Connect with us   ​  

David Litchfield

David Litchfield is a computer security expert with a special focus on database security and web applications. He is the author of several books on the subject, for example the Oracle Hacker's Handbook, the Database Hacker's Handbook, SQL Server Security and the 1st edition of the Shellcoder's Handbook. As a security researcher he has found hundreds of critical security flaws in various products and worked closely with the vendors to fix the weaknesses to help protect their customers. Since 2007 he has been pioneering advances in database breach investigation processes and procedures and has developed a free database forensic tool suite to help incident responders. The efficacy of these processes and tools were proved during his investigation of the compromised database servers after the Sony Play Station Network breach of April 2011. Other development projects that David has headed include NGSSQuirreL, a database vulnerability assessment scanner and Typhon, now Auditor. Prior to joining Datacom TSS David founded and managed NGSSoftware before being acquired by NCC Group, v3rity which was acquired by Accuvant Inc, and Cerberus Information Security which was acquired by @stake, now Symantec. In the past he was a CHECK (precursor to the CREST scheme) team leader and contracted to GCHQ and has provided advice to the UK's Security Service, US DoD Information Assurance Directorate and the Bundesamt für Sicherheit in der Informationstechnik in Germany.

Twitter: @dlitchfield

Presentation Title
Hackproofing Oracle eBusiness Suite

A recent security assessment of Oracle's eBusiness Suite by David Litchfield revealed it to be riddled with critical security holes. This presentation will examine areas of weakness and detail the steps that should be taken to prevent exploitation. The talk will also consider wider implications such as the impact upon compliance and why were these issues not discovered sooner; some of the security bugs are over 15 years old! 


Conference Highlights

New Venue
Don't miss the best cyber security conference in Australia at the Surfers Paradise Marriott, only 150 m from Surfers Paradise beach

Conference MC
Comedian and Mathematician Adam Spencer will host the conference, Gala Dinner and Speed Debate

Career Café
Retreat to the back of the exhibition away from the noise for a real coffee at the AusCERT2016 Career Café and chat with specialist Infosec recruiters