Annual Symposium on Information Assurance >> ASIA
Navigation Menu ASIA Main Page Call for Papers Organizing Committee Symposium Proceedings Best Paper Awards Keynote Speakers Author/Presenter Information Reviewers NYS Cyber Security Conference Directions & Parking Accomodations OCS Website UAlbany Business Website Pictures Contact Us Want to Sponsor? End of Menu Facebook Twitter Years for Selection: 2006 - 2007 - 2008 - 2009 - 2010 - 2011

Billy Rios, Team Lead, Google Inc.

Biography: Billy Rios is currently a Team Lead for Google where he studies emerging security threats and technologies. Billy was one of the primary security engineers for Google Plus, the new social network by Google. Before Google, Billy was a Security Program Manager at Microsoft where he helped secure several high profile software projects including Internet Explorer and Microsoft Online. Prior to his roles at Google and Microsoft, Billy was a penetration tester for various consulting firms.

Before his life as a penetration tester, Billy worked as an Information Assurance Analyst for the Defense Information Systems Agency (DISA). While at DISA, Billy helped protect Department of Defense (DoD) information systems by performing network intrusion detection, vulnerability analysis, and incident handling, Before attacking and defending information systems, Billy was an active duty Officer in the United States Marine Corps where he served as an OIC, Platoon Commander, and Company Executive Officer.

Billy is an accomplished public speaker and published author. He has authored and contributed to several books, most notability: "Hacking: The Next Generation" and "Inside Cyber Warfare: Mapping the Cyber Underworld", both published by O'Reilly Media. Billy has also presented at such prestigious security conferences as Black Hat, RSA, NATO CCDCOE, Microsoft's Blue Hat, DEFCON, ToorCon Seattle, and HITB Security conference. Billy is cited in numerous security advisories for research on attacking Industrial Control Systems, URI and protocol handlers, content ownership issues (such as the GIFAR attack), DNS rebinding attacks (against Flash and the Java Virtual Machine), and was previously credited for discovering vulnerabilities in Microsoft Windows and Adobe PDF Reader.

The State of ICS Security: A Year in Review
Over the past year, we've discovered over a thousand different Industrial Control System (ICS) vulnerabilities affecting a wide range of vendors and software. Join us as we cover our favorite vulnerabilities from the year and discuss how these vulnerabilities could have impacted real world ICS systems. We'll give you the details on how we found the vulnerabilities, show you working exploits, and will discuss how to find some of these systems on the Internet. It's a fun, yet sobering talk on the state of ICS security...

 Important Dates

I do not fear computers. I fear the lack of them.

- Isaac Asimov

Just as drivers who share the road must also share responsibility for safety, we all now share the same global network, and thus must regard computer security as a necessary social responsibility. To me, anyone unwilling to take simple security precautions is a major, active, part of the problem.

- Fred Langa

In theory, one can build provably secure systems. In theory, theory can be applied to practice, but in practice, it can’t.

- M. Dacier