OWASP Dallas February Meeting

Title:

Bugs in the Blockchain and “Contractual” Vulnerability

Description:

Almost everyone has heard of blockchain technologies and how it will save the world trillions of dollars and make everyone rich. Maybe you’ve paid attention to the recent hacks leading to losses totaling hundreds of millions of dollars. This talk will cover at a high level how these technologies work and why they are so susceptible to bugs and vulnerabilities. We will discuss Bitcoin (the largest public blockchain) and Ethereum (the largest smart contract chain). Next we will look at the “Web 3.0” built on smart contracts: immutable code running directly on the blockchain. Finally, we will survey recent attacks and take the pulse of the security community behind Ethereum. This talk will also introduce the Blockchain Toolbox, a brand new open source virtual machine image for building, experimenting, and hacking on blockchain technologies (https://github.com/starkriedesel/BlockchainToolbox).

Bio:

Stark Riedesel is a software security consultant working for Synopsys here in the Dallas area. He has performed in roles including penetration tester, security researcher, and university lecturer. His active areas of security research include private cloud orchestration platforms (OpenStack and Docker), full stack JavaScript deployments (MEAN stack), and Smart Contract & Distributed Ledger application security (static/dynamic/architectural analysis).

Sponsorship:

The meeting food & drinks will be sponsored by Alliance Data Systems.

IMPORTANT Meeting Notes:

The Alliance Data Systems office is a gun-free zone. Please do not attempt to bring in any guns, holsters, ammo, etc. into their office space.