|
| |  |
|
Tuesday, January 19 - Atrium Ballroom |
| 7:00am-8:00am Complimentary Continental Breakfast |
| 8:00am-8:15am General Chairman’s Welcome |
8:15am-9:15am Keynote Address and Question & Answer Session: Senator Jay Rockefeller |
9:30am-10:30am Panels A and B in parallel |
Panel A Topics
|
What characteristics of a power grid make it part of the national critical infrastructure?
We have seen multiple new reports of power grids being vulnerable to Internet attacks. Under what circumstances is it necessary to have power grids connected to the Internet?
Will smart grids reduce the likelihood that any individual power grid is considered critical either at the community or national level?
Should the electric grid be considered a national border? If so, to what extent should the government provide cyber surveillance for or protection from attacks on power grids?
|
| Panel B Topics
|
How do cyber search and seizure laws differ from physical search and seizure laws?
Who should be able to access databases that include sensitive personal information on individuals and for what reasons? What types of crimes cannot be solved without such databases?
In your experience, are law enforcement officers adequately trained to investigate cyber-attacks?
Other than cyber forensics tools and techniques, what other types of information technology does law enforcement depend upon to investigate and apprehend criminals?
|
|
|
Electric Power Distribution
| Jeffrey S. Katz | Chief Technology Officer, Energy and Utilities industry, IBM |
| Dr. Ann Campbell |
Director Cyber Strategic Thrust, Sandia National Laboratories |
| Erfan Ibrahim |
Technical Executive, Electric Power Research Institute (EPRI) |
| Martin Libicki |
RAND Corporation, Author, Cyberdeterrence and Cyberwar |
| Eric Trapp |
Accenture Technology Consulting Practice Leader for the Utilities Industry |
| Ben Stewart, P.E. |
Sr. Vice President Facility Engineering, Terremark Worldwide, Inc.
|
| Paul Winstanley |
Director of Energy Initiatives, Stevens Institute of Technology |
|
Law Enforcement, Privacy, Civil Rights & Personal Liberties
|
LTG Robert J. "BOB" Elder Jr. | United States Airforce (Retired) |
|
Gregory T. Nojeim | Director of the Project on Freedom, Technology & Security at the Center for Democracy & Technology
|
| Pablo Martinez |
Assistant Special Agent in Charge, US Secret Service, Criminal Investigations |
| Christopher Day |
Senior Vice President Secure Information Systems, Terremark Worldwide, Inc. |
| Greg Crabb |
Inspector in Charge, US Postal Inspection Service, Criminal Investigations for Cyber |
| Christopher Calabrese |
Legislative Counsel, American Civil Liberties Union |
|
|
| 10:30am-11:00am Break |
|
11:00 am to 12:00 Noon Panels C and D in parallel
|
Panel C Topics
|
Where performance for telecommunications services is impacted by cybercriminals, should this be considered an exception to customer expectations for transmission bandwidth?
In what circumstances should users of wireless services have an expectation of privacy?
Would adoption of required security standards for cellular services increase or decrease resiliency, and why?
Assuming it was mandated to devise procedures to protect telecommunications for critical life support services such as hospitals and emergency response teams, how would that impact policy on net neutrality?
|
|
Panel D Topics
|
What motivates financial firms to invest in technologies that improve security posture?
If all computer records were lost due to catastrophic failure, how would customers be able to claim financial assets?
To what extent could a rogue bank introduce false transactions that would balance sheets worldwide?
Are there any solutions on the horizon that would significantly strengthen information assurance efforts?
|
|
|
Wireless and Internet Service Providers (ISP)
| Marcus Sachs, P.E. | Executive Director for National Security and Cyber Policy, Verizon |
|
Tom Ruff | Vice President, Public Sector, Akamai |
|
Tom Arthur | President and Chief Executive Officer of RedSeal |
| James Arden Barnett, Jr. , Rear Admiral (Ret) |
Chief, Public Safety and Homeland Security Bureau, Federal Communications Commission |
| John N. Stewart |
Vice President & Chief Security Officer, Cisco |
|
Finance & Economics including Venture Capital Markets
|
Pascal Levensohn | Founder and Managing Partner of Levensohn Venture Partners |
|
Ted Schlein | Managing Partner, Kleiner Perkins Caufield and Byers |
| David Weild |
Founder, Capital Markets Advisory Partners, former Executive Vice President and Vice Chairman, NASDAQ (2001-2004) |
| Chan D. Lieu |
Senior Professional Staff, Senate Commerce, Science and Transportation Committee |
| William P. Crowell |
Security Consultant, Former Silicon Valley CEO and former Deputy Director, National Security Agency (1994-1997) |
|
|
| 12:00 Noon-1:30pm Luncheon Keynote Industry Perspective:
Dr. Edward G. Amoroso |
|
1:30pm-2:30pm Panels E and F in parallel |
Panel E Topics
|
Where life and death decisions are based on remote communications, what measures are appropriate to ensure that the remote end of the communications link is properly authenticated?
In large medical practice community, what are the cost-benefit tradeoffs between ease of access to information and patient privacy concerns?
What is the appropriate level of authorization required to administer dosage and other treatment delivery systems technology?
Do corporations enforce HIPPA compliance in every system where patient healthcare records are accessible? If not, what are the exceptions and the rationale behind them?
|
|
Panel F Topics
|
Are emerging security technologies up to the task of reducing Internet fraud? Why or why not?
What new types of security issues have been introduced with the advent of cloud and virtual computing?
What security-specific emerging business models will address the complex critical infrastructure issues that we have been discussing at this conference?
Which, if any, industry standards have helped drive successful security technology solutions?
|
|
|
Medical & Health Affairs
|
The Honorable James B. Peake | United States Secretary of Veteran’s Affairs (2007-2009), Surgeon General of the United States Army (2000-2004) |
| Charles Gephart | Director of IT Field Security Operations, Department of Veterans Affairs
|
| Gail L. Graham | Deputy Chief Officer for the Veterans Health Administration (VHA) Office of Health Information, Department of Veterans Affairs (VA)
|
| Darren Lacey |
Chief Information Security Officer, Johns Hopkins Medicine
|
| Representative (invited) | Blue Cross Blue Shield Association
|
|
Edward C. Eichhorn | President, The Medilink Consulting Group, LLC
|
|
Emergent Technologies, Innovation & Business Growth
|
Robert D. Rodriguez | Chairman, Security Innovation Network (SINET) |
|
Steve Elefant |
Chief Information Officer, Heartland Payment Systems |
|
Matthew D. Howard | General Partner, Norwest Venture Partners |
|
John Weinschenk | President and CEO, Cenzic |
|
Alan Kessler | President of TippingPoint, 3Com Corporation |
|
|
| 2:30pm-3:00pm Break |
|
3:00pm-4:00pm |
|
PLENARY PANEL I: GLOBAL CONNECTIVITY, MARKETS, AND CORPORATIONS
|
We recently saw a report in the Wall Street journal that the software used to attack Citigroup and Government sites last June was a $26.00 off-the-shelf software. Should such software be considered munitions?
How has the International Traffic in Arms Regulations (ITAR) impacted global cybersecurity business competitiveness? Has it changed the competitiveness of the US Government from an international perspective?
Should the ability of nations to legislate where and how data about their citizens may be stored be a subject for international treaties?
Should Internet connection points between countries be considered International borders?
|
| Dr. Joseph Mitola III |
Vice President for the Research Enterprise, Stevens Institute of Technology |
|
Eric Luiijf, MSc | Principal Consultant, Netherlands Organization for Applied Scientific Research(TNO), Defense, Security and Safety
|
|
Gary Gong | Executive Vice President, Institute for Information
Industry (III), Taiwan
|
|
Michael Aisenberg | Chair, ABA Information Security Committee (Section of Science and Technology Law), Principal, Federal and Homeland Security, CIIS, The MITRE Corp
|
|
Lt. Col. Husin bin Hj Jazri (Retired) | Chief Executive Officer (CEO), CyberSecurity Malaysia
|
|
|
| 4:00pm-4:45pm Break |
| 4:45pm-5:50pm Evening Reception |
| 6:00pm-8:30pm Awards Banquet |
| 7:15pm Guest Speakers: Melissa Hathaway and General Jim Jones |
| 8:30pm Adjourn |
| Wednesday, January 20 - The Hall |
| 7:00am-8:00am Continental Breakfast |
| 8:00am-8:15am General Chairman’s Remarks |
8:15am-9:15am Keynote Speaker and Question & Answer Session: Congressman Rush Holt |
| 9:30am-10:30am Panels G and H in Parallel |
Panel G Topics
|
We just heard that the requirements for encrypting Drone signals were not considered important ten years ago because at that time, the threats were different. In an environment where weapons systems take decades to produce, how is it possible for cybersecurity requirements to keep up?
Private sector critical infrastructure categories have been defined by the Department of Homeland Security in the National Infrastructure Protection Plan. Would they be easier to defend if their network boundaries were well-defined? Why or why not?
Existing security standards such as NIST recommendations assume a fairly static environment. What special circumstances of information sharing on the battlefield should inform cybersecurity policy decisions?
Where intelligence becomes more and more dependent on signal processing, what can we do to let the signals we need into systems without opening ourselves to deception attacks?
|
| Panel H Topics
|
In the NextGen project, safety and security are closely interrelated; to what extent did safety requirements influence system security requirements? Are there principles that were observed that would make sense to be policy for other or all critical infrastructures?
Several key NextGen capabilities will be provided through contractual service agreements instead of by Government owned and operated systems. What is the resiliency backup strategy if these contractors do not meet the performance or security objectives? To what degree should the Government understand how the contractor decides to meet the performance and security requirements?
NextGen requires multi-agency cooperation for implementation. What types of security standards or policies facilitate multi-agency cooperation on security objectives? What are the key multi-agency security policy challenges for NextGen?
As aircraft are equipped with advanced avionics capabilities, information received from aircraft will guide more and more air traffic management decisions. Also, aircraft with advanced avionics capabilities will be able to receive information from other aircraft and the air traffic management system. How should it be decided which aircraft are invited, or required, to participate in this information sharing? What exchanged information should be protected, and protected in what ways (e.g., confidentiality, integrity, non-repudiation)?
|
|
|
National Defense & Cybersecurity: Net Centric Operations
| Dr. Joseph Mitola III |
Vice President for the Research Enterprise, Stevens Institute of Technology |
| Ellen McCarthy |
President, Intelligence & National Security Alliance | | Robert R. Jueneman | Chief Scientist, SPYRUS, Inc. | | Paige Atkins | Director, Defense Spectrum Organization, DISA |
| Dan Geer | Chief Information Security Officer, InQTel |
| John Osterholz | Vice President, Integrated Cyber Warfare and Cybersecurity, BAE Systems and Chair Emeritus of the NCOIC Technical Council |
|
Next Generation Air Transportation System
| Dr. Agam Sinha | The MITRE Corporation, Senior Vice President and General Manager, Center for Advanced Aviation System Development |
| David M. Bowen | Assistant Administrator for Information Services and Chief Information Officer, Federal Aviation Administration |
| C.R. Collazo | Director of Information Assurance (IA), Cryptologic Systems Group (CPSG), Electronic Systems Center, USAF AFMC CPSG/NI |
| John Kefaliotis | Vice President, Next Generation Transportation Systems |
| Kevin Harnett | Program Manager, US Department of Transportation at the Volpe National Transportation Systems Center |
|
|
|
10:30am-12:00pm |
|
PLENARY PANEL II: GLOBAL IMPLICATIONS OF CYBERSECURITY POLICIES
|
Has the International Traffic in Arms Regulations (ITAR) or related policies and regulations are helping or hindering global security governance and oversight?
Cyberforensics techniques often require target systems to be disabled. Under what circumstances would it be acceptable to disrupt business operations to complete a cybersecurity investigation?
Organized crime's exploitation of electronic commerce is often facilitated by identity theft. What policy changes would facilitate more accurate identification of Internet users?
Cybersecurity monitoring techniques have been criticized as casting too broad a net. What is an appropriate set of criteria with which to justify widespread cyber-tapping measures?
|
| The Honorable Michael W. Wynne |
21st Secretary of the Air Force |
|
James X. Dempsey | Vice President for Public Policy, Center for Democracy & Technology |
| Jim Richberg | Assistant Deputy Director for Cyber at the Office of the Director of National Intelligence |
| Brigadier General John A. Davis | Deputy Commander, Joint Task Force-Global Network Operations Defense Information Systems Agency |
| Brian J. Peretti, Esq. | Financial Services Critical Infrastructure Program Manager
Office of Critical Infrastructure Protection and Compliance Policy
United States Department of the Treasury
|
| Dale W. Meyerrose | Vice President and General Manager for Cyber Initiatives, Harris Corporation |
| Dr. Douglas Maughan | Program Manager, Homeland Security Advanced Research Projects Agency (HSARPA), Science and Technology Directorate Department of Homeland Security |
|
|
12:00pm-1:30pm Luncheon Keynote Speaker
Chairman’s Concluding Remarks
The conference concludes after the luncheon keynote |
|
|
|
|
|
|
