Mobile Security Developments

Join us Thursday, February 13 at TNO offices in Delft and evaluate European research results on Mobile Security,
the state of Mobile Malware, How they listened in on Angela’s Nokia, secure corporate access for Mobile Devices,
and more….with speakers from Cisco, LSEC, TNO, ITSX, and more to be confirmed.

Attendance is free of charge upon prior registration.

In 2013, mobile computing causes ongoing concern for CIOs and CISOs everywhere, dealing with the introduction of new smartphones and tablets, sensitive corporate information stored on employee- devices, and an explosive business demand for mobile applications. In this era of hyper connectivity, all devices are connected, from cars to refrigerators to all kinds of consumer electronics, allowing existing vulnerabilities to be exploited in multiple ways. But…..Mobility also provides a unique opportunity for genuine business innovation in these pressed economic times.
Ceasing the opportunity, delivering on the agility required by business and addressing the risks that are associated seems to be the ultimate challenge. LSEC & TNO invite you to examine what exactly those risks are and evaluate some of the recommended counter measures and controls.

Agenda:

13.00 h: Registration, Sandwich Lunch

13.30 h: Introduction by Ulrich Seldeslachts, CEO LSEC
A wider perspective security in mobile, the challenges today and challenges ahead. From the FIRE project, LSEC has investigated the ongoing developments of mobile security research activities and current challenges towards security on mobile. An enlightening view, putting some perspective in the day to day considerations of smartphone, tablet and other mobile devices challenges.

13.40 h: The state of Mobile Malware: Frank Fransen, TNO
The last decade threat predictions for the following year always included mobile malware. Moreover, 2013 has been called “the year of mobile malware”. But how real is the mobile malware threat? In this talk, we will give an overview of the state of mobile malware, the risks to end-users and to mobile network operators. Finally, we will discuss some of the countermeasures to protect against the threat of mobile malware.
Frank Fransen: Frank is a senior scientist in the Information Security group of TNO. His work at TNO involves study of emerging security technologies, security of mobile communication systems, cyber security of smart energy grid. Frank has been involved in several European projects. He was among others work package leader in FP6 project MOSQUITO. Frank actively participates in 3GPP SA3 on standardisation of mobile network security and in the Dutch counterpart of ISO JTC1 SC27 on IT security techniques (e.g. ISO/IEC 27001).

14.20 h: How did they listen in on Angela’s Nokia? Securing Mobile Communications, WiFi, and apps on mobile devices: Ralph Moonen, CEO of ITSX
In this short presentation, Ralph will provide an overview of the current state of the art in securing and hacking mobile 2/3/4G communication. How easy is it to eavesdrop GSM traffic, and how can the US listen in on Merkel's Nokia from the roof of their embassy. Could we do the same? Or is it maybe even possible for a hobbyist? Also, Ralph takes a look at the security of WiFi and apps on mobile devices. The latest results from the research by Karsten Nohol will be reviewed, and Ralph will also cover his own experiences with hacking a femtocell to eavesdrop on 3G voice calls.
Ralph Moonen: Ralph is director of ITSX and security researcher. Ralph recently gave workshops Mobile Security in Kuala Lumpur and Abu Dhabi, and reverse engineered the security of several mobile banking apps. His primary interests are cryptography and security large scale networks against eavesdropping and snooping.

15.00 h: Coffee Break

15.30 h: Securing corporate access for mobile devices, Ronny Guillaume, Cisco
Being one of the largest install bases of corporate networking equipment, Cisco has a number of different components that can serve to improve security on mobile. With an operational Cisco network, the Cisco Identity Services Engine could be an interesting way to identify access. But there could be more. Maybe considering software defined networks to improve mobile security?
Ronny Guillaume : Ronny has over 10 years of security expertise in a wide variety of areas in general and Cisco Security in specific. Prior to Cisco, Ronny worked with Juniper, Bluecoat, Infoblox, Vasco. Starting as an Engineer, Ronny further developed in the security field in roles such as Technical Consultant, Manager of the security group and Security Architect. With a lot of field expertise and practical knowledge, Ronny has a deep understanding on how to build and apply security from the ground up.

16.00h: To be confirmed

16.30 h: Panel Discussion
16.50 h: Closing notes
17.00 h: Reception & networking
18.00 h: End of seminar

More information at: www.lsec.be