Vendor Events

Evening Vendor Tabletop Demo Reception featuring Dr. Eric Cole

Know Your Network: Log Analysis/Signs of Compromise
- Speaker: Dr. Eric Cole
- Sunday, January 13, 2008 * 6:00pm - 9:00pm

Vendor Sponsored Demonstrations
- Featuring: LogRhythm, InterSect Alliance Pty. Ltd., LogLogic, Inc.
- Sunday, January 13, 2008 * 7:00pm - 9:00pm

All attendees are invited to meet with these leading providers of Log Management solutions. Bring your laptop and log-on to the SANS sponsored network to engage in a "hands-on" environment featuring the latest cutting edge technologies in the Log Management market. Work through live, real-time demonstrations with vendors and featured SANS instructor Dr. Eric Cole. These vendors arrive prepared to interact with SANS' technically savvy audience, presenting examples on how to avoid current threats to your environment.

Vendor Welcome Reception

Monday, January 14th: 5:00pm - 7:00pm

This informal reception allows you to visit exhibits and participate in some exciting activities. This is a great time to mingle with your peers and experience firsthand the latest in information security tools and solutions with interactive demonstrations.

During the reception you will see important tools and services in a relaxed environment, providing an opportunity to have one-on-one discussions with technical experts from these organizations.

Vendor Expo

Monday, January 14th: 12:00pm - 1:30pm and 5:00pm - 7:00pm

Throughout SANS Security 2008 vendors will be hosting a number of events including presentations, a one-day vendor solutions expo and various receptions. Experience the latest in network security tools, meet industry leaders and share your thoughts on developments you would like to see in the pipeline.

Lunch & Learns

Core Security Lunch and Learn Presentation
- Efficient Vulnerability Management with Penetration Testing
- Don Kelloway, Manager, Worldwide Support & Services
- Tuesday, January 15th, 2008 * 12:30pm - 1:15pm

This talk will be an opportunity for attendees to see a live demonstration of automated penetration-testing. In just minutes attendees will see CORE IMPACT safely exploit vulnerabilities in a target network, replicating the kinds of access an intruder could achieve, and proving actual paths of attacks that must be eliminated.

Don Kelloway is the Manager of Worldwide Support & Services for Core Security Technologies, providing training and post-sales technical support for CORE IMPACT'S user base. Don has over ten years of extensive experience in the field of technical support, including acting as a private consultant for a number of years. He has an extensive knowledge of computer forensics, penetration testing, network implementation and administration, customer support, technical sales, and network and systems design. Don is a member of the National Information Security Group (NISG), the International Information Systems Forensics Association (IISFA), the Information System Security Association (ISSA) and the FBI's InfraGard program (Boston Chapter).

Xceedium Lunch and Learn Presentation
- Enforce and Validate Access Control with Leap Frog Prevention Technology
- David Van, Chief Technical Office and Co-Founder of Xceedium
- Tuesday, January 15th, 2008 * 12:30pm - 1:15pm

Xceedium will present its patent-pending Leap Frog PreventionTM (LPF) technology, the company's latest security innovation. LPF enables customers to contain users strictly to authorized areas, eliminating the ability to roam in the network. Capabilities include command and socket-based filters, real-time alerts and automated remediation. If your company employs MSP, off-shore developers, vendors, or works with technology partners, LPF will secure your MS Terminal Server, Citrix PS, or other types of "jump boxes." Attendees will learn how LPF helped the Department of Defense, large national retail organizations, and financial institutions enforce and validate access controls to meet their respective regulatory compliance.

David Van is the Chief Technical Officer and Co-Founder of Xceedium. Mr. Van is responsible for the strategic vision and direction of the technology and has responsibility over the entire engineering function, including R&D, Development and QA. Mr. Van established his professional career at Salomon Brothers with seven successful years in their fixed income research division. After Salomon, he emerged as a senior technologist specializing in internet infrastructures, firewall, content security, and enterprise IT resource management. He also served as senior security consultant at Alliance Capital, and successfully implemented numerous complex security, network, and management infrastructures for such firms as DLJ/CSFB, Fisher Francis, as well as several federal agencies.

LogLogic Lunch and Learn Presentation
- "Worst Practices" of Log Management
- Dr. Anton Chuvakin, GCIA, GCIH, GCFA
- Wednesday, January 16th, 2007 * 12:30pm - 1:15 pm

Want to learn all the terrible mistakes and pitfalls that await you on the path to log management nirvana? Attend "'Worst Practices' of Log Management" presentation by LogLogic that covers all the things that can go wrong while planning, evaluating, deploying and running a log management solution. Insufficient planning, unrealistic expectations, choosing tools on price alone, lack of logging configuration guidance are among such "worst practices." Each common "worst practice" will be accompanied by suggestions to avoid the errors and do things correctly!

Please arrive early to guarantee a seat, the lunch session is limited to the first 100 attendees.

Dr Anton Chuvakin, GCIA, GCIH, GCFA is a recognized security expert and author. He is an author and contributor of several books including Security Warrior, Know Your Enemy II, Information Security Management Handbook and Hacker's Challenge 3. Chuvakin has published numerous papers on security issues. He participates in various security industry initiatives and standards organization.

Evening Vendor Tabletop Demo Reception featuring Jason Lam

Learn your Network Shortcomings': Vulnerability Assessment/Penetration Testing
- Speaker: Jason Lam
- Wednesday, January 16, 2008 * 6:00pm - 9:00pm

Vendor Sponsored Demonstrations
- Featuring: Core Security and Cenzic
- Wednesday, January 16, 2008 * 7:00pm - 9:00pm

All attendees are invited to meet with these leading providers of Penetration Testing solutions. Bring your laptop and log-on to the SANS sponsored network to engage in a "hands-on" environment featuring the latest cutting edge technologies in the Pen Testing market. Work through live, real-time demonstrations with vendors and featured SANS instructor Jason Lam. These vendors arrive prepared to interact with SANS' technically savvy audience, presenting examples on how to avoid current threats to your environment.