Organisation:
In cooperation with Latin American CSIRTs and sponsored by:
Supported by:
The first measure for adequately managing information security is to define an Information Security Policy, as a formal statement of the rule that have to be followed for handling information, disregarding its representation or location. In this presentation, ArCERT will show the actions taken by the Argentinean Government since 2003 with regard to mandatory Information Security Policies in the Public Sector.
Presenter
![[AR]](../../../_icons/paises/ar.gif){kind=icon}
has been a security consultant at ArCERT, the Computer Emergency Response Team of the Argentine Public Administration, since 1999. His primary functions are helping Argentina's Federal agencies in preventing, detecting and handling security incidents.
He also handles incidents related to cases of phishing, botnets, etc. in the whole country. His expertise includes: Incident Response, Network Monitoring, Intrusion Detection, Vulnerability Assessment, Honeypot deployment, etc. Rodolfo teaches Information Security at the University of Buenos Aires.
Presence of Police Task Force in the incident response context. The Brazilian Federal Police actions on combat to phishing. The actions made by other Brazilian Police. Chalenges on Computational Forensic. The effects of low security standarts related to the
investigation work. A keyloger demonstration.
Presenter
![[BR]](../../../_icons/paises/br.gif){kind=icon}
Federal Criminal Expert, specialized on Cybercrimes. Graduated on Computer Science on UFRGS. Instructor of Brazilian National Academy of Police, teaching classes related to crime and Cybercrimes. Speaker of several events related to Internet security.
How are deployed the Distributed Denial of Service attacks nowadays? What is impact to the ISPs infrastructure? How are the ISPs prepared to cope with those issues? For the second year in a row, Arbor has performed an research among the main ISPs in the world to find out about those questions and more. This presentation will share those findings and also discussing some of the technologies available to cope with those challenges.
Presenter
![[US]](../../../_icons/paises/us.gif){kind=icon}
Responsible for Consulting Engineering for Latin America and the Caribbean
(CALA) at Arbor Networks, Ewerton was one of the pioneers in the LAN industry in Brazil as a founding partner of one of the first networking companies, Eden, in 1985. He then founded Netwyse, a systems integrator and authorized training center that was one of the main partners for Novell and Microsoft in Brazil. In 2000 Ewerton joined Alteon, an startup focused in L4-L7 switching which was acquired by Nortel. Initially focused on the Alteon portfolio at Nortel, he later became responsible for the Data products portfolio for Nortel in the CALA region.
Presenter
Graduated in Law, specialized in International Trade Law in Faculdade de Direito de Curitiba, with extension in Internet Law at Berkman Center, Harvard Law School, EUA, Omar Kaminski is the internet director of Brazilian Institute for Politics and Cyberlaw (IBDI), substitute member of Brazilian Internet Steering Committee (CGI.br), representing the cientific and tech communities, and coordinator of the Law and IT Taskforce (GT-Info) for the Brazilian BAR Association, Paraná's Section (OAB/PR).
Presenter
![[GB]](../../../_icons/paises/gb.gif){kind=icon}
Chris Gibson has worked in incident response for a number of years at Citigroup and now runs the Forensic Labs globally (London, New York, Singapore and Mexico). These labs use advanced forensic tools and methodologies to support both the incident response process and internal investigations. Prior to this Chris worked in information security evaluating security software, writing secure configuration guides and providing internal consulting advice to various businesses within Citigroup. Before this he spent his time installing and upgrading banking systems across Eastern Europe.
Chris is also a member of the Steering Committee of FIRST (Forum of Incident Response and Security Teams - http://www.first.org), the premier organization and recognized global leader in incident response.
Presenter
![[ES]](../../../_icons/paises/es.gif){kind=icon}
Francisco "Paco" Monserrat is the Security Coordinator of RedIRIS (the Spanish Academic and Research Network) and he is a FIRST member since 1997. During the last few years, he has worked actively on the TF-CSIRT, iniromoting the cooperation among CSIRTs in Europe.
Paco has spoken on various conferences and his activities focus on Forense Analysis, criptography and Computer Security Incidents Response Teams.
Presenter
Marcelo Chaves is a Security Analyst at CERT.br since 2002. He has a degree in Computer Science, and a Masters in Applied Computing, focused on network security, by the National Institute for Space Research (INPE). Marcelo works with incident handling and with the development of tools, based on honeypots and honeynets, to better understand current attack trends, correlating this data with incidents reported to CERT.br. He also works with online fraud analysis in the Brazilian Internet, based on tools developed by CERT.br team. Marcelo has been a speaker in several national and international events, talking about many different information security topics, including incident handling, honeypots, honeynets, and online fraud.
The SANS Internet Storm Center (ISC) is the trusted source to refer to for advice while under fire from attacks. Using immediate and unfiltered information sharing and analysis provided by our handler team, the ISC is able to provide timely information to information security practitioners. This talk will outline the inner workings of the ISC. You will learn how information is shared and how the group of volunteer incident handlers are able to assess, analyze and counter threats of global scale. In this presentation, you will be also updated with some new and recent threats.
Presenter
Pedro Bueno was the coordinator of the CSIRT at one of the Brazil's largest Telecom companies and is currently a Anti-Virus Research Engineer at McAfee AvertLabs. He is one of the handlers at the SANS Institute's Internet Storm Center, where he deals daily with cutting edge security issues and authored a series of the Malware Analysis Quizes. He is also a member of The SANS Top 20 Internet Security Vulnerabilities expert's Team for about 5 years.
Presenters
Francisco "Paco" Monserrat is the Security Coordinator of RedIRIS (the Spanish Academic and Research Network) and he is a FIRST member since 1997. During the last few years, he has worked actively on the TF-CSIRT, iniromoting the cooperation among CSIRTs in Europe.
Paco has spoken on various conferences and his activities focus on Forense Analysis, criptography and Computer Security Incidents Response Teams.
Guilherme Vênere has a BsC in Computer Science at Universidade Federal de São Carlos. With 11 years of experience in system administration and security, he's security analyst at CAIS/RNP (Brazilian Research Network Security and Incident Response Team) for the last 3 years. He's also a FIRST member, and instructor of computer forensics classes in Brazilian and international conferences. He has GCFA and BS-7799 certification. He is currently working on an attack and infection detection system for RNP backbone.
This presentation will talk about WSIS and eLAC 2007 documents, as well as various documents that Latin America States signed in the last year related to Security, and what tendencies these agreement and compromises present. Also it will be analyse to what extend these agreements developed inside these countries. The Security Policies are not only generated by the players involved in this matter, but also by policy design sphere that do not have contact with the base. Neverthless, it's necessary to generate mechanisms to coordinate both spheres, without missing sight that those policies are in focus of Information Society policy.
Presenter
![[PE]](../../../_icons/paises/pe.gif){kind=icon}
Executive Director of Alfa-Redi. Web Editor of LatinoamerICANN project about Internet Governance in Latin America. Member and vice-chair of ICANN's Latin America At-Large Consulting Comitee. Member of Internet Governance Forum (IGF) – MAG, a team created to support the United Nation's secretary in IGF. Founding member of Peruvian Cyber Court and the Peruvian Association of Computer Laws. Information Society Regulation's assessor of Regional Office of Communication and Information for UNESCO in Latin America. Director of AR:RDI (Alfa-Redi: Computer Laws Magazine). Was a legal assessor of .pe Domain Names Administration (ccTLD.pe). Goal 25's coordinator of Plan eLAC.
Since the begining of its activities on 2004, december, the CTIR - Incidents Tratment Center of Brazilian Federal Government Networks - has experienced diferent estimulations to increase the contact with the networks on its constituency. Considering the human questions several times imposing over technologies, this presentation
highlights ways of interactions that can support the sharing of data related to security incidents.
Presenter
Brazilian Federal Criminal Expert, Master on Computer Science from Brasilia Univesity, nowadays works as Coordinator of Center of Treatment of Incidents on Brazilian Federal Government Networks.
This presentation will cover the planning, considerations, instalation and support of DEFCON wireless network. Will be included some data about wlan networks of other big security conferences, like Black Hat in United States and Computer Chaos Congress in Germany, where Aruba Networks also provided the network infrastrucure.
Presenter
Luiz Eduardo dos Santos, CISSP, CEH, CWNE#24, is expert in many technologies of corporate networks and service providers. Currently, Luiz works with WLAN network security, is the person responsible for Aruba Network technical department in Latin America and also is in charge of responding to incidents reported to WSIRT. He is frequently talking in security conferences in Brasil and United States.