Free and open to all who wish to attend, but membership is only $10/year.
In the best of circumstances it is difficult to provide security in network applications. There are many different threats to computer systems from hackers, criminals, and disgruntled employees. Today's complex systems have inadequate security features and are difficult to maintain properly, with the result that simple configuration or operational errors result in vulnerabilities that can lead to the compromise of precious information assets. There are many products which claim to offer protection from some of these threats - Virus detectors, Firewalls, Public Key Cryptography, Secure Socket Layer, various "directory" services. Each may serve some purpose, but none offer protection against concerted (or lucky) attacks and mistakes.
In this talk we will discuss why these products and the approaches on which they are based are inadequate. We will talk about some technology that can offer better solutions to security concerns. We will conclude with a discussion of how several products we have developed using this technology can be used to construct secure business and Web based applications.
The Trusted Enterprise Systems (TES) products, a Trusted Web Server and a Trusted Gateway, can be used to provide secure applications on internal enterprise networks and interconnections between enterprise locations and among enterprises. These products have been designed and implemented to provide more functionality and more assurance than other products that are used in similar applications.
Rance DeLong is co-founder and Manager of the Trusted Systems Laboratory at Lockheed Martin Management and Data Systems Western Region in San Jose, CA. There, for the last two and a half years he has led research and development in trusted systems and high assurance systems. The products he will be discussing today are the result of an initiative to apply trusted systems technology to commercial IT challenges. In the late '70's and early '80's Mr. DeLong led the development of multi-level secure operating systems and formal methodology research at Ford Aerospace and Communications Corporation. He subsequently spent ten years serving in director-level roles at a variety of small companies and startups. For the five years preceding joining Lockheed Martin Mr. DeLong was a senior staff engineer in the Secure Software Engineering Department at Sun Microsystems. Mr. DeLong has degrees in Physics and Philosophy as well as graduate work in Computer Science.
George Dinolt is co-founder and Chief Scientist of the Trusted Systems Laboratory at Lockheed Martin Management and Data Systems Western Region in San Jose, CA. He has been involved in the development and deployment of secure systems for over 20 years, first at Ford Motor Co in Dearborn, MI, then at Ford Aerospace, Loral and now Lockheed. Dr. Dinolt developed a high assurance, highly secure IP packet switching network system in the first half of the 1980s, developed security architectures and designs for a number of complex systems and has done DoD funded research in computer security. He was a Program Chair for the IEEE Symposium on Security and Privacy, Research Track Chair for the NISSC conference, has been a member of the NSTAC panel on Security. Over the past 2 and a half years he has been the Chief Scientist of the Trusted System Lab where he has helped in the transition of high assurance and trusted systems techniques to the development of commercial products.
Here is a map to HP.