5 Days Left to Save $200 on SANS Miami 2016

London 2012

London, United Kingdom | Mon, Nov 26, 2012 - Mon, Dec 3, 2012

Security of National eID (smartcard-based) Web Applications

  • Raul Siles
  • Wednesday, November 28th, 6:30pm - 7:30pm

National electronic identification (eID) smartcards are used by millions of European citizens, as well as worldwide, as a key element to authenticate against critical web applications on both the public and private sectors. This identification technology commonly used to access a variety of web eGovernment services, plus financial, insurance, and utility companies websites, is considered secure. However, due to the lack of web auditing and pen-testing tools to thoroughly evaluate the smartcard-based authentication process and subsequent session management capabilities... can we really trust the security of these eID services and web applications? The eID smartcard can be secure but... is it used in a secure way? Let's take an in-depth look at the current landscape through security tools, practical demonstrations, and educational scenarios from real-world penetration tests on a worldwide leading country like Spain, with more than 25 million eIDs.

Bonus Sessions

The following bonus sessions are open to all paid attendees at no additional cost. There are many different types of events that fall into these categories:

  • SANS@Night: Evening presentations given after day courses have ended. This category includes Keynotes.
Monday, November 26
Session Speaker Time Type
Why Do Organizations Get Compromised? Eric Cole Ph.D. Monday, November 26th, 7:15pm - 9:15pm SANS@Night
Wednesday, November 28
Session Speaker Time Type
Security of National eID (smartcard-based) Web Applications Raul Siles Wednesday, November 28th, 6:30pm - 7:30pm SANS@Night
Dissecting Smart Meters Justin Searle Wednesday, November 28th, 7:30pm - 8:30pm SANS@Night
Thursday, November 29
Session Speaker Time Type
10 Things Security Teams Need to Know about Cloud Security‚® Dave Shackleford Thursday, November 29th, 6:00pm - 6:45pm SANS@Night
Practical, Efficient Unix Auditing (With Scripts) James Tarala Thursday, November 29th, 6:45pm - 7:30pm SANS@Night
Why Our Defenses Are Failing Us. One Click Is All It Takes... Bryce Galbraith Thursday, November 29th, 7:30pm - 8:15pm SANS@Night