Oct. 15, 2019 – Understanding Encryption
October 15 @ 6:30 pm - 8:30 pm
Anyone in the infosec industry for 5 minutes has had a training lecture on encryption. The vast majority have walked away scratching their head. Encryption seems like a seriously complicated subject, and it is, but only if you are building a new algorithm. The types and understanding are not. They just haven’t been presented properly. You have heard of symmetric encryption, asymmetric encryption, and hashing. But what are they under the hood, and where do you use each of them? You will leave this presentation absolutely understanding all three, as well as non repudiation. We will go through where each is used, and when and how they all get used together. Encryption is everywhere. We need to understand what is happening and be able to explain it. As an added bonus, we will actually be doing the math behind the Diffie-Hellman key exchange BY HAND, just to show that it is not a scary and mysterious as people think. Given that you perform the Diffie-Hellman key exchange many times every day, it is a good idea to understand it and know where it is happening.
Kevin J. Ripa, is the owner of The Grayson Group, and Past President and current Vice President of the Alberta Association of Private Investigators. He is a former member, in various capacities, of the Department of National Defence serving in both foreign and domestic postings. He is now providing superior service to various levels of law enforcement, Fortune 500 companies, and the legal community, and has assisted in many complex cyber-forensics and hacking response investigations (including nation-state) around the world.
Kevin has over 20 years of experience in the digital investigations & incident response fields, having started doing forensics before the days of GUI response and vendor training. He is a respected and sought after individual for his expertise in Information Technology investigations, and he has been qualified as an expert witness on numerous occasions at virtually all levels of the judicial process. He has also designed, produced, hosted, and taught numerous industry related courses, not to mention hundreds of speaking and training engagements to industry and law enforcement around the world.
As well as being a SANS Certified instructor, Kevin holds a number of industry certifications, including GSEC, GISF, GCFE, GCFA, BAI, EnCE, Certified Data Recovery Professional, and has previously held certs as Certified Penetration Tester and Certified Ethical Hacker. He has also authored dozens of articles in circulation, as well as chapters to a number of manuals, books, and training texts on the subjects of Computer Security and Forensics. Kevin currently teaches SEC401, SEC301, FOR500, and FOR498 (co-author) for SANS.