carlos.fragoso.eu

“Legal Interception/Data Retention” panel at ESNOG conference

Carlos Fragoso — Mon, 20 Apr 2009 22:55:02 +0000

ESNOG, Spanish Network Operators Group will celebrate their 3rd technical meeting next 11 of May at Universidad Politécnica de Madrid (UPM) facilities in Madrid with the participation of cutting-edge speakers such as Geoff Houston from APNIC, Vesna Manojlovic from RIPE-NCC and Marcos Sanz from DENIC. This group is focused on topics related with the telecommunication and Internet service providers’ world.

I will introduce and moderate a “Legal Interception/Data Retention” panel with the participation of several remarkable speakers from lawful enforcement agencies, government representatives, ISP/Telco CSIRT, etc.

More information at 3rd ESNOG meeting website.

“Security Architecture” panel at RedIRIS security conference

Carlos Fragoso — Wed, 25 Feb 2009 19:55:16 +0000

RedIRIS as a national research and educational network organizes a security conference annualy for its wide constituency of universities, research centers and other kind of institutions. This event has been very successful meaning that this year is the seventh edition held at Castilla La Mancha University campus in Ciudad Real.

The main central topic for 2009 conference is ”Security Architectures” where several experienced members of community and other security experts, such as Raul Siles, will deal with related hot topics such as Voice over IP, authentication and identity, among others.

There will be a panel about “Security Architectures experiences” where I will participate with other three speakers trying to provide my eight year experience as security architect at the Supercomputing Center of Catalonia (CESCA).

RedIRIS security conference on 2008 held in Barcelona

GÉANT2 Security Toolset instructor certification

Carlos Fragoso — Wed, 04 Feb 2009 08:00:54 +0000

GÉANT2 (GN2) Security Toolset consists on the netflow analysis tools NfSen and NfDump and the FlowMon appliance. That training teach participants to use NfDump and NfSen to analyse such Netflow data and it will explain how to use FlowMon appliances to acquire Netflow data. It explains how to use the Security Toolset to identify and analyse network security threats and gives the opportunity to practice using the Toolset in a well-controlled environment.

I have been attending the GN2 Security Toolset with the “train-the-trainers” module, at Switch NREN facilities in Zurich, that certifies me to teach that training within other non-profit constituencies.

“Dark Side of the Internet” talk at ESNOG meeting

Carlos Fragoso — Wed, 04 Feb 2009 08:00:09 +0000

ESNOG, Spanish Network Operators Group will celebrate their 1st technical meeting next 4 of February in Escuela Superior Politécnica at Universidad Autonoma de Madrid with the participation of cutting-edge speakers such as Joao Damas from ISC, Filiz Yilmaz from RIPE-NCC and Leo Vegoda from IANA/ICANN. This group is focused on topics related with the telecommunication and Internet service providers’ world.

I will be giving a talk titled “The Dark Side of The Internet” which describes how ISP and Telco providers could face current Internet threats such as Botnets.

esnog-facing_darkside-v1.0.pdf

“Internet Pirates” talk at SANS London 2008 conference

Carlos Fragoso — Sun, 30 Nov 2008 09:00:20 +0000

SANS Institute is going to run its biggest european conference ever with fifteen different training courses at ExCeL exhibition and conference center in London during the first week of December (Mon 1 to Tue 9). SANS is well-known by security professionals and most companies for the delivery of high quality security training.

During that conference, there is going to be a joint event with ISSA UK on Thursday 4th with several well known speakers such as Raul Siles and Arrigo Triulzi. I will be giving the first talk of the event that will be titled “Internet Pirates: Blackholing, Hijacking and other dirty tricks” which describes the threat behind Border Gateway Protocol (BGP) issues raised during the last months and specially how to face them from a Network Service Provider (NSP) perspective.

Talk slides available through SlideShare:

“Firewalls, IDS/IPS and UTM” talk at Radware workshop

Carlos Fragoso — Sat, 01 Nov 2008 08:00:48 +0000

Radware is an application delivery, security, availability and performance optimization solutions vendor. They build several interesting security appliances such as DefensePro box which provides intrusion prevention in a very innovative way based on fuzzy logic technology. The Supercomputing Center of Catalonia (CESCA), as a regional research and academic network manager, organizes several technical workshops for its constituency such as universities and research centers.

Radware and CESCA are jointly organizing in Barcelona a workshop titled “Improving Intrusion Prevention Systems (IPS) through Fuzzy Logic” that will provide a security review about IPS and specially about how DefensePro approaches it. Carmen Navarro and Ivan Puig from Radware will be running most of the workshop. Francesc Rovirosa from Universidad Oberta de Catalunya (UOC) will describe their successful deployment of that product. I will be giving the introductory talk called “Mom … what does a FW, IDS/IPS, UTM do?” that will try to give a brief overview about protection systems and their differences so that the IPS approach could be fully understood.

“pf + CARP” talk at FIST conference

Carlos Fragoso — Sun, 26 Oct 2008 08:00:46 +0000

FIST conferences are free and open events organized by the Open Information Systems Security Group to raise the level of information security awareness and to teach advanced security practices developed by OISSG. It is an effort to bring individual local talent and make the most of it within the IS security community. Additionally, you will also have the opportunity to meet new security-minded colleagues working in your area.

I will give a talk about OpenBSD packet filter using a high-availability approach through CARP and pfsync protocols.

“Internet Pirates” talk at ESNOG conference

Carlos Fragoso — Wed, 15 Oct 2008 08:00:51 +0000

ESNOG, Spanish Network Operators Group will celebrate their 2nd technical meeting next 16 of October at CESCA’s facilities with the participation of cutting-edge speakers such as Joao Damas from ISC and Michael Behringer from Cisco Systems. This group is focused on topics related with the telecommunication and Internet service providers’ world.

I will be giving a talk titled “Internet Pirates: Blackholing, Hijacking and other dirty tricks” which describes the threat behind Border Gateway Protocol (BGP) issues raised during the last months and specially how to face them from a Network Service Provider(NSP) perspective.

More information at 2nd ESNOG meeting website.

“CCN STIC Firewalls” training at INAP

Carlos Fragoso — Mon, 01 Sep 2008 08:00:52 +0000

Spanish National Cryptological Center (CCN) provides several security trainings for public institutions and defense bodies of Spain such as the CCN-STIC hands-on courses provided thanks to the collaboration of several partners such as Insectra Technology Services.

I am teaching the CCN-STIC Firewalls course during a week at INAP facilities in Madrid that allows students to understand how perimeter security works and how to face common security architecture issues with common and cutting-edge approaches.

“CCN STIC Intrusion Detection” training at INAP

Carlos Fragoso — Mon, 01 Sep 2008 08:00:29 +0000

Spanish National Cryptologic Center (CCN) provides information security security training on several hot topics to public institutions and defense bodies in collaboration with several recognized partners such as Insectra Technology Services.

I will be teaching “CCN STIC Intrusion Detection” hands-on training in Madrid at INAP facilities next september to aid alumni to know state-of-the art of intrusion detection techniques such as NIDS, HIDS, SEM, honeypots/nets, etc.