Press Releases
DR. HERBERT THOMPSON OF SECURITY INNOVATION
TO ADDRESS SOFTWARE VULNERABILITY AT TECH-ED 2006
Chief Security Strategist to Demonstrate Methods for Testing
and Evaluating Software Security
Wilmington, MA—June 6, 2006 - Security
Innovation, the independent authority on application security
development and assessment, today announced that its Chief Security
Strategist Herbert H. Thompson, Ph.D., will be presenting two
sessions at Tech-Ed 2006 on discovering and evaluating the business
impact of software vulnerabilities. Dr. Thompson will be presenting:
“A Manager’s Guide to Evaluating Enterprise Software for Security”
and “The Buzz About Fuzz: An Enhanced Approach to Finding Software
Vulnerabilities” on June 13 and 15 respectively.
Dr. Thompson’s first presentation, “A Manager’s Guide to Evaluating
Enterprise Software for Security,” will address methods by which
businesses are able to make discriminating choices with regard to
secure software. As security is one of the biggest costs associated
with owning a system, Dr. Thompson will offer guidance on how to
measure software security with a mind to selecting the “more secure”
solution. Drawing upon his experience testing software for Microsoft
and Linux, Dr. Thompson will confront the rumors and paradoxes of
software security and offer critical insight on evaluating
enterprise software for security.
Dr. Thompson’s second presentation, “The Buzz About Fuzz: An
Enhanced Approach to Finding Software Vulnerabilities,” will cover
fuzz testing as a means to provide a simple and painless way to trap
unforeseen errors that testers and developers may have overlooked.
This session will cover the basics of fuzz testing in practical
terms, and answer questions about fuzz testing practices, tools and
applications. Dr. Thomson will offer concrete examples where fuzz
testing has uncovered hard-to-find bugs, and will demonstrate how
the method has been used to provide metrics on software correctness.
Tuesday, June 13, 2006 from 2:45 p.m. - 4:00 p.m.
Who: Chief Security Strategist Herbert Thompson, Ph.D., Security
Innovation, Inc.
What: “A Manager’s Guide to Evaluating Enterprise Software for
Security”
Where: Room 258 ABC, Tech•Ed 2006, Boston Convention & Exhibition
Center
URL:
http://www.msteched.com/content/sessions.aspx
Thursday, June 15, 2006 from 8:00 a.m. - 9:15 a.m.
Who: Chief Security Strategist Herbert Thompson, Ph.D., Security
Innovation, Inc.
What: “The Buzz About Fuzz: An Enhanced Approach to Finding Software
Vulnerabilities”
Where: Room 107 ABC, Tech•Ed 2006, Boston Convention & Exhibition
Center
URL:
http://www.msteched.com/content/sessions.aspx
“In today’s business world, security is a primary concern, and
companies are taking steps to ensure that their software is as
secure as possible,” said Dr. Thompson. “Having a complete
understanding of the myriad testing and evaluation methods available
will allow these companies to better evaluate the security of their
software, and will enable them to make more security-savvy decisions
on software acquisition.”
About Security Innovation
Security Innovation is the authority on application security and
leading independent provider of assessment and training services.
Dozens of leading organizations, including Adobe, Cisco, Fidelity,
Harris Corporation, IBM, ING, HP, Microsoft, VISA, SAP, Symantec,
VeriSign and a number of government agencies, rely on Security
Innovation’s expertise in application security testing and training
to develop, evaluate and deploy more secure applications. More than
60 percent of the Company’s staff holds advanced degrees in computer
science with 30 percent at the Ph.D. level. The Company is
headquartered in Wilmington, Mass., with offices in Amsterdam, The
Netherlands; Seattle, Wash.; and Melbourne, Fla. For more
information about Security Innovation, visit
www.securityinnovation.com or call +1.978.694.1008.
Contacts:
Davida Dinerman
Schwartz Communications, Inc.
(781) 684-0770
sisecure@schwartz-pr.com
