What:
Ryan Berg, chief scientist and co-founder of Ounce Labs and Dinis Cruz, director of advanced research for Ounce Labs, will be featured speakers at the LifeCycle Security 2008 Conference. The conference is focused on web application security and how people are solving application security issues on a daily basis.
When:
The event will take place August 8 & 9 at Caesars Palace, Las Vegas, Nevada
Details:
Ryan Berg will present ‘Framework-induced Vulnerabilities in J2EE’ on Saturday, August 9th at 9:00 a.m. local time.
Dinis Cruz will present ‘Why You (Attendee) Need to Stop Laughing and Start Using Static Source Code Analyzers’ on Saturday, August 9th at 10:45 a.m. local time.
Speakers:
Ryan Berg is a Co-Founder and Chief Scientist for Ounce Labs. In addition to advancing the state of the art in application security technologies, Ryan is also a popular speaker, instructor, and author, in the fields of security, risk management, and secure development processes. He holds patents and has patents pending in multi-language security assessment, kernel-level security, intermediary security assessment language, and secure remote communication protocols.
Prior to Ounce, Ryan co-founded Qiave Technologies, a pioneer in kernel-level security, which was later sold to WatchGuard Technologies in October of 2000. In the late 1990s, Ryan also designed and developed the infrastructure for GTE Internetworking/Genuity’s appliance-based managed firewall and security services.
Dinis Cruz is director of advanced technology for Ounce Labs and a security consultant based in London specializing in source code security reviews, penetration testing, ASP.NET application security, reverse engineering and security curriculum development and the creation of multiple .NET tools.
In addition to being a member of the OWASP (Open Web Application Security Project) Board, Cruz also serves as chief OWASP evangelist and creates and organizes events for the organization, including the OWASP Spring of Code 08. Dinis is a featured keynote and advanced technical presenter.
About Ounce Labs, Inc.
Ounce Labs’ industry-leading enterprise security source code analysis solutions enable organizations to analyze their applications to identify, prioritize and eliminate software security vulnerabilities. Ounce delivers the enterprise-scale features that empower analysis across a wide portfolio of applications, with patented code analysis technology pinpointing confirmed vulnerabilities at the line of code. Only Ounce features the automated workflow and open architecture that enterprises demand, helping organizations such as EDS, IBM, Intel, Lockheed Martin, MFS, the U.S. Government Accountability Office, Unisys and VeriSign, to strengthen application security through their existing development and security processes, and protect confidential information enterprise-wide. Ounce also helps organizations to verify compliance with internal policies and industry mandates including PCI DSS, FISMA, HIPAA and others. For more information, please visit www.ouncelabs.com.
Media Contacts:
Rachel O'Connell
Ounce Labs
781.547.7016
Rachel.OConnell@ouncelabs.com
http://www.ouncelabs.com
Brenda Menard
Davies Murphy Group
781.418.2435
ounce@daviesmurphy.com
http://www.daviesmurphy.com
Ounce Labs is a registered trademark of Ounce Labs, Inc. in the United States and other countries. Ounce 5, SmartTrace and SmartAudit are trademarks of Ounce Labs. Other product or service names mentioned herein are the trademarks of their respective owners.
"Security scanners tend to be trigger happy and obtuse, but Ounce Labs offers friendly scanners with fewer false alarms."