• OperatorRoundtable
  • PanelPanel
  • Speaker HighlightSpeaker Highlight
  • 09.00

    • Introductory speech and speed networking: meet your fellow attendees and swap business cards in a relaxed and informal setting

  • 09.05

    • Chairman’s speech / industry overview

  • Janne Uusilehto, Head of Nokia Product Security, Nokia, Global
  • Topic

    • KEYNOTES: MOBILE SECURITY LANDSCAPE: FUTURE VISION

  • 09.15

    • Ensuring secure future mobile services: an operator case study: Securing mobile services to subscribers, network and devices

  • Anders Hansmats, Senior Security Advisor, Mobility Services, Teliasonera, Norway

    • + expand

    • Secure service development and long term security thinking
  • Topic

    • LAW ENFORCEMENT, GOVERNMENT AND THE MOBILE DEVICE

  • 09.45

    • Telenor Serbia – analysis of network vulnerability to hackers and moles: Joined-up systems to lock out intruders

  • Milan Nikoli, Security Manager, Security Department, Corporate Affairs, Telenor, Serbia

    • + expand

    • Security challenges of a mature mobile operator taking over an operation in a deficiently regulated market and a state in political transition, the Telenor Serbia experience
    • Mobile as a tool for terrorism and serious crime: ''It’s not difficult to hide yourself in mobile network”
    • Fraudulent usage of mobile as an illegal revenue stream for the crime eco-system; blurred delimitation with cyber and trans-national organised crime
    • Mobile as a target of criminals, industrial espionage and the private security sector. A threat to both trust and confidence in services and business credibility of mobile operators
    • Are we missing the big picture of converging (both ICT and criminal) networks? Liaison of regulators, law enforcement, telecom operators and industry as an imperative part of solution
  • 10.15

    • Policing/criminal implications of m-payments and banking – forecasting abuse points, prevention and holistic industry solutions

  • Andy Williams, Detective Sergeant, National Mobile Phone Crime Unit, UK

    • + expand

    • Working with industry – securing networks, handsets and immobilising criminals cross network and region (Biometrics, pin and 2d barcodes)
    • Organised criminal networks and their movements in m-payments fields
    • Working with networks and operators to accelerate phone blocking after loss/theft
    • NMPU – a history and background research into the security concerns of mobile banking and payments services
  • 10.45

    • Securing public sector information effectively in the mobile domain: Home Affairs vision

  • Rt Hon Keith Vaz MP, Chairman, House of Commons Home Affairs Committee, UK

    • + expand

    • Establishing the concerns of the committee: recent identity security risks (passport/data cards) and how to mobilise identity information without compromising security
    • How will mobile devices be utilised for identity authentication – social impacts and considerations
  • 11.15

    • Refreshments and networking break

  • Topic

    • CONSUMER SECURITY ISSUES

  • 11.45

    • 15 MIN WORKSHOP – HOW TO EFFECTIVELY AUTHENTICATE IDENTITY

  • Tom Craig, Fraud Expert, UK
  • 12.00

    • Panel discussion: Tackling ownership: What is the best way of protecting devices and content from hacker/user modification?

  • Dr. Hermann Sterzinger, Head of Business Developement Unit, Giesecke & Devrient, Germany
  • Steven Atkinson, Co-founder and Chief Architect, Monitise, UK

    • + expand

    • Should users be able to modify their handsets?
    • Assessing the impact of unlocking possibilities and extrusion/intrusion leakages
    • Getting ahead of reverse engineering : securing mobile 2.0
    • How can DRM be upheld and piracy stopped – best practice conditional access
    • Consenting to surveillance and security – where is the line drawn?
    • The ins and outs of biometrics and forensics in the mobile domain
  • 12.45

    • Balancing security and forensic rescue: designing out lost evidence problems from security solutions

  • Dominic Kirsten, Head of Research and Development and Seyton Bradford, Mobile Forensic Specialist, Forensic Telecommunications Services

    • + expand

    • Mobile security from a forensic evidential point of view
    • Current security measures on mobile devices and how this effects obtaining evidence
    • How to overcome measures for forensic examination, their weaknesses and strengths
    • The forensic problems caused by methods of circumventing security features
  • 13.15

    • Lunch Break

  • Topic

    • INTERFACING WITH THE WEB

  • 14.15

    • How the EU and Governments around the world are reacting to increasing threats with content delivered over the internet

  • Rainer Rehm, Security Solution Architect, Nokia Siemens Networks

    • + expand

    • Regulators and care takers need to react
    • Compliance and content security
    • Different possible mitigation strategies
    • Outlook for the future
  • 14.45

    • What responsibility do social networking sites/mobile 2.0 sites have to protect consumer information?

  • Hadi Nahari, Principal Security Architect, eBay, U.S

    • + expand

    • How can sites best protect consumer information from malware harvesting identity data? – identifying formulaic behaviour and acting fast
    • Site responsibility to prevent damaging mass behaviour; filtering damaging user-content vs. protecting user-privacy
    • Assessing the future role of converged log in sites
  • 15.15

    • BONDI Initiative: Offering richer and more secure web applications for mobile

  • Mark Priestley , Security Technologies Researcher, Vodafone Group R&D, UK

    • + expand

    • Consistent access to key interfaces across mobile devices
    • Appropriate security to enable user trust
    • Which reference implementation will cement the BONDI recommendations?
    • Co-ordinating web and mobile communities to maximise success
    • Achieving interoperable new services for users across multiple devices and operators
  • 16.00

    • Refreshments and networking break

  • Topic

    • BUSINESS TO BUSINESS MOBILE SECURITY

  • 16.30

    • Advanced mobile data services – case study one. Content security for mobile applications: the piracy issue for the creative content industry

  • Thomas Nogues , Director of Technology, EMEA, Motion Picture Association (MPA),

    • + expand

    • The art of securing high value audio visual content. What does it mean for mobile security? Where does the responsibility lie?
    • How can contents right management be best upheld and piracy addressed? Establishing the technical and policy methods which ensure an adequate level of content security and DRM.
  • 17.00

    • Advanced mobile data services – case study two. Mobile payments: Advancing payments security

  • Steven Atkinson, Co-founder and Chief Architect, Monitise, UK

    • + expand

    • Newspaper headlines and real problems
    • Security characteristics of the interface and environment
    • Risk analysis for payment systems: the security lifecycle for mobile phone banking
    • Some thoughts, experiences and recommendations
  • 17.30

    • Panel discussion: Assessing the mobile security threat: fraud, threats, hype, and measured solutions

  • Tom Craig, Fraud Expert, UK
  • Andy Williams, Detective Sergeant National Mobile Phone Crime Unit
  • Anders Hansmats, Senior Security Advisor, Mobility Services, Teliasonera, Norway

    • + expand

    • What are the potential costs of mobile security breaches?
    • Desktop vs. mobile – viral infection on the desktop and keeping the mobile clean
    • Analysing the benefits of applications remaining signed / sandboxed to prevent security defects vs. the sacrifices of ‘closing’ applications developments
    • Is layered signing the answer for mobile?
    • Prompting versus not prompting the user
    • Usability issues
    • The need for a secure hardware platform and where the real threats are – embedded hackers
  • 18.15

    • End of day two conference. Chairman summary