Cryptography Research Leads Five Speaking Sessions at RSA® Conference 2007
SAN FRANCISCO— (RSA Conference) – January 29, 2007—Cryptography Research, Inc. (CRI) today announced that company executives will lead five presentations throughout the week at the 16th Annual RSA Conference, February 5-9, at the Moscone Center in San Francisco.
CRI will lead a pre-conference one-day tutorial entitled “Securing Devices from Side-Channel Attacks: An Introduction to Timing Attacks, Simple Power Analysis (SPA) and Differential Power Analysis (DPA).” This workshop will examine timing attacks, simple power analysis and differential power analysis as security threats to smart cards and other tamper resistant devices. Details about this tutorial can be found in a separate press release issued by CRI today (see "Cryptography Research to Lead Workshop on Differential Power Analysis Attacks and Countermeasures at RSA Conference 2007").
Paul Kocher, president and chief-scientist at CRI will present “Failing Gracefully.” In this session, Kocher will describe design and engineering strategies for security systems where adequate defensive mechanisms are impractical or cannot ensure the absence of weaknesses. In the talk, he will explore the use of multiple security perimeters inside products, secure update capabilities and internal consistency checking methods to prevent operation in partially-exposed states.
Vice President of Technology Benjamin Jun will hold a session on “Security Remodeling: 10 Ways to Retrofit Transactional Systems.” The session will outline ten cost-effective security improvements that can be made in conjunction with other operational changes. Jun will teach practical methods for auditing application designs, protecting databases and improving transaction management.
Researcher Nate Lawson will discuss the quiet war that has raged between copy protection authors and crackers since the 1980s in his session entitled “The Copy Protection Wars: Analyzing Retro and Modern Schemes (C64 to Xbox).” Lawson will introduce the fundamental concept of asymmetry and show how schemes from Vorpal to SafeDisc achieve it and will also demonstrate attack strategies using an emulator and original Commodore drive.
Security Engineer Trevor Perrin will serve as the moderator on the panel entitled “Wireless Security: Built to Last.” This panel will discuss new threats to mobile security and examine wireless security strategies built to stand the test of time.
CRI Presentations at RSA:
Who: Benjamin Jun, vice president of technology
Ken Warren, smart card business manager
Josh Jaffe, research scientist
Trevor Perrin, security engineer
What: “Securing Devices from Side-Channel Attacks: An Introduction to Timing Attacks, SPA, and DPA”
When: Monday, February 5, 2007, at 9:00 a.m.
Where: Moscone Center, San Francisco - Burgundy Room 131
Requires advance registration: Register here »
Who: Paul Kocher, president and chief scientist
What: “Wireless Security: Built to Last”
When: Tuesday, February 6, 2007, at 1:30 p.m.
Where: Moscone Center, San Francisco - Gold Room 308
Who: Nate Lawson, researcher
What: “The Copy Protection Wars: Analyzing Retro and Modern Schemes (C64 to Xbox)”
When: Tuesday, February 6, 2007, at 3:00 p.m.
Where: Moscone Center, San Francisco - Green Room 104
Who: Paul Kocher, president and chief scientist
What: “Failing Gracefully”br>
When: Tuesday, February 6, 2007, at 5:40 p.m
Where: Moscone Center, San Francisco - Green Room 103
Who: Benjamin Jun, vice president of technology
What: “Security Remodeling: 10 Ways to Retrofit Transactional Systems”br>
When: Wednesday, February 7, 2007, at 8 a.m.
Where: Moscone Center, San Francisco - Gold Room 309
For more information about these events, please visit the RSA website.
About Paul Kocher, President and Chief Scientist
Paul Kocher is president and chief scientist of Cryptography Research, where he leads a research team that specializes in applying results from cryptography and computer science to solve real world security problems. His technical work includes co-authoring SSL v3.0, designing the DES Key Search machine Deep Crack and discovering Differential Power Analysis.
About Benjamin Jun, Vice President of Technology
Benjamin Jun oversees the services and technology groups at Cryptography Research. He has developed numerous widely deployed systems for the protection of financial transactions, consumer digital content and pay television.
About Nate Lawson, Researcher
Nate Lawson’s expertise is in network, platform and cryptographic security. He is the original developer of ISS's RealSecure technology and also contributes to the open-source FreeBSD (ACPI/power management, SCSI) and C64 Preservation projects.
About Ken Warren, Smart Card Business Manager
Ken Warren represents Cryptography Research in its activities in the smart card industry, including support of CRI’s DPA countermeasures licensing and validation programs. With over 12 years of smart card industry experience, Warren has held a variety of roles including responsibility for IC security at NatWest Bank and Mondex International, and most recently as Group Marketing Manager at Renesas Technology.
About Josh Jaffe, Research Scientist
Josh Jaffe is the top Differential Power Analysis (DPA) analyst at Cryptography Research. A co-author of the 1999 paper presenting DPA, Jaffe's recent research has focused on physical and mathematical security analysis of smart cards and other semiconductors, including contactless devices and tokens.
About Trevor Perrin, Security Engineer
Trevor Perrin is a security engineer at Cryptography Research. With a background in software engineering and applied cryptography, his recent work has focused on key management, side-channel attacks and content protection.
About Cryptography Research, Inc.
Cryptography Research, Inc. provides technology to solve complex security problems. In addition to security evaluation and applied engineering work, the company is actively involved in long-term research and technology licensing in areas including content protection, tamper resistance, network security and financial services. Security systems designed by Cryptography Research engineers protect more than $100 billion of commerce annually for wireless, telecommunications, financial, digital television and Internet industries. For additional information please visit www.cryptography.com.
About the RSA Conference
RSA® Conference is helping drive the information security agenda worldwide with annual industry events in the U.S., Europe and Japan. Throughout its 16 year history, RSA Conference has consistently attracted the world’s best and brightest in the field, creating opportunities for conference attendees to learn about IT security’s most important issues through first-hand interactions with peers, luminaries and emerging and established companies. As the IT security field continues to grow in importance and influence, RSA Conference plays an integral role in keeping security professionals across the globe connected and educated. RSA Conference 2007 will be held February 5-9 in San Francisco, California; April 25-26 in Tokyo, Japan; and October 22-24 at the ExCeL, London. For more information, visit www.rsaconference.com.
RSA, the RSA Conference logo and the RSA Security logo are registered trademarks of RSA Security Inc. All other marks are trademarks of their respective companies. © 2006–2007 RSA Security Inc. All rights reserved.