- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
select a course
Orlando, FL - February 24 - March 4, 2006
- Vendor Events
- Special Events
- SANS @Night
- Brochure (PDF)
Best IT Security return on Investment.
-Mario Chiock, Schlumberger
Dear Colleague,
I am honored to invite you to SANS 15th annual training event in Orlando, Florida at the Walt Disney World Swan and Dolphin Hotel.
SANS 2006 presents a wide variety of choices from length of training to type of training. It will be a great opportunity for the whole family to enjoy themselves. The event takes place right on the Disney property, minutes from EPCOT and Disney-MGM studios.
The SANS promise is that you will be able to use what you learn in class the day you get back in the office. In keeping with SANS tradition, courses, presentations, vendor activities and networking opportunities abound in Orlando. This has been an exciting year at SANS. Many changes have taken place in our GIAC program over the last six months. In addition to new certificates and certifications, we have created a variety of options for receiving training without having to travel.
Congratulations to our three new GSE certification holders: Jorge Ortiz, David Perez and Raul Siles! Take a look at what earning the GSE involves as well as photos of these three distinguished gentleman: http://www.giac.org/certifications/GSE2005.pdf
SANS 2006 has something for everyone in security and operations, so please share this training opportunity with your coworkers, training department and managerial personnel. Should you have any questions at all, feel free to drop me a note at stephen@sans.org.
I look forward to seeing you in Orlando!
Warm regards,
Stephen Northcutt,
CEO
SANS
SANS 2006 Welcome Reception
Sunday, February 26, 5:00pm-7:00pm
Please join us for refreshments, snacks and activities at the SANS 2006 Welcome Reception. There will be plenty of time to network with your peers as well as visit with vendors' technical staff to get an up-close look at emerging technology and live interactive demonstrations.
This is a great opportunity to network and have fun in a relaxed environment. You'll be surprised at how many people you will recognize throughout the week after meeting them at the reception!
Vendor Reception
Monday, February 27, 5:00pm-7:00pm
Throughout SANS 2006 vendors will be hosting a number of events including presentations, a two-day vendor solutions expo and various receptions. Experience the latest in network security tools, meet industry leaders and share your thoughts on developments you would like to see in the pipeline.
SANS 2006 KEYNOTES
The Hidden Risks of Bluetooth
Joshua Wright, SANS
Saturday, February 25, 7:00pm-9:00pm
IDC reports that the number of Bluetooth devices shipped worldwide will exceed 1 billion in 2006. Declared "dead" on more than one occasion, Bluetooth technology is rapidly gaining adoption worldwide as a networking topology and a generic cable replacement technology. Despite the popularity of Bluetooth, many organizations don't realize their exposure to this popular wireless technology, thinking that Bluetooth is limited to short-range communications or doesn't expose sensitive data or access to network resources.
In this presentation, wireless security researcher Joshua Wright will disclose the risks and vulnerabilities of Bluetooth, dispelling common misconceptions. Focusing on actual attack tools and implementations, Joshua will demonstrate Bluetooth attacks in a live environment, and will release a new proof-of-concept tool designed to illustrate weaknesses in the selection of Bluetooth encryption keys.
Malicious Code for Fun and PROFIT:
The business models fueling the explosion of malware.
Ed Skoudis, Intelguardians
Monday, February 27, 7:00pm-9:00pm
Computer attackers have honed their business models, making serious money with the proliferation of malicious code. Ask anyone in law enforcement, and they'll tell you -- when bad guys figure out how to reliably make money on a given crime, we'll see a lot more of that pernicious activity. This presentation explores the underground's business models based on recent attacks, including extortion, identity theft, and overly aggressive spyware. We'll also address practical recommendations for countering these threats.
The Top 10 "No-No's" Related to Oracle Security Tanya Baccam, Vigilar
Tuesday, February 28, 7:00pm-9:00pm
Database security is often overlooked in an organization's security plan and architecture. Organizations spend time and money securing the network infrastructure, operating systems, and even applications, but the databases are often missed and left wide open. The problem is, our databases often store one of our most critical business assets - data. Data provides information, information provides knowledge and knowledge is power. Data must be protected. Database security is critically important and organizations need to take a closer look at the key issues related to database security. This keynote highlights the "Top 10" critical areas that organizations should address first when securing their Oracle Databases.
SANS@Night
Baselining Logs and Audit Trails for Security
Anton Chuvakin, netForensics
Wednesday, March 1, 7:00pm-9:00pm
This presentation will focus on creating the methodology for learning the log baselines and then matching the current state of the environment against the baselines. It sounds simple, but an effective methodology for it still hasn't been created. The talk will cover what the good (and bad) possible baselines are, how to create them and how to use them for security.