Technical Sessions

We are rapidly running out of IPv4 IP addresses.  With over a decade of improvements and refinements behind it, IPv6 will soon start working its way into every network administrator's life.  In this presentation, Silvia Hagen will explain this new addressing scheme and answer some common questions:

• Why do we want to change away from IPv4, which appears to be working fine?
• How does IPv6 differ from IPv4?
• Who is already starting to use IPv6 (countries, industries, networks)?

Duration:  60 minutes

Presenter:  Silvia Hagen, CEO of Sunny Connection AG in Switzerland

Learn how to improve your out-of-the-box UTM-1 appliance installation and get more space, more power, more information, more reliability and simply more fun out of it!

Duration:  60 minutes

Presenter:  Tobias Lachmann, CCSE+, is a Technical Consultant with MCS Moorbek Computer Systeme in Hamburg, Germany and has over nine years of experience with Check Point Products

Valeri will introduce and demonstrate Check Point's new DLP product and discuss how to integrate it into your existing security infrastructure.

Duration:  120 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

Yasushi will discuss the new Check Point CCSA R70 Certification Exam.  Topics will include:

• Increasing from 70 questions to 130 questions
• Increased difficulty
• Increased reliance on "real world experience"
• Non-correlation between the official courseware and the exam

Duration:  60 minutes

Presenter:  Yasushi Kono is a Senior Technical Consultant at ComputerLinks GmbH in Dreieich (Germany), the biggest Check Point Partner in Europe.

Yasushi will discuss the new Check Point CCSE R70 Certification Exam.  This will be a continuation of Presentation #104.

Duration:  60 minutes

Presenter:  Yasushi Kono is a Senior Technical Consultant at ComputerLinks GmbH in Dreieich (Germany), the biggest Check Point Partner in Europe.

Valeri will give honest feedback and analysis of Check Point's new products and features and will discuss the Road Map of future developments.

Duration:  60 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

The introduction of IPv6 can actually be a lot less costly and disruptive than many people believe. It all depends on proper planning and clever concepts. And you should take your time. Many or most Operating Systems and networking equipment can already handle IPv6 and the protocol itself is designed for easy migration.

In this presentation, Silvia Hagen will show how simple steps taken now and over the next few years will help you to minimize the disruption in this transition and to be ready when your next hardware upgrade cycle is due.

Duration:  60 minutes

Presenter:  Silvia Hagen, CEO of Sunny Connection AG in Switzerland

We will look at the general methods of troubleshooting Check Point environments. This presentations covers security gateways, security management and UTM-1 appliances and is focused on systems running SecurePlatform. Main topics include kernel debugging, user level process debuging and fw monitor analysis.

Duration:  120 minutes

Presenter:  Tobias Lachmann, CCSE+, is a Technical Consultant with MCS Moorbek Computer Systeme in Hamburg, Germany and has over nine years of experience with Check Point Products

Valeri will enumerate the advantages and limitations of ABRA.

Duration:  60 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

Yasushi will discuss two important topics involving HFA's.  The first is how to install them safely and how to recover quickly when things go wrong.  The second is how to install HFA's into a clustered environment without causing downtime.  Yasushi will guide us through a live demonstration of such an upgrade.

Duration:  90 minutes

Presenter:  Yasushi Kono is a Senior Technical Consultant at ComputerLinks GmbH in Dreieich (Germany), the biggest Check Point Partner in Europe.

Valeri will describe and discuss the Provider-1 Licensing Scheme and explain how to transition licenses from legacy Security Management Servers.

Duration:  60 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

Valeri will explain and demonstrate fundamental troubleshooting techniques used in Provider-1.

Duration:  120 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

Valeri will explain and demonstrate fundamental troubleshooting techniques used in VSX.

Duration:  120 minutes

Presenter:  Valeri Loukine, CCMA, Senior Security Consultant at Dimension Data in Lausanne, Switzerland

Sabrina will talk about the ongoing issues she's facing in the middle of a frustrating major upgrade at a large European telecoms company.  We expect the conversation to degrade into an open debugging session.

Duration:  90 minutes

Language:  This presentation may be given in some combination of German and English

Presenter:  Sabrina Ciszewski, Security Engineer at a major European telecoms company

You’ve probably scratched your head more than once asking, "How can I do this?", or, "What did I do wrong?"  Reuven will be interviewing the audience about the challenges they face in their daily routine and will present a bag of tricks. The tools we'll see are based on the technology that Tufin has developed over the past six years and a new, super-fast, firewall analysis engine.

Duration:  60 minutes

Presenter:  Reuven Harrison, co founder co-founded Tufin Technologies

From Dr. Wool:

"The first quantitative evaluation of the quality of corporate firewall configurations appeared in 2004. In that survey, based on Check Point FireWall-1 rule-sets, I demonstrated that corporate firewalls were often enforcing poorly written rule-sets, containing many mistakes.

Firewall vendors regularly release new software versions of their products. In addition, more attention is now being paid to firewall rule-set quality, due to regulations such as the Sarbanes-Oxley Act, PCI-DSS, and NIST standard 800-41. Thus, we might hypothesize — or hope — that the quality of corporate firewall configurations has improved over time.

Recently I published the findings of new research, in which I revisited the 2004 study and tested this hypothesis. In addition to being much larger, the new study for the first time analyzes configurations from two major vendors: Check Point and Cisco. It also introduces a new firewall complexity measure that applies to both types of firewalls. The study’s findings validate the 2004 study’s main observations: firewalls are (still) poorly configured, and a rule set’s complexity is (still) positively correlated with the number of detected configuration errors. However, unlike the 2004 study, the current study doesn’t suggest that later software versions have fewer errors."

Duration:  60 minutes

Presenter:  Dr. Avishai Wool AlgoSec CTO and Co-Founder, and Tel Aviv University

Sit down with a group of very experienced and knowledgeable experts and get your questions answered.

Moderator:  Barry Stiefel, CCSA/CCSE/CCSE+, President of CPUG and owner of Information Engine, Inc. in San Francisco

Duration:  60 minutes

On the CPUG discussion board, he is "BarryStiefel"