Conference 2018

Schedule

November 8th to 9th, 2018
Y-PARC, Yverdon-les-Bains

Program

Cutting Edge Technical Talks... and more!

#BlackAlps18 program has been prepared by an independent committee.

All sub-events are at Y-PARC, Yverdon-les-Bains, except the Networking dinner.

Thursday November 8th, 2018

09:00 - 09:15
LIVE
Opening Words(EN)
Sylvain Pasini (HEIG-VD, president of Black Alps)
09:15 - 10:00
LIVE
[Keynote] Let’s create a redteam mission(en)
Alex Kouzmine (Societe Generale)
10:10 - 11:00
LIVE
Bypass Android Security Mechanisms using Custom Android(en)
SEONGHYEON SONG (FSI (Financial Security Institute) )
LIVE
Dilemmas Everywhere! Get It Right or Get Pwned(en)
Ethan Schorer (Check Point Software Technologies)
11:30 - 12:20
LIVE
Reversing cryptographic primitives using quantum computing(en)
Renaud Lifchitz (Econocom digital.security )
LIVE
Application Level DDOS, the Rise of CDNs and the End of the Free Internet(en)
Christian Folini (netnea.com )
14:00 - 14:50
LIVE
3 years later: a crossed look at Swisscom bounty (en)
Florian Badertscher (Swisscom )
Nicolas Heiniger (Compass Security AG )
14:00 - 17:00
LIVE
Reversing and Vulnerability research of Ethereum Smart Contracts(en)
Patrick Ventuzelo (QuoScient GmbH )
LIVE
Introduction to Bro Network Security Monitor(en-fr)
Eva Szilagyi (Alzette Information Security )
David Szili (Alzette Information Security )
14:50 - 15:40
LIVE
Nail in the JKS coffin(en)
Tobias Ospelt (modzero AG )
16:10 - 17:00
LIVE
Cryptocurrency mobile malware(en)
Axelle Apvrille (Fortinet )
17:00 - 17:20
LIVE
Opening Words(en)
Sylvain Pasini (HEIG-VD)
Yohann Perron (Alp ICT)
LIVE
Challenges Of Our Hospitals When Working With Connected Devices(en)
Pierre-François Regamey (CHUV)
LIVE
State Of The Art In Security Applied To Medical Devices Through A Sccuessful Implementation Of An Insulin Pump(en)
Stephan Proennecke (Debiotech )
LIVE
Current Status Of Regulations On CyberSecurity For Medical Devices(en)
George Copeland (Arriva UK Trains)
Kim Rochat (Medidee)
LIVE
Round Table(en)
19:45 - 23:00
LIVE
Networking dinner @Grand Hotel des Bains

Friday November 9th, 2018

08:45 - 09:15
LIVE
Welcome and coffee
09:15 - 10:00
LIVE
[Keynote] Challenges and Opportunities in Cloud Security(en)
Scott Piper (SummitRoute )
10:00 - 10:10
LIVE
Unlocking secrets of the Proxmark3 RDV4.0(en)
Christian Herrmann (Group RRG)
Kevin Barker (Group RRG)
10:10 - 11:00
LIVE
Group123: Korea In The Crosshairs(fr)
Paul Rascagneres (Cisco Talos )
LIVE
Room Change
11:30 - 12:20
LIVE
Build your own hardware implant(fr)
Nicolas Oberli (Kudelski Security )
LIVE
Switzerland has bunker, we have Vault(en)
Christophe Tafani-Dereeper (Hacknowledge )
12:20 - 14:00
LIVE
Lunch
14:00 - 14:50
LIVE
How to provide security fixes in a high constraint ecosystem? Practical examples with the Jenkins project(fr)
Wadeck Follonier (CloudBees SA)
14:00 - 17:00
LIVE
Hands-On Security Lab with Hacking-Lab(en)
Nicolas Heiniger (Compass Security AG )
Sylvain Heiniger
Philipp Sieber
LIVE
Recrutez efficacement vos experts en sécurité informatique… ou comment attirer et identifier vos prochains talents tout en limitant les erreurs de casting(fr)
Alexia Gonzalez (Securing Apps Sàrl )
14:50 - 15:40
LIVE
Building an Open Source Kubernetes Security Stack(en)
Henri Dubois-Ferriere (Sysdig)
15:40 - 16:10
LIVE
Coffe Break
16:10 - 17:00
LIVE
Cyber Defense Exercices Locked Shields & Cyber Exercises in the Financial Sector(en)
Peter Hladky (Credit Suisse)
17:00 - 18:00
LIVE
Aperitif
17:00 - 22:30
LIVE
Y-NOT-CTF
18:00 - 19:00
LIVE
Travel
19:00 - 22:30
LIVE
Black Dinner @Amalgame
22:30 - 04:00
LIVE
Black Party @Amalgame

Legend

 
Conference
 
Keynote
 
Workshop
 
Side event
 
Evening

Talk selection process

A call for proposal (CFP) was organized. The program committee was in charge to select the talks (except the keynotes and rumps). The submission process is now closed (it was open until January 1, 2000.).

Program committee

The program committee is composed of international renowned experts in the field.

  • Nicolas Oberli, Blackalps (chair)
  • Ange Albertini, Corkami
  • Axelle Apvrille, Fortinet
  • Gynvael Coldwind, HexArcana
  • Michał "Redford" Kowalczyk
  • Sylvain Pelissier, SICPA
  • Christophe Tafani-Dereeper
  • Candid Wüest, xorlab

Proposal topics

  • Application security
  • Vulnerability research and exploits development
  • Penetration testing and red teaming
  • Cloud security
  • Security automation
  • Network security
  • Intrusion detection and monitoring
  • Cryptography