1998 DOE Information Security Conference Presentations

The 20th Computer Security Group Training Conference

April 27-30, 1998

St. Petersburg, Florida

Training Session A: Digital Signatures 101, Brian Desind, Allied Signal; How to Use Certificates and PKI, John Long, SNL; Certification Implementation: the Good, the Bad, and the Ugly, Jim Rome, ORNL; Secure Packetshield Technology, Dr. Eva Bozoki, Fortress Technologies; Panel: Operating a Real World PKI, Clem Boyleston, Computer Data Systems, Inc.; Brian Desind, AlliedSignal; John Long, SNL; Larry Parker, LANL; and Frank Ploof, LLNL

Training Session AA: Tutorial on DOE Manual 471.2-2 for Classified Information Systems Security -- What the New Manual Means to You, Sandy Goldston, Lockheed Martin Energy Systems

Training Session B: Connecting to the Internet Securely, Philip Cox, Computer Incident Advisory Capability (CIAC)

Training Session C: Windows NT Security, Philip C. Cox, Computer Incident Advisory Capability (CIAC)

Training Session D: Computer Virus Protection, Brian Swail, ORNL; David Ensign, Computer Data Systems, Inc; Bill Orvis, LLNL; Gordon Besson, Albuquerque Operations Office; and Craig Lant, LBL

Training Session E: Surviving a Computer Security Audit, Larry Supina, Mason & Hanger, Pantex

General Sessions: Conference Kick-Off and Welcoming Remarks, Charlene Douglass, Steering Committee Chair, Los Alamos National Laboratory and Betty Meadows, Conference Program Chair, Westinghouse Savannah River Company; Opening Keynote Address: Update on Computer and Internet Law, Mark Grossman, Attorney, Computer and Internet Law Department, Becker & Poliakoff; Information Security Threat, or You're in a Heap of Trouble, Dr. Eugene Spafford, Professor of Computer Sciences, Purdue University; Headquarters Computer Security Program Update, Ray Holmer, Department of Energy - Headquarters Office of Safeguards and Security and Phil Sibert, Department of Energy - Headquarters, Office of Information Management; Computer Security -- The Naval Reactors Way, Walt Engel, Department of Energy - Headquarters; Status of SecureNet, Gary Blair, Sandia National Laboratories; Status of NetU, Lance Revo, AlliedSignal, Kansas City; Threat Update, Sandy Sparks, Computer Incident Advisory Capability; Computer Security Servers for the DOE Complex, Bill Orvis, Computer Incident Advisory Capability; Cyber DICE, Ray Semko, Department of Energy - Headquarters; Repealing Murphy's Law, Robert Courtney; Computer Crime, U.S. Department of Justice; Year 2000 Panel, Steve Mick, Moderator, Lawrence Livermore National Laboratory; Past, Present, and Future of DOE Computer Security, Charlene Douglass, Moderator Los Alamos National Laboratory and Special Guests

Management Track: Status of DOE PKI Policy, Sharon Shank, Department of Energy - Headquarters; Status of Technical Advisory Committee, Clem Boyleston, Computer Data Systems, Inc.; Things Done Right, Larry Supina, Mason & Hanger, Pantex; OMB A-130 Implementation -- Lessons Learned, Ted Combs, Allied Signal, Kansas City; OMB A-130 Implementation, Jamie Nicholson, Mason & Hanger, Pantex; Accrediting a Large Network: the DOE Order says WHAT?, Dick Hawkins, Sandia National Laboratories; Sensitive Unclassified Information, Steve Donahue, Los Alamos National Laboratory; Measuring Effectiveness of Computer Security Training: Results, Georgia Pedicini, Los Alamos National Laboratory; DoD Infosec Training and Awareness, George Bieber, DISA

Technical Track: A PI=5 Controlled Interface for File Transfer, Paul Sands, Sandia National Laboratories; For Better Security, Keep It Simple, Dr. Lara Baker, Galaxy Computer Services, Inc.; Deploying SMS to Manage Domain of NT Workstations, Bill Johnson, Stanford Linear Accelerator Center; Creating Secure Windows NT IIS Server, Dave Ellis, Sandia National Laboratories; Anatomy of a Break-in, Bill Orvis, Lawrence Livermore National Laboratory; Alarms Intrusion Detection System, John Rhodes, Lawrence Livermore National Laboratory; DCE and PKI Technology: Similarities and Differences, Doug Brown, Sandia National Laboratories; Certificates Applied to Collaboratories, Jim Rome, Oak Ridge National Laboratory

"How To" Track: Configuration Management in Heterogenous Environment, Steve Donahue, Los Alamos National Laboratory; Testing Multilevel Products, David Krehnke, Lockheed Martin, Oak Ridge; Information Assurance Outreach Program, D.R. Miles, Battelle, Pacific Northwest National Laboratory; Establishing DCE Cross-Cell Trust, Glenn Machin, Sandia National Laboratories; Macro Virus Protection Office 97", Judi Whiddon, Mason & Hanger; Update on SSDS, SPI for NT, SPI-NET, Marcey Kelley, Lawrence Livermore National Laboratory; Secure Web Overview, Patrick Moore, Sandia National Laboratories; Don't Be Afraid of www.spankme.com, Harley Reynolds, Mason & Hanger, Pantex
UCRL-MI-124608