III-"Tutorial on Information Security DiPole

Mobile Gadgets and Enterprises

"Honypots and Bluetooth a walk through" "

PART 1

Honeypots are security resource whose value lies in being probed, attacked, or compromised. They can be real operating systems or virtual environments mimicking production systems. Honeypots are often the best computer security-defense tool for the job.  Honeypots are currently in the second formal stage of development, known as GenII. GenII honeypots use inline IDSs to change outgoing malicious packets into harmless traffic and use keystroke-logging software built into the kernel.

 

Currently many enterprises are deploying Honypots in order to have an early detection alerts for attacks.  Even though there are many ethical concerns about honypots' deployments, it adds up a more strength to understanding the attacking profiles.  Several deployments are now aiming at Google Hack that is a new type of malicious web traffic.  It is designed to provide reconnaissance against attackers that use search engines as a hacking tool against your resources. GHH implements honeypot theory to provide additional security to your web presence.  The search engine that Google has implemented allows for searching on an immense amount of information. The Google index has swelled past 13 billion pages (in December 2005) and continues to grow daily. Mirroring the growth of the Google index, the spread of webbased applications such as message boards and remote administrative tools has resulted in an increase in the number of misconfigured and vulnerable web apps available on the Internet.

 

The speaker will provide a survey on honypots deployments and usage in enterprises.  Several aspects on the usage will be discussed during this walk through presentation.

 

PART 2

The Bluetooth wireless technology provides short range, wireless connectivity between common devices.  Different applications can be utilized using this technology based on spontaneous ad-hoc networks facilities.  The security requirements for Bluetooth applications varies based on the sensitivity of the information involved, the market, and the needs of the user.  There are some applications that do not require any security and others require extremely high levels of security.  The speaker is going to present a survey to the security flaws in the Bluetooth Technology implementation.  In addition to presenting part of the recent discoveries of security holes of the BT as a proof-of-concept.  He will raise the concern about the v.1.2 revised standards arguing that security standards might not be sufficient yet to present a trustable environment to carry out sensitive information processing.

Speaker's Biography

 

Khaled E. A. Negm, Ph.D., MIEEE, CISA, CISM, GIAC.  Dr. Negm has his B.Sc. in Honor Physics from Ain Shams University , Cairo-Egypt 1983, M. Sc. in theoretical Nuclear physics from University of Alberta Canada 1988, Ph. D. in Theoretical Elementary Particle Physics from Ain Shams University 1994.  Dr. Negm is a member of the Information Systems Security Association (ISSA)- USA and Information Systems Audit and Control Association (ISACA)- USA .  He is the Associate Chairman for the Security Standards Committee and Secretary for the Scientific Committee of the ISSA for the Middle East and Asia.  He is a member of the Technical Committee of Security Standards and TCCC of the IEEE, BT SIG and the USENIX group.

He is an Associate professor of computer Science, Physics department, Ain Shams University .  Currently he is on leave of absence as an Associate Professor in Etisalat University College , and Senior IT Security Consultant for UAE Telecommunication (ETISALAT) UAE since 2000.  For the last 10 years he have been involved in carrying out responsibilities for the Network Security Architecture, including the design, implementation, and administration of firewalls, Web servers, proxy servers, SecureID and other network security components for several Governmental Departments in the GCC Banks.  Dr. Negm has authored over 35 papers in refereed technical journals and international conferences.  He is a regular reviewer for Modeling and Simulation Journal, IEEE Security and Privacy and Computer Security Journal.

 

Currently he is interested in IPSEC, Wireless Security, IT Forensics and the AAA Wireless Problems.  Dr. Negm is an Certified IT Forensics Expert Field Witness under many legislative bodies as including Arab League.  Recently he joined the board of referees for hacking competitions held by hack-in-a-box events.

 

Submission Instructions

Authors are encouraged to submit high quality, original work that has neither appeared in, nor is under consideration by, other conferences/journals. Papers should be at most 6 pages (inclusive of figures, labels, etc.). Paper title should be in 14pt, section titles in 12pt, and text in 10pt, all typeset in Times New Roman font. Paper size should be set to A4 size, single spacing, and single column format, with all margins set to 20mm.  Paper should be sent in a compressed Word file to: secretary2007@icicis.net

Important Dates

December 15, 2006: Deadline for paper submission
January 15, 2007: Notification of acceptance
February 15, 2007: Camera-Ready paper
February 15, 2007: Author Registration