In their talk, René Palige and Rosemary Joshy from Continental will share some insights on how they utilized fuzzing to improve overall software quality and how this can be integrated into existing verification and validation processes. They will further describe some of their experiences while applying coverage-guided fuzzing in ongoing automotive projects, what challenges they faced and how they overcame them.

In this talk, Andreas Weichslgartner from CARIAD will show how contemporary software engineering can help to write more secure code and detect vulnerabilities already during development. He will revisit historical vulnerabilities in the automotive space and take a look at common classes of bugs present in embedded software. Using these examples, he will show how modern programming language evolution and tooling can tackle and prevent these issues.

FuzzCon Automotive is an uprising application security testing conference, bringing together developers, DevOps Engineers, and security experts to make automotive software more reliable and secure. Stay tuned for details about the speakers, agenda, and more!

James Chacon, Principal Engineer Learn how Snowflake developed SansShell, an open source tool, to help them audit actions done on a machine, and why they turned to OPA as their authorization mechanism. This session will also cover how the team worked through policy challenges as they scaled.

Tim Hinrichs, CTO, Styra, & Co-founder, OPA Learn about some of the most popular design patterns for cloud native authorization and OPA, covering the types of policies, architectures, and data dependencies for each. Also hear about how data volume, dynamicity and consistency can effectively exert gravitational pull to influence your authorization architecture.

Essential Network Intelligence: How S&P Global Introduced Digital Twin Technology to Deliver a Seamless Network Experience to their Developer Ecosystem – Forward Networks Main Stage Keynote

Filip Verloy, Senior Solution Architect at Noname Security, talks about the emerging security threats facing APIs at the API Conference in Berlin. Using the OWASP API Security Top 10, he looks at different approaches to securing your API estate through the use of Web Application Firewalls, API Gateways, and dedicated API security platforms.

As businesses move their applications, workloads and critical data to the cloud, it becomes more important to rethink how to protect those resources and how to manage those protections. Unfortunately, organizations race to adopt cloud workload protection tooling without considering the bigger picture of how all cloud security controls must work together across all layers of their technology stack, especially the application layer. As a result, they often end up with different security solutions and controls working in silos, which leads to a lack of visibility, a lack of security consistency and security gaps.

16 weeks of preparation in the ConnectWise PitchIT acceleration program comes down to this 5-minute pitch. On August 31st Vonahi presented their solution in front of partners, judges, and the MSP community for the chance to make it to the top 3 finalists. Winning this round gives Vonahi the chance to present vPenTest on center stage at The IT Nation Connect conference in front of +3,000 attendees.

At this year's InfoSec conference hosted by Computer 2000, LogSentinel presented - “The power of #XDR -stay ahead of the curve” Asen Kehayov CEO and Nikolay Raychev CTO presented in depth the XDR trend in #cybersecurity and how LogSentinel SIEM accommodates conceptual architecture and improves the industry vision of #XDR.