Agenda

8:00 a.m. - 8:30 a.m.

8:30 a.m. - 10:00 a.m.

 Opening Session / Welcome

National Cyber Security Division, U.S. Department of Homeland Security / U.S. Department of Justice / InfraGard

Robert D. Jamison, Under Secretary for National Protection and Programs Directorate, U.S. Department of Homeland Security

Plenary Session 

Will There Be Any Security in a Web-Services World?

Dr. Whitfield Diffie, Vice President & Chief Security Officer, Sun Microsystems

MANAGEMENT TRACK

The Emperor's New Clothes: Is It Law or Is It Policy?

MANAGEMENT TRACK

The Trusted Internet Connection Initiative

 Randal Vickers, Associate Deputy Director, US-CERT

TECHNICAL TRACK

Implementing SCADA Security Solutions That Co-Exist and Support Mission Critical SCADA and Control Systems

Jonathan  Pollet, Vice President North American Operations, Industrial Defender, Inc.

TECHNICAL TRACK

Future Methods for Internet-Level Network Analysis

Derek Gabbard, Principle/Technology, Soteria Network Technologies

10:30 a.m. - 10:35 a.m.

10:35 a.m. - 11:00 a.m.

LAW ENFORCEMENT TRACK

CHIP Conference Welcome

Michael M. DuBose, Chief, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC

Opening Remarks

Mark Filip, Deputy Attorney General, U.S. Department of Justice, Washington, DC

(Closed Session: CHIPS ONLY)

LAW ENFORCEMENT TRACK

PDA, Cell Phone Data Convergence: Obtaining Evidence and Addressing Key Legal Issues

Stephen K. Brannon, Cybercrime Analyst, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC

Nathan Judish, Senior Counsel, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC

Mark Eckenwiler, Associate Director, Office of Enforcement Operations, Criminal Division, U.S. Department of Justice, Washington, DC

INCIDENT RESPONSE TRACK

Today's Threat Landscape and Crimeware's Modular Code

Dean Turner, Director, Global Intelligence Network, Symantec Corporation, Cupertino, California 

INCIDENT RESPONSE TRACK

Evolving Cyber Threat Creates Incident Management Challenges

Jeanie M. Larson, Federal Program Manager, U.S. Department of Energy

 Lunchtime Presentation

Real Experiences in Law Enforcement, Government, Military and Private Sector: The Trust and Relationships that Drive True Partnership - Panel

Dr. Kathleen Kiernan, CEO, Kiernan Group

Raymond F. Geoffroy, Assistant Deputy Commandant, Plans, Policies and Operations (Security) Headquarters, U.S. Marine Corps

William Casey, Deputy Superintendent, Boston Police Department and Commanding Officer of the Information Technology Division

Shawn Henry, Deputy Assistant Director, FBI Cyber Division

Michael Hershman, President, The Fairfax Group

Ronald Dick, Director, Homeland Security Programs, Computer Sciences Corporation

Sue Mencer, Policy Director, Brownstein Hyatt Farber & Schreck, LLP

Moderated by: Dr. Phyllis A. Schneck, Chairman, Board of Directors, InfraGard National Members Alliance and VP, Research Integration, Secure Computing Corporation

 MANAGEMENT TRACK

Public and Private Collaboration for Improved National Cyber Security

Peter Allor, Director of Intelligence, IBM Global Technology  Services, Internet Security Systems

 MANAGEMENT TRACK

Driving Security in Software

Elliot Glazer, Director of Security Architect, The Depository Trust & Clearing Corporation (DTCC)

 TECHNICAL TRACK

Today's Threats and Why They Are Evading Your Current Detection Infrastructures

 Amit Yoran, CEO, NetWitness Corporation

 TECHNICAL TRACK

 Using Logs for Incident Response and Forensics

  Dr. Anton Chuvakin, Chief Logging Evangelist, LogLogic

 LAW ENFORCEMENT TRACK

Lam on the Lam: How to Find, Arrest and Prosecute International Suppliers and Importers of Counterfeit Goods without Letting Them Get Away

Brian R. Hood, Assistant U.S. Attorney, Eastern District of Virginia, U.S. Department of Justice, Richmond, Virginia

John H. Zacharia, Trial Attorney, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC 

 LAW ENFORCEMENT TRACK

CAN-SPAM and Beyond: Perspectives from Recent Prosecutions - Panel

Thomas G. A. Brown, Assistant U.S. Attorney, Southern District of New York, U.S. Department of Justice, New York, New York

Terrance G. Berg, First Assistant U.S. Attorney, Eastern District of Michigan, U.S. Department of Justice, Detroit, Michigan

Mona S. Spivack, Trial Attorney, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC

Kathryn A. Warma, Assistant U.S. Attorney, Western District of Washington, U.S. Department of Justice, Seattle, Washington

Moderated by: Thomas Dukes, Trial Attorney, Computer Crime and Intellectual Property Section (CCIPS), Criminal Division, U.S. Department of Justice, Washington, DC

 INCIDENT RESPONSE TRACK

 Incident Response and Network Forensics: Avoiding Common IR Errors

Harold Stonebraker, Senior Security Analyst, CISSP, FireEye, Inc.

 INCIDENT RESPONSE TRACK

 Live Memory Acquisition and Analysis

Cal Waits, Member of the Technical Staff, CERT Coordination Center

 Afternoon Break

 MANAGEMENT TRACK

Understanding What Really Happens to Identities Following a Data Breach

Thomas Oscherwitz, Vice President of Government, ID Analytics, Inc.

 MANAGEMENT TRACK

The National Response Framework (NRF) - What Every Business Should Know

Robert Janusaitis, President, Business911 International, Inc.

 TECHNICAL TRACK

ActiveX Fuzzing with Dranzer: One Thousand Vulnerabilities Later

Will Dormann, Vulnerability Analyst, CERT Coordination Center

 TECHNICAL TRACK

 Network Artifact Analysis

Aaron Hackworth, Senior Member of Technical Staff, CERT Coordination Center

(Closed Session: Only Federal Employees and/ or Contractors)

 LAW ENFORCEMENT TRACK

Cracking the Iceman: A Case Study in Tackling Encryption and Other Problems Associated with Searching Sophisticated Targets

Matt Geiger, Forensic Specialist and Researcher, Computer Emergency Response Team Coordination Center (CERT), Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania

Rich Nolan, Technical Staff, Computer Emergency Response Team Coordination Center (CERT), Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania

Christian Roylo, Special Agent, U.S. Secret Service, U.S. Department of Homeland Security, Pittsburgh, Pennsylvania

Moderated by: Luke E. Dembosky, Assistant U.S. Attorney, Western District of Pennsylvania, U.S. Department of Justice, Pittsburgh, Pennsylvania 

 INCIDENT RESPONSE TRACK

Dramatically Accelerating Incident Response and Zero Day Exploit Identification

Edward Schwartz, Chief Security Officer, NetWitness Corporation

 INCIDENT RESPONSE TRACK

GPS Forensics

Malcolm Smith, Forensic Track Manager, Defense Cyber Investigations Training Academy