Klaus-Peter Kossakowski: IT Incident Response Capabilities


Zur Person

Größere Projekte

IT Incident Response




FIRST Conference on Computer Security Incident Handling & Response 2000

Die Arbeit  |  Teams  |  Konferenzen  |  Bibliographie

2001 2000 1999
1998 1997 1996 1995 1994
1993 1992 1991 1990 1989


Chicago, IL, USA.


26. - 30. Juni 2000

 Tutorials (Erster Tag):

  • Marcus J. Ranum (Network Flight Recorder, USA) / Intrusion Detection and Network Forensic
  • Robert Graham (Network ICE, USA) / Firewalls: What am I seeing?
  • George Kurtz, Chris Prosise (Foundstone, USA) / Incident Response - A Practical Primer on Preparation Resolution

 Tutorials (Zweiter Tag):

  • Peter Sommer (London School of Economics & Political Science, UK) / Innovation and Legal Acceptability in Computer Forensic
  • Bruce Schneier (Counterpane Internet Security, USA) / Internet Cryptography

 Keynote Speakers:

  • Bruce Schneier (Counterpane Internet Security, USA) / Security Realities in the Age of E-Commerce
  • Joseph D'Angelo (Citibank, USA) / Welcome to the Golden Age of Information Security
  • Scott Charney (PriceWaterhouseCoopers, USA) / Sovereignty in a Borderless Internet

 Technical Session: IDS & Firewalls:

  • Paum Ramstedt (AT&T Labs, USA) / Intrusion Detection Technology Today and Tomorrow
  • Richard Bejtlich (US Air Force, USA) / Interpreting Network Traffic: A Network Intrusion Detector's Look
  • Ian Cook (Citigroup, UK) / Intrusion Detection in WinNT
  • Jake Hill (BT Laboratories, UK) / Using a Protocol Tunnel to Defeat a Firewall

 "Ask the Experts" (Panel):

  • Panelists from various teams

 Technical Session: Dealing with Black Hats:

  • Ron Moritz (Symantec Corporation, USA) / Protection Against Hostile Executables
  • Lance Spitzner (SUN Microsystems, USA) / Learning the Tools and the Tactics of the Enemy with Honeynets
  • Matthew Warren (Deakin University, Australia) / Retaliation Against Information Attacks: Attitudes and Practices of Australian Information Systems Managers

 Technical Session: Dealing with Incidents:

  • Qianli Zhang (Tsinghua University, China) / CCERT in Progress
  • Ken van Wyk (Para-Protect, USA) / Incident Response Tools

 Technical Session:

  • Mark Fischer (Crowe Chizek & Company, USA) / Secure Extranets: Principles and Lessons Learned
  • Katarina Auer, William Rice (Litton-TASC, USA) / Common Information Assurance Model
  • Lance Hayden (CISCO Systems, USA) / Operational versus Non-operational Network Vulnerability Assessments
  • William J. Cook (Winston & Strawn, USA) / Internet Law Update


© 1998-2001 by Klaus-Peter Kossakowski, Germany.