SPEAKERS

Davide Balzarotti

Davide Balzarotti, is an Assistant Professor at EURECOM, where he is leading (together with Aurélien Francillon) the software and system security group. His research interests include most aspects of system security and in particular the areas of intrusion detection and prevention, binary and malware analysis, reverse engineering, and web security. Davide co-authored more than 60 international publications and he regularly serves as part of the technical program committees of all the top security conferences. He was program chair of RAID 2012 and Eurosec 2014. Before joining EURECOM, Davide spent almost two years in Santa Barbara as a postdoctoral researcher in the Department of Computer Science at UCSB, working in the Computer Security Lab with professor Giovanni Vigna and professor Richard Kemmerer. In 2007 he participated in the red team involved in testing the capability and security of the voting machines certified for use in the State of Ohio (Project Everest) and in the red team involved in the top-to-bottom review of the electronic voting machines certified for use in California. He received his PhD in Computer Engineering from Politecnico di Milano in 2006 with a dissertation on "Testing Network Intrusion Detection Systems".

Dr. Achim D. Brucker

Dr. Achim D. Brucker is a Research Expert (Architect), Security Testing Strategist, and Project Lead at SAP SE. He received his master's degree in computer science from University Freiburg, Germany and his Ph.D. from ETH Zurich, Switzerland.

He is part of the global Security Team of SAP and responsible for the Security Testing Strategy at SAP. His research interests include information security, software engineering, security engineering, and formal methods. In particular, he is interested in tools and methods for modelling, building and validating secure and reliable systems. He also participates in the OCL standardisation process of the OMG. Further information can be found on his website: http://www.brucker.ch

Stefano Di Paola

Stefano Di Paola is the CTO and cofounder of Minded Security, where he is Chief Scientist. In the last years Stefano presented several cutting edge research topics, such as DOM based XSS runtime taint analysis, Expression Language Injection, Http Parameter Pollution, ActionScript Security, which led him to be in the Top Ten Web Hacking Techniques initiative for 5 consecutive years (2007-2011). He also published several security advisories and open source security tools and contributed to the OWASP testing guide. Stefano is Research & Development Director of OWASP Italian Chapter.

Sandro Etalle

Sandro Etalle is full professor and head of the Security group at the Eindhoven Technical University. He holds an MSc in Mathematics from the University of Padova and a PhD in Computer Science from the University of Amsterdam. After working at the University of Genova (Italy), Amsterdam, and Maastricht, in 2001 he moved as Assistant Professor the University of Twente (UT). Etalle lead the UT-wide Strategic Research Orientation and Spearhead Program on Computer Security. While at the UT, he was one of th initiators, founder and manager of the Kerckhoffs Institute, a cooperative effort between the UT, the Radboud University of Nijmegen and the Technical University of Eindhoven (TU/e) which provides an MSc in computer security. After a year as visiting professor at the University of Trento, Etalle moved to the Technical University of Eindhoven. In 2009, Prof. Etalle founded SecurityMatters, together with his former PhD students Damiano Bolzoni and Emmanuele Zambon. With SecurityMatters, he won in 2012 the COMMIT Science Valorization prize. Prof. Etalle is one of the authors of the Dutch “National Cyber Security Research Agenda”, he has been leader of several National and EU projects program chair of several international conferences.

Cédric Hebert

Cédric HEBERT is this guy convinced that security can be made simple. As a certified infosec expert of the SAP Security Research team, his work ranges from secure design to offensive security. Some of his current and past projects include the security review of the SAP Business ByDesign architecture, the kickoff of SAP’s Enterprise Threat Detection solution and the development of security tools supporting developers in writing secure code.

Günter Karjoth

Günter Karjoth studied computer science at the University of Stuttgart (Germany) followed by a doctorate. Prior to joining the Lucerne University of Applied Sciences and Arts (School of Business) in 2013, he worked at IBM Research – Zurich. Over the past thirty-five years, his research interest ranged from identity and access management, enterprise privacy, middleware and mobile agent security to protocol engineering. Dr. Karjoth has published over 70 scientific papers and 15 patents. Over the years he has been engaged in different positions at leading conferences, journals and standardization committees. He taught at the ETH Zurich between 2005 and 2013 on “Privacy in the Electronic Society”. He is an ACM Distinguished Scientist (2013) and received IBM Outstanding Achievement Awards for his work on Privacy for RFID (2006) and on the Enterprise Privacy Architecture (2005).

Anders Møller

Anders Møller is associate professor at Aarhus University and head of Center for Advanced Software Analysis (http://casa.au.dk/). His research interests are in programming languages and software engineering, currently focusing on program analysis for web and mobile applications. He has received an ERC Consolidator Grant on "Automated Program Analysis for Advanced Web Applications", research awards from IBM and Google, and several ACM SIGSOFT Distinguished Paper awards.