Now lets review some of the talks that I enjoyed. (Keep in mind that all of the presentation slide decks will be online soon at sans.org)
The summit was opened by Jason Haddix of HP. He did a keynote on Mobile Malfeasance. In this talk, Jason did a great job talking about dangerous mobile code. He explored the various ways that applications can do things badly and used the OWASP Mobile Top 10 as a guideline through the talk.
Tom Eston and I did a run through of the Social Zombies: Rise of the Mobile Dead. This talk was a fun run through of privacy and security issues in mobile applications and related systems.
Another great talk was by Lee Kim. She presented a very informative talk about Healthcare to Go. In it she went through a very deep exploration of mobile devices, security and HIPAA. She gave us a ton of information that anyone who is involved with a HIPAA covered entity and worried about how mobile devices and applications will affect what they need to do should go look at.
On day 2, Chris Crowley presented the SANS 8 Mobile Device Security Steps. He started the day with an informative presentation exploring the things that all organizations need to do to begin securing their mobile devices.
The final talk of day 2 was done by Brent Morris. He did his Authorized Personnel Only. This was a talk about BYOD and how organizations need to plan and prepare for the security issues It was a very detailed talk that was fun to attend as well as educational.
I can’t wait till next year and when the slides are put online, I recommend that you check them out!
Kevin Johnson is the CEO of Secure Ideas. If you are in need of a penetration test or other security consulting services you can contact him at firstname.lastname@example.org or visit the Secure Ideas – Professionally Evil site for services provided.