OWASP Aarhus Chapter Meeting - October

Notice, that this is a physical event and that Cryptomathic will be hosting it. By signing up, you accept that OWASP Aarhus will hand over a list of participants to Cryptomathic for the sole purpose of hosting this event.

19:00 - 19:30
"Welcome, Food and Drinks"
Thomas Ljungberg Kristensen - Co-Chapter Leader OWASP Aarhus
Dennis Perto - Co-Chapter Leader OWASP Aarhus

19:30 - 20:15
"Mobile Security: App Attestation and keeping secrets on the phone"
Peter Ørbæk, Software Engineer at Cryptomathic

About the presentation:
"Mobile app security is about two things: protecting secrets (password, tokens, keys) on the phone, and ensuring the backend that it is talking the genuine app and user. This talk is about how Cryptomathic solved this and the path which lead to App Attestation and the Cryptomathic Mobile App Security Core."

About Peter:
My name is Peter Ørbæk. I have a Ph.D in computer science from the University of Aarhus. Since 2010 I have worked as a Senior Software Engineer at Cryptomathic on key management, authentication, document signing, and not least, mobile security in the banking world.

20:30 - 21:15
"Cryptography and it’s flaws in practice"
Marcus Sellebjerg, Student at Aarhus university with a passion for cybersecurity and cryptography

About the presentation:
It’s widely acceptable that security on the internet is very important. Still many developers doesn’t know how to implement security mechanisms and particularly cryptography is a very error prone area. For many cryptography is a black box of math-magic and while that is fine, it’s important to use this black box in a correct manner which is sadly not easy. In this talk I’ll give you an introduction on how to use the cryptography black box and how it can be exploited if not used correct.

About Marcus:
My name is Marcus, I’m currently a masters student at Aarhus University with a huge interest in cryptography and the math behind it. Beside university I compete in capture the flag tournaments together with my team (Kalmarunionen), where we look at different security solutions and tries to circumvent the implemented security mechanisms, both crypto and other areas. I also work in the cryptography department of Danske bank and have been programming since I was around the age of 12, where the concept of hiding information in plain sight also found my interest.

21:15 - 21:30
Goodbyes and plans going forward
Thomas Ljungberg Kristensen - Co-Chapter Leader OWASP Aarhus
Dennis Perto - Co-Chapter Leader OWASP Aarhus