Invited Talk by Vincenzo Iozzo
Director of Security Engineering, Trail of Bits (USA)
Title: From One Ivory Tower to Another: Wish Listing for Filling the Gaps in Information (In)Security
Time: Tuesday, Nov 5th, 2013 at 11 am in Room B07-B08
Abstract: Information Security research has become more and more sophisticated throughout the years with millions of dollars being invested into it, and yet we still cannot protect ourselves against threats and attacks that have been known for more than a decade. On top of that, there’s very little collaboration between academia and industry on research topics where both sides could benefit from a more engaged relationship between the parts. The talk aims at asking Basic questions and providing biased answers on the future of application security research and the relationship between academia and industry moving forward: What problems are worth solving together? What areas seem dead-ends? How do we foster collaboration? What’s at stake here?
Bio: Vincenzo Iozzo directs security engineering efforts at Trail of Bits. Prior to Trail of Bits, Vincenzo founded Tiqad, an information security consulting firm, worked as a penetration tester for Secure Network srl and was a reverse engineer for Zynamics GmbH. His specialized research in Mac OS X security, smartphone exploitation, and exploit payloads has been presented at information security conferences around the world including Black Hat, CanSecWest and Microsoft BlueHat. In 2008, he was selected to participate in the Google Summer of Code and developed a testing infrastructure for TrustedBSD, the Mandatory Access Control system that became the foundation for sandboxing technologies included in Mac OS X. Vincenzo serves as a committee member on the Black Hat Review Board and is a co-author of the “iOS Hacker’s Handbook” (Wiley, 2012). He is perhaps best known for his participation in Pwn2Own, where he co-wrote the exploits for BlackBerryOS and iOS that won the contest in 2010 and 2011 and where he co-wrote exploits for Firefox, Internet Explorer, and Safari that placed second in 2012.