Press Releases
DR. HERBERT H. THOMPSON TO ADDRESS SOFTWARE SECURITY
AND DEVELOPMENT ISSUES AT SD
WEST 2006
Chief Security Strategist to Demonstrate Importance of Web
Application Security at
Leading Software Developer Conference
SD WEST CONFERENCE─SANTA CLARA, Calif.—March 7, 2006 -
Security Innovation, the independent authority on application
security development and assessment, today announced its Chief
Security Strategist Herbert H. Thompson, Ph.D., will be presenting
two sessions at SD WEST 2006 on application security and its place
in software development. Dr. Thompson will be presenting: “The
Software Vulnerability Guide: Uncut and Uncensored” and “Shred the
Specification: The Secrets of Security Testing” on March 13 and
March 15 respectively.
Thompson’s first presentation, “The Software Vulnerability Guide:
Uncut and Uncensored,” is a half-day tutorial that will discuss the
top 20 vulnerabilities in software today, along with a presentation
of methods for identifying these flaws, fixing the problems and
preventing these issues in their applications. Thompson will present
each vulnerability type to developers, illustrated through a live
exploit, followed by a look at the offending code and remediation
strategies for writing secure code.
Thompson’s second presentation, “Shred the Specification: The
Secrets of Security Testing,” is a 90-minute course designed to give
testers and developers the tools and techniques to help uncover
security problems before applications are released or compromised.
The content is based on Thompson’s first book on application
security testing titled, How to Break Software Security. It will
introduce a fault model to help testers conceptualize bugs and will
take participants through a set of software attacks that have proven
effective at exposing security bugs in some of the world's most
commonly used and critical applications. This will provide attendees
with a full arsenal of software attacks to uncover security
vulnerabilities in software before hackers can penetrate it.
Monday, March 13, 2006 from 1:30 p.m. — 5:00 p.m.
Who: Chief Security Strategist, Herbert Thompson, Ph.D.,
Security Innovation Inc.
What: “The Software Vulnerability Guide: Uncut and Uncensored”
Where: SD WEST 2006, Santa Clara Convention Center, Santa
Clara, Calif.
URL: https://www.cmpevents.com/SDw6/a.asp?option=G&V=3&id=263527
Wednesday, March 15, 2006 from 1:45 p.m. — 3:15 p.m.
Who: Chief Security Strategist Herbert Thompson, Ph.D.,
Security Innovation Inc.
What: “Shred the Specification: The Secrets of Security
Testing”
Where: SD WEST 2006, Santa Clara Convention Center, Santa
Clara, Calif.
URL: https://www.cmpevents.com/SDw6/a.asp?option=G&V=3&id=263527
“When a company discovers vulnerabilities in its software
post-development, it is exponentially more expensive to fix the
problem than it would have been at the start of the development
process,” said Dr. Thompson. “To design, build and deploy secure
applications, organizations must integrate security into each phase
of the application development life cycle―from the requirements
stage through deployment. That knowledge and practice, plus the
backing of key stakeholders in the business, are critical
ingredients toward making more security-savvy decisions in
application development.”
About Security Innovation
Security Innovation is the authority on application security and
leading independent provider of assessment and training services.
Dozens of leading organizations, including Adobe, Cisco, Fidelity,
Harris Corporation, IBM, ING, HP, Microsoft, VISA, SAP, Symantec,
VeriSign and a number of government agencies, rely on Security
Innovation’s expertise in application security testing and training
to develop, evaluate and deploy more secure applications. More than
60 percent of the Company’s staff holds advanced degrees in computer
science with 30 percent at the Ph.D. level. The Company is
headquartered in Wilmington, Mass., with offices in Amsterdam, The
Netherlands; Seattle, Wash.; and Melbourne, Fla. For more
information about Security Innovation, visit
www.securityinnovation.com or call +1.978.694.1008.
Contacts:
Davida Dinerman/Tom Bain
Schwartz Communications, Inc.
(781) 684-0770
sisecure@schwartz-pr.com
