions regarding your submission. 5. Papers should be submitted via email to the chair at goel&lt; at &gt;albany.edu in IEEE format and should include the following: a) Separate title page (in plain text) with Title, Name(s) of authors, Organizational affiliation(s), telephone and fax number(s), postal address(es), and email address(es), Author to contact for correspondence about the paper. b) Abstract (less than 250 words) c) Paper including a brief biography of each author as appropriate at the end of the paper SYMPOSIUM CHAIR Sanjay Goel Director of Research, NYS Center for Information Forensics and Assurance (CIFA) Associate Professor, School of Business University at Albany, State University of New York BA 310b, 1400 Washington Ave. Albany, NY 12222 PH: (518) 442-4925 Email: goel&lt; at &gt;albany.edu SUBMISSIONS CHAIR Damira Pon Senior Research Analyst, NYS Center for Information Forensics and Assurance (CIFA) University at Albany, State University of New York 1400 Washington Ave. Albany, NY 12222 PH: (518) 442-4925 Email: damira&lt; at &gt;gmail.com 2011 TECHNICAL PROGRAM COMMITTEE Anil B. Somayaji, Carleton University, Canada; Boleslaw Szymanski, Rensselaer Polytechnic University; George Berg, University at Albany, State University of New York; Jeffrey Carr, GreyLogic; Gurpreet Dhillon, Virginia Commonwealth University; Ronald Dodge, United States Military Academy West Point; Hemantha Herath, Brock University; Hong C. Li, Intel Corporation; Martin Loeb, University of Maryland; Alvaro Ortigosa, Autonoma Universidad de Madrid; Billy Rios, Google, Inc.; S. S. Ravi, University at Albany, State University of New York; Raj Sharman, University at Buffalo, State University of New York; M.P. Gupta, Indian Institute of Technology, Delhi, India; Dipankar Dasgupta, University of Memphis; Daniel O. Rice, Technology Solutions Experts, Inc.; Stephen F. Bush, GE Global Research Center; Shambhu J. Upadhyaya, University at Buffalo, State University of New York; Teju Herath, Brock University; Stelios Sidiroglou-Douskos, MIT; Shiu-Kai Chin, Syracuse University; Sumita Mishra, Rochester Institute of Technology; Alvaro Ortigosa, Autonoma Universidad de Madrid ______________________________________ This email and its attachments may be confidential and are intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient of this email and its attachments, you must take no action based upon them, nor must you copy or show them to anyone. Please contact the sender if you believe you have received this email in error. </pre> Damira 2011-01-18T19:07:01 http://comments.gmane.org/gmane.comp.security.honeypots/3934 <pre>"First they ignore you, then they ridicule you, then they fight you, then you win." -- Mahatma Ghandi. Well if Fox's new comedy show "Breaking In" is any indication, infosec has now entered Ghandi's second stage. http://goo.gl/ZpLDp [youtube] (hat tip to Adam O'Donnell for this humorous find, and Sam Bowne for the quote/quip) But on a slightly more serious note. CanSecWest is nearing in the second week of March, and this year I've waited on sending out the CFP note/reminder. It's been up on the site for a while with a Dec 29 deadline, but this is the real last call for submissions. If you don't get them in by this weekend they won't make the selections review process next week. We'll try to announce the selections the week following. After 11 years, most of you should know the drill, but for those who haven't submitted or attended before, the fine print and usual further information is attached below. Other info: We are doing more dojo training courses  than ever this year (17!) and they will be up for registration next week. I've also confirmed with Aaron/TippingPoint/HP that we will again be holding PWN2OWN with both browser and mobile targets, so stand by for some announcements there. There will also be some other new experiments and conference goings on, some fascinating keynotes that have been invited, as well as some interesting new sponsors exhibiting new security wares that you'll see announced on the conference site in the coming weeks, but for now, get your talk proposals in so that our grumpy, cynical, and battle-scarred reviewers can complain about them, err, I mean provide informative feedback.;-) cheers, --dr (&lt; at &gt;dragosr) The usual CFP boilerplate info: Call For Papers    The CanSecWest 2011 CFP is now open.    Deadline is January 17th, 2011. CanSecWest CALL FOR PAPERS    VANCOUVER, Canada -- The twelfth annual CanSecWest applied technical    security conference - where the eminent figures in the international    security industry will get together share best practices and    technology - will be held in downtown Vancouver at the the Sheraton    Wall Centre on March 9-11, 2011. The most significant new discoveries    about computer network hack attacks and defenses, commercial security    solutions, and pragmatic real world security experience will be    presented in a series of informative tutorials.    The CanSecWest meeting provides international researchers a relaxed,    comfortable environment to learn from informative tutorials on key    developments in security technology, and to collaborate and socialize    with their peers in one of the world's most scenic cities - a short    drive away from one of North America's top skiing areas.    The CanSecWest conference will also feature the availability of the    Security Masters Dojo expert network security sensei instructors, and    their advanced, and intermediate, hands-on training courses -    featuring small class sizes and practical application exercises to    maximize information transfer.    We would like to announce the opportunity to submit papers, and/or    lightning talk proposals for selection by the CanSecWest technical    review committee. This year we will be doing one hour talks, and some    shorter talk sessions.    Please make your paper proposal submissions before January 17th,    2011.    Some invited papers have been confirmed, but a limited number of    speaking slots are still available. The conference is responsible for    travel and accommodations for the speakers. If you have a proposal for    a tutorial session then please make your submission  by emailing a    synopsis of the material and your biography, papers and, speaking    background to secwest11&lt; at &gt;cansecwest.com . Only slides will be needed    for the March paper deadline, full text does not have to be submitted - but    will be accepted if available. This year we will be opening  CanSecWest    presentation guidelines to include talks not in English (particularly    Chinese and Korean) which we will offer to translate for the speaker    if you are not a native English speaker.      The CanSecWest 2011 conference consists of tutorials on technical    details about current issues, innovative techniques and best practices    in the information security realm. The audiences are a multi-national    mix of professionals involved on a daily basis with security work:    security product vendors, programmers, security officers, and network    administrators. We give preference to technical details and new    education for a technical audience.    The conference itself is a single track series of presentations in a    lecture theater environment. The presentations offer speakers the    opportunity to showcase on-going research and collaborate with peers    while educating and highlighting advancements in security products and    techniques. The focus is on innovation, tutorials, and education    instead of product pitches. Some commercial content is tolerated, but    it needs to be backed up by a technical presenter - either giving a    valuable tutorial and best practices instruction or detailing    significant new technology in the products.    Paper proposals should consist of the following information:     1. Presenter, and geographical location (country of origin/passport)        and contact info (e-mail, postal address, phone, fax).     2. Employer and/or affiliations.     3. Brief biography, list of publications and papers.     4. Any significant presentation and educational        experience/background.     5. Topic synopsis, Proposed paper title, and a one paragraph        description.     6. Reason why this material is innovative or significant or an        important tutorial.     7. Optionally, any samples of prepared material or outlines ready.     8. Will you have full text available or only slides?     9. Language of preference for submission.    10. Please list any other publications or conferences where this        material has been or will be published/submitted.    Please include the plain text version of this information in your    email as well as any file, pdf, sxw, ppt, or html attachments.    Please forward the above information to secwest11&lt; at &gt;cansecwest.com    to be considered for placement on the speaker roster, or have your    lightning talk scheduled. If you contact anyone else at our    organization please ensure you also cc the submission address with    your proposal or else it may be omitted from the review process. </pre> Dragos Ruiu 2011-01-13T11:47:46 http://comments.gmane.org/gmane.comp.security.honeypots/3933 <pre>hello everybody, my honeyd process dies in irregular intervals. the pid/sock file still exists in /var/run. i got the following error in my /var/log/messages: --- Dec 6 13:11:25 pak kernel: [4025568.689145] honeyd[19804] general protection ip:7f7df4998d63 sp:7fffa6ae39e8 error:0 in libdumbnet.so.1.0.0[7f7df4993000+c000] Dec 6 13:11:25 pak kernel: [4025568.772168] device eth2 left promiscuous mode --- does anyone have suggestions how to solve this problem? regards marcel </pre> Marcel Keil 2011-01-08T08:29:11 http://comments.gmane.org/gmane.comp.security.honeypots/3932 <pre>nullcon Dwitiya (2.0) The Jugaad(hacking) Conference nullcon is an initiative by null - The open security community. Website: http://nullcon.net Calling all Jugaadus(hackers) It's the time of the year when we welcome research done by the community as paper submissions for nullcon. So, sip your coffee, dust your debuggers, fire your tools, challenge your grey cells and shoot us an email. Tracks: --------------- - Bakkar: 1 Hr Talks - Tez: 5-30 min Talks - Karyashala: 2-4 Hrs Workshop - Desi Jugaad (Local Hack): 1 Hr Submition Topics: ------------------------------ 1. One of the topics of interest to us is "Desi Jugaad"(Local Hack) and has a separate track of it's own. Submissions can be any kind of local hacks that you have worked on (hints: electronic/mechanical meters, automobile hacking, Hardware, mobile phones, lock-picking, bypassing procedures and processes, etc, Be creative :-D) 2. The topics pertaining to security and Hacking in the following domains(but not limited to) - Hardware (ex: RFID, Magnetic Strips, Card Readers, Mobile Devices, Electronic Devices) - Tools (open source) - Programming/Software Development - Networks - Information Warfare - Botnets, Malware - Web - New attack vectors - Mobile, VOIP and Telecom - VM - Cloud - Critical Infrastructure - Satellite - Wireless - Forensics - Cyber Laws Submission Format: ------------------------------ Email the cfp to: cfp(_at_)nullcon.net Subject should be: CFP Dwitiya &lt;Paper Title&gt; Email Body: - Name - Handle - Track &amp; Time required - Paper Title - Country of residence - Organization - Contact no. - Have you presented/submitted this talk at any other conference(s)? - Why do you think your paper is different/innovative? - Brief Profile ( &lt;= 500 Words) - Paper Abstract ( &lt;= 3000 Words) NOTE: The Abstract should clearly mention the techniques and hacks in detail and merely mentioning that it works will not help in understanding the research to it's full extent. Important Dates: ------------------------------ CFP End Date: 30th November 2010 Speakers List Online: 10th December 2010 Conference Dates: 25th - 26th February 2011 Venue: ---------------- Goa, India (Exact Venue TBD) Speaker Benifits: -------------------------------- For Tracks "Bakkar", "Desi Jugaad" and "Karyashala" 1. Free Accommodation for 3 nights 2. Travel (One way or Return depending on the Sponsorships :-) ) 3. Free access to the conference. 4. Invitation to Mehfil-E-Mausiqi (null party) For Track "Tez" 1. Free access to the conference. 2. Invitation to Mehfil-E-Mausiqi (null party) * Only one speaker will be eligible for the benfits in case there are two or more speakers for a talk. </pre> nullcon 2010-11-16T17:56:33 http://comments.gmane.org/gmane.comp.security.honeypots/3931 <pre>Good Day! As you already know, we have released 4 issues in 2010 and gained a lot of experiences working on them. For 2011, we have some great plans for our readers. Our main focus for next year is to publish more high quality articles and for that reason, we are now announcing a Call for Articles. =) TOPICS Topics of interest include, but are not limited to the following: * New Attack and Defense Techniques * Reverse Code Engineering * Network Security * Forensics and Incident Response * WLAN, GPS, HAM Radio, Satellite, RFID and Bluetooth Security * Cryptography * Hardware Hacking * Malware Analysis * Lock Picking / Physical Security HITB Magazine is a deep-knowledge technical magazine. Articles that are more technical or that discuss new and never before seen attack methods are of more interest than a subject that has been covered several times before. Please send your article to editorial&lt; at &gt;hackinthebox.org Submissions for issue #5 due no later than 3rd January 2011 --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2010-11-11T20:29:23 http://comments.gmane.org/gmane.comp.security.honeypots/3929 <pre>nullcon Dwitiya (2.0) The Jugaad(hacking) Conference nullcon is an initiative by null - The open security community. Website: http://nullcon.net Calling all Jugaadus(hackers) It's the time of the year when we welcome research done by the community as paper submissions for nullcon. So, sip your coffee, dust your debuggers, fire your tools, challenge your grey cells and shoot us an email. Tracks: --------------- - Bakkar: 1 Hr Talks - Tez: 5-30 min Talks - Karyashala: 2-4 Hrs Workshop - Desi Jugaad (Local Hack): 1 Hr Submition Topics: ------------------------------ 1. One of the topics of interest to us is "Desi Jugaad"(Local Hack) and has a separate track of it's own. Submissions can be any kind of local hacks that you have worked on (hints: electronic/mechanical meters, automobile hacking, Hardware, mobile phones, lock-picking, bypassing procedures and processes, etc, Be creative :-D) 2. The topics pertaining to security and Hacking in the following domains(but not limited to) - Hardware (ex: RFID, Magnetic Strips, Card Readers, Mobile Devices, Electronic Devices) - Tools (open source) - Programming/Software Development - Networks - Information Warfare - Botnets, Malware - Web - New attack vectors - Mobile, VOIP and Telecom - VM - Cloud - Critical Infrastructure - Satellite - Wireless - Forensics - Cyber Laws Submission Format: ------------------------------ Email the cfp to: cfp(_at_)nullcon.net Subject should be: CFP Dwitiya &lt;Paper Title&gt; Email Body: - Name - Handle - Track &amp; Time required - Paper Title - Country of residence - Organization - Contact no. - Have you presented/submitted this talk at any other conference(s)? - Why do you think your paper is different/innovative? - Brief Profile ( &lt;= 500 Words) - Paper Abstract ( &lt;= 3000 Words) NOTE: The Abstract should clearly mention the techniques and hacks in detail and merely mentioning that it works will not help in understanding the research to it's full extent. Important Dates: ------------------------------ CFP End Date: 30th November 2010 Speakers List Online: 10th December 2010 Conference Dates: 25th - 26th February 2011 Venue: ---------------- Goa, India (Exact Venue TBD) Speaker Benifits: -------------------------------- For Tracks "Bakkar", "Desi Jugaad" and "Karyashala" 1. Free Accommodation for 3 nights 2. Travel (One way or Return depending on the Sponsorships :-) ) 3. Free access to the conference. 4. Invitation to Mehfil-E-Mausiqi (null party) For Track "Tez" 1. Free access to the conference. 2. Invitation to Mehfil-E-Mausiqi (null party) * Only one speaker will be eligible for the benfits in case there are two or more speakers for a talk. </pre> nullcon 2010-09-01T13:41:44 http://comments.gmane.org/gmane.comp.security.honeypots/3928 <pre>Hack In The Box is proud to announce, a brand new lightning session called HITB SIGINT (Signal Intelligence/Interrupt)! HITB SIGINT sessions are designed to provide a quick 15 minute overview for material and research that's up and coming - stuff that isn't quite ready for the mainstream tracks of the conference but deserve a mention nonetheless. Final year students who want to present their projects to industry experts are also strongly encouraged to submit their papers. These sessions are held during the conference coffee and lunch breaks. The papers would be reviewed by the main CFP panel and student submissions will be reviewed by the HITB Team. The best research paper presented will be voted on by the audience. This session is strictly meant for research papers that are at least 50% COMPLETE at the time of submission. What you get: # Chance to present your research at an international conference # Chance to get your research seen and reviewed by industry experts # Full access to the conference on 13th-14th October 2010 worth MYR1299 # Best research as voted by the audience will be given ONE FREE training in HITB SecConf Malaysia 2011 # Best research will be uploaded to the HITB conference materials segment and mirrored through HITB affiliates / partners (Packetstorm, etc) Submissions are due 1st October 2010. For further details, please see: http://conference.hackinthebox.org/hitbsecconf2010kul/?page_id=961 --- Hafez Kamal HITB Crew Hack in The Box (M) Sdn. Bhd. Suite 26.3, Level 26, Menara IMC, No. 8 Jalan Sultan Ismail, 50250 Kuala Lumpur, Malaysia Tel: +603-20394724 Fax: +603-20318359 </pre> Hafez Kamal 2010-08-26T14:24:38 Search the mailing list at Gmane query http://search.gmane.org/?group=$group=gmane.comp.security.honeypots