Google Tech Talks
December, 14 2007

ABSTRACT

About Gemalto

Gemalto (Euronext NL 0000400653 GTO) is the leader in digital security with pro forma 2006 annual revenues of €1.7 billion, more than 85 offices in 40 countries and about 10,000 employees including 1,300 R engineers.
In a world where the digital revolution is increasingly transforming our lives, Gemalto’s solutions are designed to make personal digital interactions more convenient, secure and enjoyable.
Gemalto provides end-to-end digital security solutions, from the development of software applications through design and production of secure personal devices such as smart cards, SIMs, e-passports, and tokens to the deployment of managed services for its customers.
More than a billion people worldwide use the company’s products and services for telecommunications, financial services, e-government, identity management, multimedia content, digital rights management, IT security, mass transit and many other applications.

As the use of Gemalto’s software and secure devices increases with the number of people interacting in the digital and wireless world, the company is poised to thrive over the coming years.
Gemalto was formed in June 2006 by the combination of Axalto and Gemplus.
For more information please visit www.gemalto.com.

Speaker: Kapil Sachdeva
Kapil Sachdeva is a Software Technologist with Gemalto, Technology & Innovation. The primary focus of Kapil’s work is on the design and development of next generation smart card operating systems, virtual machines (.NET and Java) and fast XML parsers. Lately Kapil has been focusing on Identity Management, participating in specification committees within Liberty Alliance, building working prototypes for involving Windows CardSpace, WS-* and OpenID, and developing applications for smart cards for Identity Management. Kapil is also involved with European Identity Management initiatives such as Fidelity and FC2. Kapil’s work has been instrumental in bridging the gap between multi-application smart cards and Identity Management. You can read Kapil’s musings in his blog “Smartcard Serenity” http://www.dotnetcard.com/Blogs/ksachdeva/

Duration : 1:1:50 Views : 4234.

Read the rest of this entry »

Google Tech Talks
November, 30 2007

ABSTRACT

Existing systems often do a poor job of meeting the principle of least privilege. I will discuss how object capability systems and language-based methods can help address this shortcoming. In language-based object capability systems, an object reference is treated as a capability; unforgeability of references ensures unforgeability of capabilities; and all privileges are expressed as capabilities in this way. This makes it possible to decompose the system into distrusting “privilege-separated” components, providing each component with the least privilege it needs to do its job; to reason about the privileges and powers available to various program elements, often in a local (modular) way; and to avoid common pitfalls, such as confused deputy and TOCTTOU vulnerabilities.

I will attempt to introduce the audience to some work in this area that is perhaps not so widely known, and I will describe some work in progress to construct a subset of Java, called Joe-E, that is intended to enable capability-style programming using a programming syntax that is familiar to Java programmers.

Speaker: David Wagner
David Wagner is an Associate Professor in the Computer Science Division at the University of California at Berkeley with extensive experience in computer security and cryptography. He and his Berkeley colleagues are known for discovering a wide variety of security vulnerabilities in various cellphone standards, 802.11 wireless networks, and other widely deployed systems, and he has published two books and over 90 peer-reviewed scientific papers. David is a founding member of the ACCURATE center on electronic voting. He is active in the areas of systems security, cryptography, and electronic voting.

Duration : 0:59:49 Views : 2566.

Read the rest of this entry »

with Bill Curci, Kevin Strohmeyer and Roger Calnan

Duration : 0:9:7 Views : 2.

Read the rest of this entry »

featuring Bill Curci, Kevin Strohmeyer and Roger Calnan

Duration : 0:9:59 Views : 6.

Read the rest of this entry »

This animation shows the benefit of secure printing. With Java Embedded Ricoh MFP, Software developer can embed their own solution in the Ricoh MFP devices.

Duration : 0:2:23 Views : 54.

Read the rest of this entry »

http://live.pirillo.com - How much of a security risk is it to not update your Java Runtime Environment? Well, it’s definitely a good idea to always update. Usually, and update addresses a security issue.

Duration : 0:5:51 Views : 2353.

Read the rest of this entry »

I went up stage and sang a part from truth of a liar then got pulled away by security. they are awesome

Duration : 0:1:22 Views : 526.

Read the rest of this entry »

“Core Security Patterns”,Author Ramesh Nagappan, Java Technology Architect at Sun Microsystems, discusses core security patterns that are crucial for secure programming.

Book:Core Security Patterns: Best Practices and Strategies for J2EE,Web Services, and Identity Management http://www.phptr.com/title/0131463071
ISBN: 0-13-146307-1

With extensive industry experience, he specializes in Java distributed computing and security architectures for mission-critical applications. Previously he coauthored three best-selling books on J2EE, EAI, and Web Services. He is an active contributor to open source applications and industry-standard initiatives, and frequently speaks at industry conferences related to Java, XML, and Security.

Duration : 0:6:39 Views : 1131.

Read the rest of this entry »

File sharing and file transfer solutions, any platform, anywhere. HELIOS WebShare UB+ File Transfer Platform provides users on any platform, anywhere, full upload/download, viewing and markup of your most vital documents. Mac™, Windows™, Palm™, Java™, Quark™, Word™… the HELIOS WebShare UB+ makes for simple, seamless file sharing, transfer and document management. http://www.helios.com

Duration : 0:0:40 Views : 237.

Read the rest of this entry »

One of the biggest challenges facing heterogeneous enterprises today is the ability to provide secure and compliance access, authentication, and authorization of users to all systems, regardless of the platform.

Microsoft Active Directory (AD) has proven ideal in meeting this objective for Windows resources. Unfortunately, AD can’t provide the same level of security, compliance, and scalability to Unix, Linux and Java systems by itself. Quest Software can bridge that gap.

In this recorded Webcast, Extending Native AD Capabilities to Unix, Linux and Java, Jackson Shaw, Senior Director, Product Management - AD, will show you how to:

Make AD the basis for enterprise-wide identity management.
Leverage the security and compliance of AD, for the rest of your enterprise.
To create a single sign-on ‘trusted realm’ for Windows, Unix, Linux and Java systems.

Duration : 0:42:49 Views : 1772.

Read the rest of this entry »