Spoke on SQL Injection issues (see
below) at meetings of the Vancouver
CIPS Security SIG
Spoke on SQL Injection issues at the IT4BC
in Richmond, BC ("How
to own a BILLION Identities in Less Time
than it takes to Boil an Egg"
I will be presenting at the PIA-BC's
at the Beach
Club Resort in Parksville, Vancouver Island
BC, June 4-5.
The topic will
be "Private Investigators! - How to Protect
Your and Your Clients' Digital Assets", and
will cover best practices in IT and
Information Security for private investigation
firms (see here
for more details).
First informal meeting of the
Vancouver Chapter of OWASP (of which I am
chairman) at Steamworks! (http://www.owasp.org/index.php/Vancouver
Presented at the CIPS Security SIG
March 2010 War-games day (http://www.infosecbc.org
Taught a CWNA/SP
Kansas City KS of all places. Bah, humbug!
Made it to the OWASP Appsec DC
conference in Washington DC. First visit.
Avoid the politics and you will be ok. Came
second in the CTF competition ("I wuz cheated,
Presented to the Drupal User Group on
web application security (http://groups.drupal.org/vancouver
Finally put my money down and bought a
copy of "Hyperion", the first book in Dan
Simmon's Hyperion Cantos
series. Wonder what they'll do for the movie.
to London, UK, for the European
e-Identity Conference, June 25-26th, and to
Cardiff, Wales, for Jeff Wayne's War of the
Worlds Live on Stage, June 24 (based on
the book by H.G. Wells, www.thewaroftheworlds.com
the invasion and have the T-Shirt to
Played a small part behind the scenes
in determining the true origin's of Mr.
Coleridge's e-mails in White Rock local
election dispute (http://www.bclocalnews.com/news/46113347.html).
Wrote and passed the exam for the Certified Wireless Security
Still buried in the snow. Attending the
10th Annual Privacy and
February 2-4. We have had a flyer
the delegates' kits, advertizing our company
Buried under snow here on the Mountain.
Ain't goin' nowhere... (at least the silly
season is over!)
Taught a 5-day Certified Penetration
Testing Specialist (CPTS) class in
Ottawa,Canada. First visit to Montreal and
Quebec City too.
Reading the Hyperion Cantos
backwards - can't seem to find a copy of the
first book in the series ("Hyperion
"Blind SQL Injection" to students of the
University of British Columbia's (UBC)
Electrical and Computer Engineering (ECE)
School. The powerpoint is available here
Teaching three evening courses at BCIT
- "Introduction to Computer
Crime Studies (FSCT7220)
", "Cryptography Practice and
", and "Applied Wireless Networking
". I do not have a life!
Just finished teaching Ethics
for their NASP
Instructor for the Mile2
Penetration Testing Specialist
Tampa, Florida (July 7 through 12).
Finally obtained the Certified Penetration
Testing Expert (CPTE)
and Certified Penetration
Testing Specialist (CPTS)
online webinar 'The Art of Pentesting' in
conjunction with Mile2 and Nexient Learning. A
link to the online archive of this
presentation will be available soon.
successful presentation (13 students)
of our 4-day Web Application
Security course took place, Monday
May 12 to Thursday May 15, at the On-Track Computer
Training facility in downtown
Vancouver (1600 - 650 West Georgia St.) The
outline and some background
information is available here.
Atttended the RSA
Conference in San Francisco ,
Presenting Business Continuity
Planning (FSCT7130) course at BCIT.
Tampa (yes, the one in Florida),
for some training by Mile2 to become a Certified Pentest
Specialist (CPTS). Now Rui will be
even more dangerous! He will be teaching two
modules - wireless hacking and web
Attended the 9th Annual Privacy and
Security Conference and Exposition
in Victoria BC.
Attented the 10th WestCoast Security
in Vancouver, November 19 and 20.
Finished reading Philip Pullman's 'His
Dark Materials' trilogy. Soon to be a movie
starring Nicole Kidman and Daniel Craig
(the 007 guy). Oh, to be a Young Adult again.
Our 4-day Web Application
Security course in Vancouver, BC. has now
wrapped up. We will be presenting this
material again in early 2008. If you
are interested in attending please contact
course outline and some background
information is available here.
Started teaching Introduction to Computer
Crime Studies (FSCT7220) and Applied Cryptography
(FSCT8580) at the BC Institute of
Technology (BCIT). These courses are
part of the School of Computing and
Academic Studies Forensic Program.
Also started teaching Applied Wireless
Networking (COMP3660), based on the
Certified Wireless Network Administration
Rui is trying to get one more
certification under his belt (Certified Wireless
Security Professional, CWSP).
Project in the Yukon of all
Taught Ethics course at
the University of British
Columbia (UBC) (part of the NASP program).
the living is easy"
Finally finished plodding through Neal
Stephenson's book Cryptonomicon
below). If you venture this way, try to
distinguish the fact from the faction!
Rui presented a short talk at
May "Local Innovators" session, on his
experiences running a security consulting
I (Rui) am plodding through Neal Stephenson's
. From a
review by the Library Journal we have
"Computer expert Randy Waterhouse spearheads a
movement to create a safe haven for data in a
world where information equals power and big
business and government seek to control the
flow of knowledge. His ambitions collide with
a top-secret conspiracy with links to the
encryption wars of World War II and his
grandfather's work in preventing the Nazis
from discovering that the Allies had cracked
their supposedly unbreakable Enigma code." At
918 pages (and that includes the appendix by Bruce
describing the Solitaire Cipher
is not something to take in at one
sitting. I teach Cryptography at a local
it extensively in my work, so this book
(with it's off-hand and sometimes
detailed inclusion of cryptographic
techniques and history) is most interesting.
Very readable and highly recommended!
Rui taught the telecommunications security
course at the University
British Columbia (UBC)
(part of the ISSP
Taught part of the Business Continuity Planning
course at BCIT
Over 20 years of service
excellence - 1998-2020