fbpx

Casey Ellis

Bugcrowd Founder

Startup Security Products and Solutions

Session Title | disclose.io - Taking the Internet's Immune System to the Next Level

"After 40 years of hard-fought battles, the Internet has finally reached a place where it knows that hackers aren’t always burglars… Many of us are locksmiths. We think bad, but do good, view technology and often the world in a very different way to the people who build it; and form the immune system for our digitally-connected society.

Of all the problems the internet has, there seems to be one that rules them all: It doesn’t understand how to work with its immune system.

In this keynote, I’ll run through the past/present/future of the vulnerability disclosure, and give a run-through of disclose.io: an open-source and vendor-agnostic initiative to make conversations between builders and breakers safe, standardized, and simple. I’ll close with a Call To Action for all participants with simple ways to help and get involved."

"My name is Casey Ellis, and I’m the Chairman, Founder, and CTO of Bugcrowd. I got my start in cybersecurity nearly 20 years ago as a penetration tester, before moving to the ‘dark side’ of solutions architecture and sales.

My practical experience ranges from startups and not-for-profits to governments and multinationals, where I’ve specialized in troubleshooting and bridging gaps between the technical and business sides of information security.

In 2012, I pioneered the crowdsourced-security-as-a-service model and launched the first program on Bugcrowd. Two years later, I started disclose.io, an open-source project for vulnerability disclosure and safe-harbor. I’ve also been actively involved in the CTI Cyber League, contributed to Federal and State-level election security policy in the USA, and been an active advocate for rights of good-faith cybersecurity research.

I’m a keen speaker and media commentator, having presented at Black Hat USA, RSA Conference, Shmoocon, ENISA Incibe, Usenix ENIGMA, Derbycon, SOURCEConf, AISA, AusCERT, and many more."

TOP