Meeting: 2018.11.28 Written by thehask on November 27, 2018

2018, That’s a Wrap!

This months meeting is sponsored by GoSecure, whom have also committed to being AtlSecCon Platinum sponsor in 2019! Thank you for the continued support. This months sponsored speaker is Tien Phan who will be presenting “User Identification via a Neural Network Based Language Model”.

There are multiple community speakers to close out the year and we are looking forward to some great lightning talks. This months meeting will be our last for the 2018 calendar year as we break to celebrate the holidays with our friends and families in December.

Attendance to HASK meetings is free and we are a welcoming and open community. Please join us for an evening of networking and great discussions about all things AtlSecCon and infosec.

Thank you,
Travis and the AtlSecCon Board.

November Meeting Sponsor:

Venue:

Historic Properties
1887 Upper Water St
3rd Floor (Above Lower Deck)
Halifax, NS

Agenda:

6:00 – 7:00 PM  Complimentary apps and drinks from our meeting sponsor GoSecure
7:00 – 7:30 PM  GoSecure speaker Tien Phan
7:45 – 9:00 PM  Community talks from Julien Savoie, Moussa Noun

Sponsored Presentation:

Tien Phan – User identification via neural network based language model

The idea is simple:

  • If you read a lots of emails/messages from a person, you might be able to recognize that person’s emails/messages.
  • So you want to train computers to do the same thing.

The application is open and depends on our creativity. Including, but not limited to:

  • User/Group of users identification.
  • Actively detection if the same user is using the account (which is not possible with username+password or two/three factors)
  • Detect if an account is compromised and used to spread spam/phishing.

The content of the talk:

  • Ideas/motivations
  • Methodology
    • Approach
    • Dataset
    • Machine learning techniques/algorithms
  • Lots of visualizations
  • Some demos on the extracted machine learning features
  • Results
  • Conclusion

Community Presentations:

Julien Savoie – Title: Defeating IPv6 privacy extensions

Abstract: This will be a brief follow up to last months talk on general IPv6 security. Given that privacy addresses are selected at random, and not derived from a MAC address, tracking abuse can prove difficult.  While in corporate environments, it’s feasible to disable such privacy addresses, in BYOD or public access networks this is not the case. What follows will be a number of solutions for tracking these random addresses back to machines and ultimately users.

Moussa Noun – Title: How to Communicate Cyber Security to the Business

Abstract: Over the course of my years in pen-testing as a social engineer, I’ve learned a few tricks that I’ve ported over to my career as a cyber security professional in a business.