Events / Program

Sichere Software entwickeln - Erfahrungen, Methoden, Werkzeuge

Date: 25.04.2013
Duration: 10:00-16:45
Location: Seminarraum 18
Rundeturmstraße 10
64283 Darmstadt
Diese Veranstaltung wird als Weiterbildung im Sinne der T.I.S.P.-Rezertifizierung anerkannt

Program

10:00
Albert Zenkoff
Software AG
Sven Türpe
Fraunhofer SIT
Begrüßung und Einführung
10:15
Wouter Slegers
Your Creative Solutions
Wouter Slegers
"How to break certified products" aka the limits of product security certifications
  • Common Criteria
  • security product evaluations
  • hacking
CAST Members can download the documents here.
10:55 Kaffeepause
11:25
Bruce Sams
OPTIMAbit
Bruce Sams
Ein Internationaler Benchmark für Sichere Software Entwicklung
  • Secure SDLC
  • OpenSAMM
  • SDLC Benchmarking
  • Praxisbericht
CAST Members can download the documents here.
12:05
Petra Barzin
Secorvo
Petra Barzin
CPSSE -Die Lizenz für sichere Softwareentwicklung
  • Vorstellung ISSECO
  • Themen der CPSSE-Schulung
  • Erfahrungen mit Personenzertifikaten im IT-Bereich
CAST Members can download the documents here.
12:45 Mittagsbuffet
14:00
Heiko Weber
Software AG
Heiko Weber
Security Scanning in Agile Software Development
  • challenges in agile software development
  • integration of security scanning into the development process
  • benefits
CAST Members can download the documents here.
14:10
Chris Eng
Veracode
Chris Eng
Detecting Security Issues with Binary Static Analysis
  • static
  • binary
  • flaw
  • vulnerability
  • control flow
  • data flow
CAST Members can download the documents here.
14:50
Oliver Zendel
BSI
Oliver Zendel
Overview – techniques for secure software engineering
  • Dealing with Complexity in modern IT Systems
  • Best Practices for Requirements Analysis
  • Best Practices for Threat Analysis
  • Best Practices for Designing and Implementing Secure Software
  • Mitigating the Risks (Testing, Penetration etc)
CAST Members can download the documents here.
15:30 Kaffeepause
15:50
Eric Bodden
TU Darmstadt - EC-SPRIDE
Eric Bodden
The Java and Android Security Architectures - Lessons Learned
  • Recent Java and Android Vulnerabilities
  • Writing Secure Applications
  • Design Considerations
CAST Members can download the documents here.
16:30 Zusammenfassung und Schlusswort

Press Announcements

Hacking allein reicht nicht.
17.04.2013 ExtremNews

Information and Contact

If you have any questions please contact:

Moderators

Albert Zenkoff
Software AG
Email:

Sven Türpe
Fraunhofer SIT
Email:

Administration

Simone Zimmermann
CAST e.V.
Tel.: +49 6151 869-230
Email:

Routing

Start


CAST e.V.
Rheinstraße 75
64295 Darmstadt

Upcoming CAST Events

ID:SMART 2025 Konferenz 19.-20.02.2025
Recht und IT-Sicherheit | Datenschutzgerechter Umgang mit Künstlicher Intelligenz Anforderungen der KI-VO und DS-GVO in der Praxis 06.03.2025
hot topic "Kryptoagilität" 15.05.2025
MedCAST 25 - Sichere, digitale Transformation der Gesundheitswirtschaft 22.05.2025
24th International Conference of the Biometrics Special Interest Group (BIOSIG 2025) 25.-26.09.2025
Quantentechnologie und Quantencomputer-resistente Sicherheit 23.10.2025
Cybersicherheit für den Mittelstand 20.11.2025
CAST e.V. 2024