2012.0×0005 (May)
May Meeting details
Speaker: Auston Holt “c3llardoor”
Deputy CISO, atsec information security corporation
Topic: Security-Sanctification
Date: May 4th, 2012
Time: 12:00 – 1:00 p.m. with introductions beginning at 11:30 a.m.
Venue: Microsoft Technology Center at Quarry Oaks 2.
Address: 10900 Stonelake Blvd. Suite 225. Austin, TX 78759
Synopsis:
Application security evaluation approaches have come in many forms over the years from United State’s Rainbow Series to Europe’s Information Technology Security Evaluation Criteria (ITSEC). The current mutually accepted world wide standard for application security evaluation is the Common Criteria for IT Security Evaluation.The Common Criteria’s highest defined level of assurance, evaluation assurance level seven- “Formally Designed and Tested,” will be discussed including a brief touch on all areas of the total package. Applying this model to our life, we’ll discuss how hard one needs to work to attain formal verification that our current design in life is bringing us ultimate security.
Application security evaluation approaches have come in many forms over the years from United State’s Rainbow Series to Europe’s Information Technology Security Evaluation Criteria (ITSEC). The current mutually accepted world wide standard for application security evaluation is the Common Criteria for IT Security Evaluation.The Common Criteria’s highest defined level of assurance, evaluation assurance level seven- “Formally Designed and Tested,” will be discussed including a brief touch on all areas of the total package. Applying this model to our life, we’ll discuss how hard one needs to work to attain formal verification that our current design in life is bringing us ultimate security.
Speaker Bio:
Auston Holt is the Deputy Chief Information Security Officer (CISO), and Business Development Manager for atsec information security corporation. He has a total of seven years experience in information technology security evaluations with the Common Criteria (CC) as a consultant or evaluator. In addition to his CC experience, he serves as Deputy Quality Manager for atsec’s ISO/IEC 27001 certified Information Security Management System, and has successfully led the accreditation of atsec’s GSA FIPS 201 Evaluation Program (EP) laboratory. Recent speaking engagements include: briefings in Washington D.C. at NIST and GSA information days, a presentation at the Capital of Texas Chapter of the Information Systems Security Association (Austin ISSA), and guest lectures at the University of Texas at Austin. Auston is the Vice President of the Austin ISSA, a member of HackFormers, the Open Web Application Security Project (OWASP), a Certified Information Systems Security Professional (CISSP), and a graduate of the University of Texas at Austin with a Bachelor of Arts in Computer Science.