“A9:Using Components with Known Vulnerabilities” Svyat Login · Workshop (60 minutes)

Known Security Vulnerabilities are those gaps in security that have been identified, either by the developer/vendor of the products used, by the user/developer, or by the hacker/intruder. To exploit known security vulnerabilities, hackers identify a weak component in the system by scanning the syst…

---

“Responsible disclosure: it's not all about the money.” Carlo Di Dato · Talk (30 minutes)

Starting from an introduction to "Responsible Disclosure" model, we will see this process in detail, pointing out the differences with "Full Disclosure" model, bug bounty programs and black market.
Lastly, three CVEs will be publicly disclosed and presented to the audience, in order to show a real …

---

“Information security academic minors in modern Ukrainian higher education” Trokhym Babych · Talk (30 minutes)

Nowadays higher education in Ukraine takes new challenges: required knowledge level for employment is low, knowledge sometimes are outdated, student oriented on self-education. Also, education in Ukraine mostly doesn't orient on lifelong education, so it doesn't prepare wide specialists. How modern…