GOTO Berlin is a vendor independent international software development conference with more that 60 top speaker and 400 attendees. The conference cover topics such as Java, Open Source, Agile, Architecture, Design, Web, Cloud, New Languages and Processes.

Benjamin Toews, Application Security Engineer at GitHub

Benjamin Toews

Biography: Benjamin Toews

Ben Toews is an application security engineer at GitHub. He works on security features in addition to identifying and fixing security vulnerabilities in Prior to GitHub, Ben worked in software development as well as in security consulting, performing application and network pentests.

Twitter: @mastahyeti

Presentation: The Sky is Falling: Nephological Tales of Security Woe

Track: Working in the Cloud / Time: Thursday 11:30 - 12:20 / Location: Hall 2

When your company is in the cloud, security means enabling two-factor authentication on your Gmail account. It means taking the time properly configure and harden your AWS services. It means staying up all night, wondering when everyone else will apply the latest OpenSSL patch. It means worrying not only about the vulnerabilities in your code, but vulnerabilities in the code of all the companies you rely on.

There are many unique security challenges facing cloud service providers as well as the consumers of those services. In this talk I will explore case studies of where security has failed in the cloud, how it could have succeeded, as well as generalizations about securely implementing and using cloud services.