A+ A A-

ITBN 2016 - 2. nap - 2016-09-28

Cím: Hackers! Do we shoot or do we hug? (EN)
Title: Hackers! Do we shoot or do we hug? (EN)
Előadó: Edwin van Andel aka @Yafsec
Időpont: 15:30 - 16:10
Helyszín: G300 --- 2. szint
Az előadás videója:
Az előadásról
About the presentation
In the ever changing security landscape we are seeing a shift from labeling hackers per default as 'bad and malicious individuals', to accepting them slowly as 'useful and potentially friendly’. We see more and more compagnies starting a bug bounty program and/or a Responsible Disclosure (Coordinated Vulnerability Disclosure) program. We in te Netherlands are (at least in Europe) leading the pack on this last subject, also backed heavily by the Dutch NCSC, the Dutch government and the Dutch prosecution services with their Responsible Disclosure guideline. In this interactive and mostly humorous talk I’ll start with defining security (in a grotesk way), followed bij the definition of hackers, the way hackers think and work, and how they can be used instead of feared by compagnies. I’ll show how bug bounties and the Responsible Disclosure processes work, and how they sometimes do not. I will also take the audience with me on some examples on how and why some websites fail in being secure, and the simple (or hard - depending on the audience) development errors behind those fails. During the talk I interact a lot with the audience, do quiz questions about the subject, and reward good answers with a bottle of club-mate. At the end of the talk the combined audience consensus should of course be to hug the hackers!
Az előadóról
About the presenter
Edwin was born on a late november day in the excellent wine year 1970 and immediately started pushing buttons from his crib. After - as his lawyer told him to formulate it - ""Examining information and structures available on a bunch of open systems,"" he eventually was hired by a large IT distributor. There he quickly became 'that' senior consultant with a risk tag, and for safety reasons was put mainly on long-term projects abroad. In 2003 he started his own company called Yafsec, with the sole purpose of guiding companies and IT dealers through the dark woods of the ever evolving security forrest. As of 2016 he joined Zerocopter, where he's mostly working on pubicly expanding their “continuous security” platform.