Vom IT Security Management zum Sicheren Eingebetteten System

Vortragender: Markus Wamser

Abstract: Once you connect your Embedded System to a publicly visible network, the question is not whether your system gets hacked, but when. The goal for security is to push this when as far as possible into the future, by reducing the attack surface and eliminating risks. But security is not a static feature. It is a holistic process and far more than avoiding strcpy(). One has to look beyond one’s own nose (and that of C++) to grasp all aspects of secure software development.

This talk will help you to look in the right directions. We start off with a quick introduction to IT Security Management, for one cannot develop secure software in an insecure environment. We will then gradually work our way down through the abstraction levels, visiting the MS Security Development Lifecycle and Threat Modelling on the way. Our journey will end with a short demonstration of what you can do with Trusted Platform Modules on an Embedded System.

Every process needs to be started once. Join us for this Meetup and start your personal security improvement process.

Hinweis: Die Presentation wird in Deutsch sein!
Note: The presentation language will be German.

Zeitplan:
18:30 Uhr: Empfang mit Snacks und Begrüßung durch Mixed Mode
19:15 Uhr: Lightning Talk
19:25 Uhr: Vortrag von Markus Wamser
21:00 Uhr: Offene Diskussionsrunden
22:00 Uhr: Offizielles Ende