(ISC)� SF Chapter Meeting on Cryptography

When

Thursday November 7, 2013 from 6:00 PM to 9:00 PM PST

Add to Calendar

Where

TBD

San Francisco, CA

More Information...

Cost:
SF Chapter Members: $15
Guests/Non-members: $25
Registration fee is non-refundable
2 CPE's earned - 2 group A CPE's will be credited for the presentation and for networking with your peers. We will provide certificates at the end of the meeting.
Attendance fee includes food, beverages (wine, beer, and soda) and admission.
Parking - There are many parking garages in the vicinity and street parking may be available. Bart exit at Montgomery St. Station.
We will hold a raffle - bring your business cards.
You can print your registration in the form of an event ticket!

Preliminary Agenda

6:00 - 6:30pm ~ Registration & Networking

6:30 - 6:45pm ~ Officer Reports

6:45 - 7:00pm ~ Defcon Debriefing

7:00 - 8:00pm ~ Josh Yavor

8:00pm - 8:45pm ~ Round Table & open discussion

8:45pm - 9:00pm ~ Raffle Prizes

**Payment via PayPal: if you have a PayPal account use your PayPal ID to check out, if not, click on the link that says "Don't Have a Paypal Account?" and enter your credit card details. PayPal adheres to PCI-DSS 2.0 practices for protecting cardholder data.

Who we are...

(ISC)²San Francisco Chapter is a not-for-profit organization that has received its charter as the first and official San Francisco Area Chapter (San Francisco, San Mateo, Marin and Sonoma Counties).

(ISC)² is the global leader in educating and certifying information security professionals throughout their careers.

Visit our website to learn more:

https://www.isc2-Sf-chapter.org

Pizza

Salad

Beer

Wine

Soft Drinks

Water

Contact

Events at (ISC)² San Francisco
(ISC)² San Francisco Chapter
(415) 602-3751
info@isc2-sf-chapter.org

Join the (ISC)² San Francisco Chapter November 7th at Location TBD
Featuring a Presentation on

Cryptography

Also, featuring a round table discussion on current topics related to Cryptography

Guest Speaker - Josh Yavor

Presenting:

BYOD PEAP Show

The onslaught of Bring Your Own Device(s) in recent years places a new focus on the security of wireless networks. In "The BYOD PEAP Show", Josh Yavor explores fundamental flaws in one of the most common and widely supported 802.1x authentication protocols used by countless corporate WPA2-Enterprise networks today. A series of events in the recent past created a situation in which PEAP can no longer be used safely. In this talk, we will re-trace this path and investigate how the combination of BYOD, new technology and new tools led to this situation. A live demonstration with audience participation will punctuate the danger of supporting PEAP. Attendees will leave with an understanding of the underlying flaws, methods of exploitation, a set of tools and most importantly, how to secure WPA2-Enterprise networks that currently support PEAP. A new tool, peapshow, will be released after DEF CON and will make testing and exploitation of this issue truly trivial.

BIOGRAPHY

Josh Yavor is a Senior Security Engineer at iSEC Partners, an information security consulting firm specializing in application, network, and mobile security. At iSEC, Josh specializes in web application security and network penetration testing. He holds a MS in Computer, Information and Network Security from DePaul University where he focused on network security while also developing an interest in incident response and SCADA/ICS systems.

An active participant in research at iSEC, Josh's public projects include "The BYOD PEAP Show" presented at DEF CON 21 and "The Outer Limits: Hacking the SmartTV" presented at Black Hat USA 2013. Josh will also present an updated version of "The BYOD PEAP Show" at Ruxcon in late October.

Defcon Debriefing

Sam Mughal

Our own Chapter Treasurer Sam Mughal will provide a debriefing of his recent attendance to DefCon 2013. This should be an interesting presentation you don't want to miss!

Round Table Discussion

This month, we will be continuing our series on our round table discussion opening the floor to all those wishing to comment on current events of the day. We'll present at least two (and possibly three) topics to the group and invite any and all who wish to participate the floor for commentary, analysis and debate.

This activity is designed to stimulate discussion involving hot topics in the news. This is an opportunity to focus on the issue, analyze the situation and the threat, and offer suggestions and potential solutions to the problem.

Does encryption have a future?

Report: NSA Has Broken Most Internet Encryption Technologies

What is going to be done about it?

Internet experts want security revamp after NSA revelations