Security

The Security track is dedicated to both defensive and offensive Security and Free Software.

The Security track will host this year the following sessions :

  • "All you need is TRUST",
  • "In Security, open hardware you will use",
  • "Humble Topic on Telecommunication, Privacy and Security in 2015",
  • "CERT(ification) is not enough",
  • "(un)Secured Networks",
  • "Servers Security : everyone can dream ..." .

All talks will be in English in order to welcome non french speaking people at RMLL.

This year, the track is curated by Mathieu Blanc, Christophe Brocas and Philippe Teuwen.

Interviews :

  • interview with Fred Raynal aka pappy (Quarkslab) : here ,
  • interview with Thomas Chopitea aka tomchop (CERT SG) : ici ,
  • interview with François Marier (Mozilla) : here ,
  • interview with Xavier Mertens aka xme : here .

Keynote : surprise !

Speaker(s) : Frédéric Raynal aka pappy (Quarkslab)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Monday 6 July 2015
  • Schedule : 14:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbd0cfefg25os

Talk about Security, Free Software et surely some jokes ;-)... Read more

Open-source crypto

Speaker(s) : Jean-Philippe Aumasson aka veorq

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Monday 6 July 2015
  • Schedule : 14:40
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbcf1ffiow1n9

We’ll present some of the important FOSS cryptography libraries used by today’s systems, such as OpenSSL, libotr, NaCl, NSS, or mbed TLS. We’ll discuss their security and usability, how (not) to use them, and how to contribute to those projects.... Read more

Parse everything safely

Speaker(s) : Geoffroy Couprie

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Monday 6 July 2015
  • Schedule : 15:20
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbc7b5ev0fjdd

Numerous applications have security issues with parsing and handling data coming from file formats and network protocols.
How do you protect your code from such vulnerabilities? How to prevent coding errors? How to design a protocol to amke the developer’s life easier?... Read more

Reproducible builds in Debian and everywhere

Speaker(s) : Lunar (Debian)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Monday 6 July 2015
  • Schedule : 16:20
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3db528fcf0ch3p

Free software gives us the possibility to verify its behavior by looking at the source code. However, what we use most often are distributed binaries. How can we make sure they have actually been made from the source code they claim to be made from? When builds are “deterministic” or “reproducible”,... Read more

An Advanced Introduction to GnuPG

Speaker(s) : Neal Walfield (GnuPG)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Monday 6 July 2015
  • Schedule : 17:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dba139qt7jej1

There is more to encryption than generating an OpenPGP key and sending encrypted emails. In this talk, I will provide some tips on how to manage keys, how to improve your confidence that your mail is not being intercepted and some other neat tricks that GnuPG can do.... Read more

Open hardware for "physical" password attacks

Speaker(s) : Antoine Cervoise

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 09:20
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbceeftgfss1n

This talk is about hardware attacks against physical passwords like an UEFI password. At first, I showcase open hardware, open hardware in security and cracking passwords. Then, I highlight the different targets for hardware attacks against physical passwords (Android, MFP, Windows tablets, BIOS/UEF... Read more

CIRCLean - USB key sanitizer

Speaker(s) : Raphaël Vinot (CIRCLean / CIRCL)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 10:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbb180b28a57a

CIRCLean is a independent hardware solution to clean documents from untrusted (obtained) USB keys / USB sticks. The device converts automatically untrusted documents into a readable format and stores these clean files on a trusted (user owned) USB key/stick.
The code runs on a Raspberry Pi (a small ... Read more

Security and Privacy on the Web in 2015

Speaker(s) : François Marier (Mozilla)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 11:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b4370c2fmpeut77

In the last few years, a numb er of new security features have become available to web developers (e.g. Content Security Policy, Strict Transport Security) and a few more are coming up this year (e.g. Referrer Policy, Subresource Integrity). In addition to getting familiar with these, a number of re... Read more

OpenID Connect: a new SSO standard

Speaker(s) : Clément OUDOT (LemonLDAP-NG)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 11:40
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dba960eb8hmiv

OpenID Connect is a new Single Sign On protocol, built on top of OAuth 2.0. Led by OpenID fundation, he very different form OpenID 1.0 and OpenID 2.0, now marked as obsoletes.
This conference will let you discover this new standard, and will do some comparaison with other like SAML or CAS.... Read more

IRMA : Incident Response and Malware Analysis

Speaker(s) : Alexandre Quint Fernand Lone-Sang Guillaume Dedrie (IRMA)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 14:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dba9adchv0lfk

Effectively combating new threats has been a very hot issue for the last several years. Nowadays, many sophisticated attacks still manage to penetrate computers despite antivirus programs installed. This single product has become insufficient to keep a computer safe against increasingly savvy attack... Read more

FIR - Fast Incident Response

Speaker(s) : Thomas Chopitea (FIR / CERT SocGen)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 14:40
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbcbb03jpfd3g

This presentation will introduce FIR - our Fast (cybersecurity) Incident Response platform. We will talk about the motivations behind developing a piece of software that would specifically suit our day-to-day needs, see how FIR can make tracking your security incidents easier, showcase its capabilit... Read more

Damn-fast and effective malware info sharing with MISP

Speaker(s) : Christophe Vandeplas (MISP)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 15:20
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbac8behemjmu

Today a huge amount of information about malware, threats, campaigns and compromises is shared. Unfortunately it happens way too often over the same techniques the Neanderthals used: stone-carving, email, pdf-reports or even on paper.
The malware analyst then has the immense joy of heading to his be... Read more

Defensive security, largest archive of nothing

Speaker(s) : Éric Leblond (Suricata, Netfilter / Stamus Network)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 16:20
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbacd3m1jw6l4

SELKS is both a live and installable Network Security Management ISO based on Debian. It implements and focus on providing a complete and ready to use Suricata IDS/IPS ecosystem with its own graphic rule manager named Scirius. This talk will cover the usage of SELKS and scirius as well as the new fe... Read more

$HOME sweet $HOME

Speaker(s) : Xavier Mertens aka xme

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Tuesday 7 July 2015
  • Schedule : 17:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbefe9sg90cv5

With the rise of the mobile devices, the IOT ("Internet of Things") and all media devices, home networks become a critical environment for all the family members. If a common home network is based on a Internet connection with a "box" providing wireless & wired services, it is clear that there i... Read more

SSH Tips and Tricks

Speaker(s) : Axel Beckert (Debian)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Wednesday 8 July 2015
  • Schedule : 09:20
  • Duration : 40 minutes
  • Place : 202
SSH is an essential tool for Unix/Linux/BSD system administrators. But many SSH users only know about basic SSH functionality.
The talk will show beginners and intermediate SSH users what can be done with SSH besides logging into a remote server: Tunnel services, pull triggers, surfing from elsewher... Read more

Docker, containers, and security: state of the union

Speaker(s) : Jerome Petazzoni (Docker)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Wednesday 8 July 2015
  • Schedule : 10:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbcbc4l94eabm

Docker is two years old. While security has always been at the core of the questions revolving around Docker, the nature of those questions has changed. Last year, the main concern was "can I safely colocate containers
on the same machine?" and it elicited various responses, from Dan Walsh’s "... Read more

Forensic analysis on a Linux web server

Speaker(s) : Julien Reveret Mathieu Deous

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conférence
  • Date : Wednesday 8 July 2015
  • Schedule : 11:00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbc77cgs8v21a

How to perform a forensic analysis on a compromised web server.
What to search, where, how ? Logs but also dynamic analysis
What about privilege escalation ?
How has rootkit detection evolved ?... Read more

Workshop IRMA : Incident Response and Malware Analysis

Speaker(s) : Alexandre Quint Fernand Lone-Sang Guillaume Dedrie (IRMA)

  • Language : Anglais
  • Level : Confirmed
  • Nature : Atelier
  • Date : Wednesday 8 July 2015
  • Schedule : 14:00
  • Duration : 120 minutes
  • Place : 202
Effectively combating new threats has been a very hot issue for the last several years. Nowadays, many sophisticated attacks still manage to penetrate computers despite antivirus programs installed. This single product has become insufficient to keep a computer safe against increasingly savvy attack... Read more

WORKSHOP : Open hardware for "physical" password attacks

Speaker(s) : Antoine Cervoise

  • Language : Français
  • Level : Confirmed
  • Nature : Atelier
  • Date : Wednesday 8 July 2015
  • Schedule : 16:20
  • Duration : 120 minutes
  • Place : 202
... Read more