Author Archives: Webmaster

Dominique Bongard

Dominique Bongard is the founder of 0xcite, a Swiss company focusing on security for mobile and embedded devices. His previous position, which lasted eight years, consisted of leading the Threat Intelligence team for Kudelski Nagravision. Advertisements

Posted in ASFWS 2014, Speakers | 1 Comment

Sébastien Gioria

Sébastien Gioria est consultant senior en Sécurité des Systèmes d’Informations au sein de la société Advens , Chapter Leader de l’OWASP pour la France (http://www.owasp.fr), membre du OWASP Global Education Committee et membre du CLUSIF (http://www.clusif.fr).

Posted in ASFWS 2014, Speakers | 2 Comments

Gianni Gnesa

Gianni Gnesa is a security researcher and professional trainer at Ptrace Security, a Swiss-based company that offers specialized IT security services to customers worldwide.

Posted in ASFWS 2014, Speakers | 1 Comment

Alexandre Herzog

Alexandre Herzog started his career in Information Technology in 1998 as an IT system administrator in the largest trading room in the Geneva region. Between 2004 and 2007 he attended the University of Applied Sciences Western Switzerland in Sierre.

Posted in ASFWS 2014, Speakers | 1 Comment

Ashar Javed

Ashar Javed is a research assistant in Ruhr University Bochum, Germany and working towards his PhD. He has been listed ten (`X`) times in Google Security Hall of Fame,

Posted in ASFWS 2014, Speakers | 2 Comments

Philipp Jovanovic

Philipp graduated in Mathematics and Computer Science at the University of Passau (Germany) in 2010. After that he started to pursue this PhD degree at the very same institution in January 2011.

Posted in ASFWS 2014, Speakers | 1 Comment

André Liechti

Early interested about electronics and computer sciences (he wrote his first application when he was 12 years old), André Liechti first graduates as an electronic engineer, before being a communication systems engineer.

Posted in ASFWS 2014, Speakers | 1 Comment

Yassine Mansri

Yassine Mansri est diplômé de l’haute école d’ingénierie et de gestion et du canton de Vaud, filière sécurité informatique.

Posted in ASFWS 2014, Speakers | 1 Comment

Exploiting Software Vulnerabilities on Windows 8

Over the past decade, Microsoft has added several security features to the Windows operating system in order to increase the cost of developing reliable exploits for attackers. Sadly, despite the tangible security improvements in the protection of their users, the … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

C++11 metaprogramming applied to software obfuscation

The C++ language and its siblings like C and Objective-C are ones of the most used languages today. Significant portions of operating systems like Windows, Linux, Mac OS X, iOS and Android are written in C and C++. There is … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

Obfuscator: Reloaded

La protection logicielle est un sujet qui prend de plus en plus d’importance, surtout depuis l’apparition de l’informatique ubiquitaire et mobile (smartphones, tablettes, etc.). L’implémentation de mesures efficaces contre le piratage et la modification illégale de logiciels induisent un coût … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

Warning Ahead: SecurityStorms are Brewing in Your JavaScript

JavaScript controls our lives – we use it to zoom in and out of a map, to automatically schedule doctor appointments and toplay online games. But have we ever properly considered thesecurity state of this scripting language? Before dismissing the … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

Mesures techniques de surveillance : qu’est-ce que permet le droit suisse ?

Depuis les révélations d’Edward Snowden, chacun s’inquiète de la protection de sa sphère privée et s’interroge sur les limites légales autorisant la surveillance et les moyens de défense du citoyen. Nous allons voir quels moyens de surveillance sont permis en … Continue reading

Posted in ASFWS 2014, Talks

NORX – A Parallel and Scalable Authenticated Encryption Algorithm and First Round Candidate in CAESAR

In this talk, we first present the current status of CAESAR, the Competition for Authenticated Encryption: Security, Applicability, and Robustness, which started officially on March 15, 2014. This contest aims to identify a portfolio of authenticated ciphers, i.e. cryptographic primitives … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

Creating a strong two factors authentication device for less than CHF 100.-

Nowadays, spywares, viruses and other hacking technologies (including bugs exploitation like Heartbleed) are regularly stolen passwords typed by users. By using a strong two factors authentication solution, the stolen passwords cannot be stored and used later anymore because each password … Continue reading

Posted in ASFWS 2014, Trainings | 1 Comment

Utiliser SonarQube pour les tests sécurité

SonarQube est un outil permettant de base de gérer la dette technique. Néanmoins, Il dispose de différents moyens permettant de “gérer” des indicateurs permettant d’effectuer une analyse de code statique orienté sécurité. Nous passerons en revue lors de cette présentation, … Continue reading

Posted in ASFWS 2014, Talks | 1 Comment

Secure Coding for Java

Le langage JAVA est très utilisé aujourdhui dans la majorité des applications développées par les entreprises. Malgré les tests déployés par les développeurs, les failles dans les applications sont plus que présentes. Cette formation permettra de regarder d’un point de … Continue reading

Posted in ASFWS 2014, Trainings | 2 Comments

Droid Application Hack & Smash

Over the past decade the numbers in the mobile arena are constantly on the rise. There is a upward trend in number of people using mobile phones, number of mobile phone manufacturers, types of operating systems, number of mobile applications … Continue reading

Posted in ASFWS 2014, Trainings | 1 Comment

Bertrand Mesot

Bertrand Mesot est ingénieur en informatique diplômé de l’EPFL et possède un doctorat en Machine Learning de la même école. Après ses études,il a conçu et développé la nouvelle version parallèle du logiciel Ophcrackpour le compte d’Objectif Sécurité.

Posted in ASFWS 2014, Speakers | 1 Comment

XSS & PHP: A Happily Married Couple

This hands-on training is designed for students who are interested in XSS and PHP, security-unaware developers who wish to secure their applications against XSS and at the same time pen-testers who want to find XSSes in an elite applications. I … Continue reading

Posted in ASFWS 2014, Trainings | 1 Comment

Understanding malwares

More and more incidents involving malicious softwares are happening every day and automated solutions analysing malware in sandboxes are on the market. Still, understanding these reports requires technical skills and understandings of how malware are working. On another hand, more … Continue reading

Posted in ASFWS 2014, Trainings | 1 Comment

Sylvain Métille

Sylvain Métille est Docteur en droit, avocat et chargé de cours à l’université. Une liste sélective de ses publications et conférences, ainsi qu’un bref CV sont disponibles ci-dessous.

Posted in ASFWS 2014, Speakers | 1 Comment

Samuel Neves

Samuel Neves graduated in Informatics Engineering from University of Coimbra in 2009, where he currently is also pursuing a PhD degree.

Posted in ASFWS 2014, Speakers | 1 Comment

Philippe Oechslin

Philippe Oechslin est consultant en sécurité informatique depuis quinze ans. Il est aussi chargé de cours à l’EPFL où il enseigne la sécurité informatique aux sections d’informatique et de systèmes de communication.

Posted in ASFWS 2014, Speakers | 1 Comment

Julien Rinaldini

Julien Rinaldini est un ingénieur titulaire d’un Master of Science HES-SO en informatique. Il travaille depuis février 2010 en qualité de collaborateur scientifique à l’institut ICT de la HEIG-VD.

Posted in ASFWS 2014, Speakers | 1 Comment