12:11 PM
Connect Directly

11 Security Sights Seen Only At Black Hat

Who says fun, sun, malware, and penetration testing don't mix? This year's Black Hat conference in Las Vegas offered information security training, hardware hacking, pool time, and more.
11 of 11

Google and Facebook may offer bug bounties, but Microsoft broke into the "cash for security code" movement with its inaugural BlueHat Prize, hosted at the Marquee nightclub in Las Vegas. "For our challenge to the security researcher community, we said, can you focus on defensive techniques that can focus on entire classes of attacks, instead of finding one-off vulnerabilities," said Mike Reavey, director of the Microsoft Security Response Center, in an interview at Black Hat. "And we put a quarter of a million dollars on the table, because we knew it's hard to do."

The winning submission, together with $200,000 of the prize money and mountains of free confetti, went to Columbia University graduate student Vasilis Pappas for kBouncer, which Microsoft described as "an efficient and fully transparent ROP [return-oriented programming] mitigation technique."

BlueHat Prize event photograph by Mathew J. Schwartz.


Black Hat: 6 Lessons To Tighten Enterprise Security

Tired Of Security Problems? Change Rules Of Writing Code

HTML Access Control Busted By Security Researchers

Strike Back At Hackers? Get A Lawyer

5 Black Hat Security Lessons For CIOs

Internet Crime Focus Of Black Hat Europe

3 Big Security Themes At Black Hat Europe

11 of 11
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
User Rank: Apprentice
8/2/2012 | 12:14:46 PM
re: 11 Security Sights Seen Only At Black Hat
The whole conference looked like it was a blast to attend and learn some state of the art defensive techniques. I have to make it to one of these I would love to sit through most of these speakers that attend. I have heard many different opinions in what the key theme was at the Black Hat conference, did anyone attend? What was in your opinion the theme of the conference that you viewed?

Paul Sprague
InformationWeek Contributor
White Papers
Register for Network Computing Newsletters
Current Issue
2014 State of Unified Communications
2014 State of Unified Communications
If you thought consumerization killed UC, think again: 70% of our 488 respondents have or plan to put systems in place. Of those, 34% will roll UC out to 76% or more of their user base. And there’s some good news for UCaaS providers.
Twitter Feed