Check out the new USENIX Web site. Security '98 Symposium
 
 
Table of Contents
M1   Security on the World Wide Web
Daniel Geer, CertCo, LLC, and Jon Rochlis, SystemExperts Corp.

"Excellent execution of intro - to concept - to drill down facts. Both instructors were fabulous at responding to questions on the fly as well as establishing majority interest right away."
-- Delores Quade, NFR Inc, 1996 Tutorial Attendee

Who should attend: Anyone responsible for running a web site who wants the understand the tradeoffs in making it secure. Anyone seeking to understand how the web is likely to be secured.

The World Wide Web is perhaps the most important enabler (so far) of electronic commerce. It has grabbed the popular imagination and the engineering and marketing efforts of a generation of on-line entrepreneurs and consumers. But it was initially designed with little if any thought to industrial strength security. Over the past several years numerous proposals have surfaced to secure the web. This course will survey them with the goal of understanding the strengths and weaknesses of each. The topics covered include:

-    Client/server network security
-    Brief overview of encryption and its role in all security
-    Simple schemes: Basic Auth
-    Prevailing protocols: SSL, S-HTTP, PCT
-    IP Security
-    Payment protocols: Cybercash, Digicash, Open Market, First Virtual, Visa/Mastercard (SET) and others
-    Secure operation: configuration, containment, interaction with firewalls, replication, proxy servers, logging

Daniel E. Geer, Jr. Daniel E. Geer, Jr. is vice president of CertCo, LLC, a market leader in digital certification for electronic commerce. He has a long history in network security and distributed computing management as an entrepreneur, consultant, teacher and architect. He is a co-author of the recently-published Web Security Sourcebook.

Jon Rochlis Jon Rochlis is a senior consultant for SystemExperts Corp. He provides high level advice to businesses in the areas of network security, distributed systems design and management, high-availability, and electronic commerce. Before joining SystemExperts, Mr. Rochlis was engineering Manager with BBN Planet, a major national Internet service provider.

Tutorials at-a-Glance     Symposium Speakers

 
 

Symposium at-a-Glance - Tutorials - Technical Program - Registration -
About Symposium Speakers - Symposium Info - Hotel & Travel Info - Security 98 brochure HOME 		Symposium Index
Events Calendar
USENIX home