After a couple of months tinkering behind the scenes we can finally open our Call for Papers for DeepSec 2014! The upcoming DeepSec 2014 will be in November at our well-known conference hotel. We accept submissions as of now, and we are keen to hear your ideas. To give you some thoughts on what we are looking for: DeepSec 2014 is all about the Power of Knowledge!
The past years have shown that knowledge is a true „cyber“ weapon. Everyone recalling the endless discussions about full/responsible/no/delayed disclosure of bugs affecting the security of IT systems can relate to the power of knowledge. Other might not be so lucky and grasp what knowledge means when turned into exploits and compromised systems. This is why we want your contribution to DeepSec 2014 centred around knowledge. Let’s go totally „cyber“ with bits of information!
Information leaks is a good start. Knowing leaked credentials lead to security problems. Leaked crypto keys make your heart bleed and compromise encrypted communication. How can you obtain information? What needs to be done to prevent leaks? Secure communication channels are under constant attacks. How can you defend your data transmissions against the wolves in the middle?
Disclosure is another hot topic. What do you do if you know of a critical vulnerability? Do you name it and design a logo first? Do you tell the vendors and developers? When do you tell them? Do you tell them the whole story or only bits of it?
Defenders need to know what attackers are planning. The military calls this reconnaissance. It’s an essential part of most operations, and it’s basically all about gaining more knowledge. What needs to be done to improve your defence in terms of reconnaissance? We know that the IT security market has a ton of words for this (plus loads of products), but what do you actually do? Tell us how you distinguish the bad intel from the good bits.
Developers need to know what can happen to their precious code. Secure programming is all the fashion these days, but how is it done? Can you come up with ideas to boost the knowledge of coders? Do you know ways to test software used on production systems? Can you show how to break code and possibly suggest fixes for critical bugs? Let’s hear about it!
If you can answer at least one of these questions, then you have the power of knowledge. Congratulations! Share it with our audience. Don’t forget to submit your talk or workshop first!