At a glance

Symposium name
Cyber Security Symposium for Professionals


Hashtag
#CyberSymposium


Dates/times
Wed, November 20th, 2019
10:00 to 15:00


Registration fee
US$550 (GBP £450) for bookings before October 20th, 2019

US$740 (GBP £600) for bookings after October 20th, 2019


Venue
University of London
Senate House
Malet St, London WC1E 7HU
United Kingdom

 

About this symposium

The University of Cambridge is a world-leading centre for research in computing, communications and security, and is one of the GCHQ-endorsed Academic Centres of Excellence in Cyber Security Research (ACE-CSR) in the UK.

It was at the University of Cambridge Computer Laboratory that the world’s first working stored-program computer, the EDSAC, was built in 1949, and that many other pioneering discoveries and inventions were made in such fields as cryptographic protocols, formal methods, hardware design, biometrics and distributed systems.

Cambridge Cyber, a company founded by Cambridge academics, will bring three security experts to the symposium, all of whom are current members of the ACE-CSR.

 In this symposium we shall focus on three topical issues in cyber security: how modern high speed peripherals might compromise a running system; a fascinating insider view on the activity of cyber criminals through a case study on airline ticket fraud; and what security engineers must understand about the psychological vulnerabilities of computer users that fraudsters will otherwise exploit.

Attendees will receive a certificate of attendance from Cambridge Cyber. 

Click here to make inquiries

 

The Grid Media is proud to bring together the Cyber Security Symposium for Professionals in London, United Kingdom.

May Khizam

Founder & Chief Strategist, The Grid Media Ltd

Keynote speakers 

Dr Theo Markettos
Keynote Speaker

Senior Research Associate
University of Cambridge Computer Laboratory

 

Dr Alice Hutchings
Keynote Speaker 

Lecturer
University of Cambridge
Computer Laboratory

Professor Frank Stajano
Keynote Speaker 

Professor
Security and Privacy
University of Cambridge
Computer Laboratory

Agenda

10:00 to 10:05
Opening
Prof. Frank Stajano

Professor of Security and Privacy
University of Cambridge
Computer Laboratory

 

10:05 to 11:05 (60 mins)
The Perils of Peripherals
Dr Theo Markettos

Senior Research Associate
University of Cambridge
Computer Laboratory

Keynote: Computing systems are increasingly composed from pluggable programmable hardware components. Dongles, docking stations, chargers and other peripherals are today programmable and interact with operating systems in complex ways.

Inside the case, peripheral devices such as network and graphics cards now have substantial computing power, which can be used against the host system. All these devices have a range of techniques to compromise a running system, including exfiltrating data and injecting arbitrary code.

In this talk we’ll discuss emerging threats from peripheral devices using interfaces such as USB, PCI Express and Thunderbolt, covering new developments such as the rise of USB Type-C and Thunderbolt 3. As well as understanding the attack vectors, we’ll consider how to use existing controls to defend against malicious peripherals, and where those defenses are lacking.

In particular we’ll talk about our recently-published Thunderclap attacks, and our work with Apple, Microsoft, Intel and others to improve operating system security.

 

11:05 to 11:20 (15 mins)
Morning coffee break

 

11:20 to 12:20 (60 mins)
Cybercrime in the Sky
Dr. Alice Hutchings

Lecturer
University of Cambridge
Computer Laboratory

Keynote: Every day, hundreds of people fly on airline tickets that have been obtained fraudulently, and much of this is facilitated by cybercrime.

I will explore the trade in these tickets, drawing on interviews with banks, airlines, and law enforcement, and an analysis of an online blackmarket. Tickets are purchased by complicit travellers or resellers from the online blackmarket. Victim travellers obtain tickets from fake travel agencies or malicious insiders.

Compromised credit cards used to be the main method to purchase tickets illegitimately. However, as fraud detection systems improved, offenders displaced to other methods, including compromised loyalty point accounts, phishing, and compromised business accounts.

In addition to complicit and victim travellers, fraudulently obtained tickets are used for transporting mules, and for trafficking and smuggling. I will identify the difficulties faced by law enforcement with identifying those who are complicit in this trade.

I will also outline potential interventions, aimed at the act, the actor, and the marketplace, with the goal of preventing and disrupting this crime type.

 

12:20 to 13:15 (55 mins)
Lunch

 

13:15 to 14:15 (60 mins)
Understanding Scam Victims: Seven Principles for Systems Security
Prof. Frank Stajano
Professor of Security and Privacy
University of Cambridge
Computer Laboratory

Keynote: The success of many attacks on computer systems can be traced back to the security engineers not understanding the psychology of the system users they meant to protect. We examined a variety of scams and short cons that were investigated, documented, and recreated for the BBC TV programme The Real Hustle and we extracted from them some general principles about the recurring behavioural patterns of victims that hustlers have learnt to exploit.

We argue that an understanding of these inherent human vulnerabilities, and the necessity of taking them into account during design rather than naively shifting the blame onto the gullible users, is a fundamental paradigm shift for the security engineer which, if adopted, will lead to stronger and more resilient systems security.

 

14:15 to 14:30 (15 mins)
Afternoon coffee break

14:30 to 15:00 (30 mins)
Closing
Prof. Frank Stajano
Professor of Security and Privacy
University of Cambridge
Computer Laboratory

Keynote speaker bios

Dr Theo Markettos
Senior Research Associate
Department of Computer Science and Technology University of Cambridge

Dr A. Theodore Markettos is a senior researcher in hardware security at the University of Cambridge.  He has broad experience of research and development in hardware and software, from device physics through FPGAs to operating systems.

Most recently his work on the Thunderclap vulnerabilities in Thunderbolt and PCI Express peripheral devices has received wide media attention, and has lead to security improvements in upcoming standards.

He holds MEng, MA and PhD degrees from the University of Cambridge.

 

Dr Alice Hutchings
Lecturer
Department of Computer Science and Technology University of Cambridge

Alice Hutchings is a University Lecturer in the Security Group at the Computer Laboratory, University of Cambridge.

She is also Deputy-Director of the Cambridge Cybercrime Centre, an interdisciplinary initiative combining expertise from computer science, criminology, and law.

Specialising in cybercrime, she bridges the gap between criminology and computer science.

Generally, her research interests include understanding cybercrime offenders, cybercrime events, and the prevention and disruption of online crime.

 

Professor Frank Stajano
Professor of Security and Privacy
Department of Computer Science and Technology
University of Cambridge

Frank Stajano is Full Professor of Security and Privacy at the University of Cambridge, where he is also the Head of the GCHQ-endorsed Academic Centre of Excellence in Cyber Security Research.

He holds a PhD from Cambridge and is a Fellow of Trinity College. His broad research goal is to make the digital society safe, secure and fair for non-geeks.

To address the skills shortage in cyber, he founded and hosted national (Inter-ACE) and international (C2C) cyber security competitions, the latter with MIT.

He has worked as a research scientist at Google, Toshiba, Oracle, AT&T and Olivetti. He is the CEO and co-founder of Cambridge Cyber, a security training and penetration testing consultancy.

A 4th dan in kendo, he practices and teaches the way of the Japanese sword.

 

Who should attend

This symposium is best suited to IT/compliance/risk managers, system architects, security officers, directors, policy setters, C-level executives and board members.

The Grid Media Ltd reserves the right to refuse registration if it deems that the prospective delegate represents a conflict of interest or is not relevant to the purpose of the symposium.

Similarly, The Grid Media Ltd will only issue invitation letters to prospective delegates from outside the United Kingdom once it has verified the name, title and organisation to which the delegate belongs. 

Important dates

GBP £450 for bookings before October 20th, 2019

GBP £600 for bookings after October 20th, 2019

 

Cyber Security Symposium for Professionals on November 20th, 2019

 

* For inquiries into private bookings for delegations, please contact The Grid Media Ltd

 

 

Venue

University of London, Senate House
Malet St, London WC1E 7HU
United Kingdom

Accommodation

The hotels below are in central London  and can be booked through the respective website of the hotel or through websites such as www.booking.com

  1. Holiday Inn (from GBP 220 per night) https://www.ihg.com/holidayinn/hotels/gb/en/london/lonrp/hoteldetail
  2. Astor Court Hotel (from GBP 149 per night) https://www.astorcourthotel.co.uk
  3. Hallam Hotel (from GBP 130 per night) http://www.hallamhotel.com/

We have listed these hotels as mere suggestions. We do not have any commercial relationships with the establishments listed.

Contact us

Register Now!

Hello.

When you register you will receive a confirmation email to print out or show digitally when you attend on the day.

Thank you.

Contact us

Sign up for alerts from us

Join our mailing list to receive the latest news and updates from our team.

You have Successfully Subscribed!