[ISN] CanSecWest talk on infrastructure attacks canceled after being classified

http://blogs.csoonline.com/security-industry/3050/cansecwest-talk-infrastructure-attacks-canceled-after-being-classified By Steve Ragan Salted Hash CSO Online March 09, 2014 Eric Filiol, head of the Operational Cryptography and Computer Virology lab hosted by ESIEA in Laval, France, was scheduled to give a talk on Friday at the CanSecWest conference in Vancouver, British Columbia. However, that talk has been canceled after reviewers in the intelligence community deemed it a security risk. In addition to censoring the talk, they also threatened legal action against the conference and presenters. In a brief post on the subject, Dragos Ruiu, the founder and organizer of CanSecWest, outlined the basics. “The French Dept. of Interior (their DHS equivalent) and the U.S. DoD have decided that Eric Filiol’s material about network attacks on infrastructure is too dangerous, so they have classified it, disallowing its presentation, and to punctuate their desires with an exclamation point, rattling sabers about prosecution and lawsuits of conference organizers and presenters. To which I’d like to remind everyone concerned: ‘Security by Obscurity, is not much Security at all.’ Hiding vulnerability information hinders solutions and mitigation more than it hinders attackers.” […]