NavTalks

From Navigators

(Difference between revisions)
Jump to: navigation, search
Line 121: Line 121:
             <td style="width:600px"><span style="border-bottom: dashed 1px #000" title="Vulnerability databases (such as the NVD) are considered one of the main venues for vulnerability awareness. However, these sources only publish content that has been verified, i.e., vulnerabilities that have been confirmed by the affected software vendor and that have undergone analysis by the database management (for example, to calculate the CVSS score). On the other hand, since Open Source Intelligence encompasses information from multivariate origins, it is possible that some vulnerability data is available on the Internet before it is indexed in vulnerability databases. In this Navtalk I will present some preliminary results of a comparative study between the publishing of some vulnerabilities in OSINT and in vulnerability databases.">A comparison between vulnerability publishing in OSINT and Vulnerability Databases</span></td>
             <td style="width:600px"><span style="border-bottom: dashed 1px #000" title="Vulnerability databases (such as the NVD) are considered one of the main venues for vulnerability awareness. However, these sources only publish content that has been verified, i.e., vulnerabilities that have been confirmed by the affected software vendor and that have undergone analysis by the database management (for example, to calculate the CVSS score). On the other hand, since Open Source Intelligence encompasses information from multivariate origins, it is possible that some vulnerability data is available on the Internet before it is indexed in vulnerability databases. In this Navtalk I will present some preliminary results of a comparative study between the publishing of some vulnerabilities in OSINT and in vulnerability databases.">A comparison between vulnerability publishing in OSINT and Vulnerability Databases</span></td>
             <td style="width:100px">&nbsp;</td>
             <td style="width:100px">&nbsp;</td>
-
        </tr>
+
</tr>
-
<tr>
+
<tr>
<td>15/01</td>
<td>15/01</td>
<td>Ib&eacute;ria Medeiros</td>
<td>Ib&eacute;ria Medeiros</td>
-
<td><!--<span style="border-bottom: dashed 1px #000" title="In this talk, we present the SEAL project. The project is about the detection of vulnerabilities and implementation of software security in web applications written in different server-side languages (e.g., PHP, Hack, Java, ASP).  To handle different languages, an intermediate language capable of representing server-side language aspects and secure code features is needed to be defined. In addition, tools to process this language to identify vulnerabilities are required as well as tools able to remove vulnerabilities in the source code of web applications. In the first instance, the presentation will introduce the project, its goals, what are the main challenges and the expected results. Next, we present the ongoing work related to the most main challenge.   ">SEAL: SEcurity progrAmming of web appLications</span>--></td>
+
<td><span style="border-bottom: dashed 1px #000" title="In this talk, we present the SEAL project. The project is about the detection of vulnerabilities and implementation of software security in web applications written in different server-side languages (e.g., PHP, Hack, Java, ASP).  To handle different languages, an intermediate language capable of representing server-side language aspects and secure code features is needed to be defined. In addition, tools to process this language to identify vulnerabilities are required as well as tools able to remove vulnerabilities in the source code of web applications. In the first instance, the presentation will introduce the project, its goals, what are the main challenges and the expected results. Next, we present the ongoing work related to the most main challenge.">SEAL: SEcurity progrAmming of web appLications</span></td>
<td>&nbsp;</td>
<td>&nbsp;</td>
</tr>
</tr>
Line 142: Line 142:
<h3><strong>January 2019</strong></h3>
<h3><strong>January 2019</strong></h3>
<table border="0" cellspacing="0" >
<table border="0" cellspacing="0" >
-
<tr>
+
 
-
            <td style="width:100px">15/01</td>
+
-
            <td style="width:300px">Fernando Alves</td>
+
-
            <td style="width:600px">&nbsp;</td>
+
-
            <td style="width:100px">&nbsp;</td>
+
-
        </tr>
+
-
<tr>
+
-
<td>15/01</td>
+
-
<td>Ib&eacute;ria Medeiros</td>
+
-
<td>&nbsp;</td>
+
-
<td>&nbsp;</td>
+
-
</tr>
+
<tr>
<tr>
<td>29/01</td>
<td>29/01</td>

Revision as of 14:44, 15 January 2019

The NavTalks is a series of informal talks given by Navigators members or some special guests about every two-weeks at Ciências, ULisboa.

Leave mouse over title's presentation to read the abstract.


Contents

Past presentations

September 2018

20 Alysson Bessani SMaRtChain: A Principled Design for a New Generation of Blockchains  
20 Rui Miguel Named Data Networking with Programmable Switches  

October 2018

4 Bruno Vavala (Research Scientist in Intel Labs) Private Data Objects  
4 Marcus Völp (Research Scientist, CritiX, SnT, Univ. of Luxembourg) Reflective Consensus  
18 Yair Amir (Professor, Johns Hopkins University) Timely, Reliable, and Cost-Effective Internet Transport Service using Structured Overlay Networks  

November 2018

13 Salvatore Signorello The Past, the Present and some Future of Interest Flooding Attacks in Named-Data Networking  
13 Tiago Oliveira Vawlt - Privacy-Centered Cloud Storage  
27 Nuno Neves Segurança de Software - Como Encontrar uma Agulha num Palheiro?  
27 Ricardo Mendes Vawlt - The Zero-knowledge End-to-end Encryption Protocol  

December 2018

11/12 António Casimiro AQUAMON: Dependable Monitoring with Wireless Sensor Networks in Water Environments  
11/12 Carlos Nascimento Review of wireless technology for AQUAMON: Lora, sigfox, nb-iot  

January 2019

15/01 Fernando Alves A comparison between vulnerability publishing in OSINT and Vulnerability Databases  
15/01 Ibéria Medeiros SEAL: SEcurity progrAmming of web appLications  


Upcoming presentations

January 2019

29/01 Fernando Ramos    
29/01 Miguel Garcia    

February 2019

19/02 Ana Fidalgo    
19/02 João Sousa    

March 2019

12/03 Pedro Gaspar    
12/03 Ricardo Morgado    
26/03 André Oliveira    
26/03 Nuno Dionísio    

April 2019

09/04 Adriano Serckumecka    
09/04 Tulio Ribeiro    
30/04 Miguel Moreira    
30/04 Pedro Ferreira    

May 2019

14/05 Diogo Gonçalves    
14/05 Vinicius Cogo    
28/05 Francisco Araújo    
28/05 Miguel Matos    

June 2019

11/06 Eric Vial    
11/06 Robin Vassantlal    
25/06 João Pinto    
25/06 Tiago Correia    
Personal tools
Navigators toolbox