Talk

Information leakage happens whenever an application passes unauthorised information to the attacker. Developers, architects and designers of systems often forget this point when planning secure systems. The lecture describes different variants, explains how to find them and recommends possible countermeasures.

The libpcap is the basis of many different tools for monitoring, diagnosing and protecting networks. A bug in the implementation of the analysis of VLANs (802.1q) leads to these programs not receiving important network traffic. 

This presentation aims to show administrators, system administrators, operators and network technicians how to perform simple penetration tests themselves.

“The whole is greater than the sum of its parts” - SOA and Services

Can we assume that a SOA based system is secure if all services are tested for security? We think the answer is NO. So we will present in this talk additional security aspects which should be tested:

It sounds too tempting: You buy the best intrusion detection system on the market, have it installed and configured and then your network is protected. In this talk I explain why this is a fairy tale, what additional effort is required and why it can be worthwhile.

Buffer overflows are among the most common security vulnerabilities in current IT systems. An attempt is made to describe how they occur, how to suppress the direct consequences and what measures can be taken to protect the overall system. More details you can find here.

This presentation takes a critical look at various aspects that should be considered when introducing an intrusion detection or intrusion prevention system.

We are interested in the stress distribution in static granular matter. Experiments have found a minimum of the vertical normal stress beneath the apex of a sandpile.

Because of the indeterminacy of static friction force even in the simplest sandpile and the ensuing absence of a constitutive relation between stress and strain (Hooke's law) there is no closed set of equations. Continuum theories, trying to describe the "dip", have to make assumptions on the existence of constitutive relations among the components of the stress tensor itself.

Granular media conceal a very complex behaviour behind their apparent simplicity ("... is just sand"). Typical properties of granulates are, for example, the discrete structure and the inhomogeneity. This leads to the fact that backfills far away from thermal equilibrium can be very "stable" after all. The question now arises as to what consequences this has for the behaviour of sand accumulations.

We are interested in the stress distribution in static granular matter. Experiments have found a minimum of the vertical normal stress beneath the apex of a sandpile. Because of the indeterminacy of static friction force even in the simplest sandpile and the ensuing absence of a constitutive relation between stress and strain (Hooke's law) there is no closed set of equations.