|
Agenda l
Speakers l Hotel &
Logistics l Registration l
Underwriting/Sponsorship
AOTA Summit 2008
Reaching the Tipping Point:
Future of Online Trust
AGENDA*
Day 1 Wednesday June 4
Day 2 Thursday June 5
>
AOTA Email Academy Friday June 6 >
|
Day 1 - Wednesday,
June 4 - General Sessions
- Grand Ballroom 
|
|
Time |
Session |
Speaker (s) |
| 7:30 |
Breakfast, Registration and Solution Demos - Grand Ballroom
III & Grand Foyer |
|
8:30 |
Welcome &
Overview
The Tipping Point - A Year in Review and Best Practice Scorecard |
Craig Spiezle
Chairman AOTA,
Director, Internet Security & Privacy, Microsoft Corporation |
|
9:00 |
G1- Keynote -
Providing value to users, while maintaining privacy and
dealing with the bad guys.
This session
includes two of the industry leaders who will contrast the
intent (providing users with a convenient place to exchange
“offers” and information) with the challenges of creating and
nurturing a trusted community (maintaining privacy at the level
desired by users). Speakers will discuss steps taken to ensure
or boost trust and examples of issues and how they were
addressed with prescriptive advice for the audience. |
David Daniels,
JupiterResearch
Craig Newmark,
Founder of Craig's List |
|
9:45 |
G2 - Plenary
Session - Threat trends impacting government, commerce and
community. What are the issues and how can we collaborate.
This plenary will provide a high-level view of the online
threats (now and future) faced by the various segments –
government, community and commerce and how organizations can
collaborate and effectively fight back. Session will discuss
the role of each major stakeholder and resources available and
how we each have a shared responsibility for fighting these
online treats. |
Howard Schmidt,
Former CSO eBay & White House Cyber Security Advisor
Kenneth Blotteaux, Deputy Director, National Cyber & Forensics Training
Alliance
Tom Donlea, Exec. Dir.
Merchant Risk Council |
|
10:30-11:00 |
Break and Solution Demos
Grand Ballroom III & Grand Foyer
|
|
11:00 |
G3 -
Making Trust a Priority
How IT can add value to a brand, while protecting users
from online threats
How IT can add value to a brand, while protecting users from
online threats. Getting C-level buy-in across an organization
and making online trust and brand protection is becoming job one
for many executives, yet getting departments and employees
aligned is often a major challenge. With growing political
pressures and decentralized responsibilities, aligning profit
maximization, security and privacy can become conflicting
goals. This session will provide insights from two of the
leading insiders who will share perspectives and war stories on
achieving these goals, often when there may be no obvious owner,
or immediate business value. While there is no silver bullet,
attendees will learn of the realities and business value of
email authentication, EV certificates and consumer education. |
Michael Barrett,
CISO PayPal
Hon. Mozelle W. Thompson
Former FTC Commissioner |
|
12:00-1:30 |
Lunch, Networking & Solution Showcase
Grand Ballroom III & Grand Foyer |
|
|
Wed June 4 - Afternoon Breakouts |
| Time |
Track A
Grand Ballroom I |
Track B
Grand Ballroom II |
Track C
Fifth Avenue Room |
| 1:30 |
#201
Building
Trust In Email & Your Site
The value to your brand
Jordan Cohen - Epsilon
Fran Maier - TRUSTe
Lauren Skena -
National Geographic
Alton Philips -
iVillage
This session will cover best practices for building trust in
email and web sites (technical and non-technical) and map them
to the tangible and intangible value to the brand. Best
practices will include span technical (authentication,
reputation, domain management, volume, etc.) and non-technical
tactics. Examples of improved results that followed
implementation of best practices, demonstrating business value
will be shared.
|
#202
Social
Networks and Social Greetings
Who Can You Trust?
Rajiv Jain CTO,
American Greetings
Craig Newmark - Craig' list
Greg Ott - Classmates.com
Social networks, social greetings and affinity based community
sites are built on the premise of trust and consent. In the
rapidly changing world where trust needs to be earned for the
consumer, and is critical to be maintain and controlled by a
site to preserve its brand. This session will discuss how to
maintain and enhance trust, sharing a 360 degree view of the
challenges and threats that risk undermining community based
trust networks and communications.
|
#203
Working
with the Ecosystem. Best practices with ISPs &
Registrars.
Chip House - ExactTarget (Moderator)
Rod Rasmussen -
Internet Identity
Charles Stiles - Goodmail Systems
Neil Warner -
GoDaddy
Many aspects of trust are tied to domain management and
ISP interaction. This session will review the role of
registrars, hosters, and ISPs in the setup, ongoing operation,
and response to online threats. Attendees will gain an
understanding of proactive and reactive strategies to work
within the ecosystem, including typical situations (phishing
attacks, cousin domains, etc.) to counter spoofing of your
brand, web site, cross site scripting and / or registering
domains that might be infringing on your business. Insight into
data and forensics and which is often required will be
highlighted.
|
| 2:30 |
#301
State of
the Union Review of
Email & Domain Authentication
Business Value to Brands & Consumers
Stephanie Jordan
- Messaging News (intro)
Pablo Stern - Symantec
Pat Peterson -
IronPort
The session will review the findings of the
2008 AOTA Email authentication Report and provide a
non-technical overview of the problem that email authentication
solves for senders, receiving networks (ISP and corporate) as
well as for the brands who are increasingly are being spoofed by
deceptive and malicious email This session will highlight
adoption as a percent of all legitimate email as well as the
core sectors being impacted focusing on the Internet Retail 300,
Fortune 500 as well as leading commerce and banking sites. Bank
of America will be cited as an implementation case study.
Attend to learn why the AOTA call to action and recommended best
practice for all brands and customers is so important!
|
#302
Building Online Trust - Business Value of
Extended Validation SSL Certificates
Tom Donlea -
Merchant Risk Council
Michael Barrett
- PayPal
Tim Callan -
VeriSign
Session will provide an overview of the issues and limitations
of traditional Secure Sockets Layer (SSL) certificates and
“padlock” and how it is being exploited today. The new standard
now being supported by nearly 6,000 leading commence and banking
sites worldwide is the new Extended Validation (EV)
certificates. EV certificates are a best practice advocated by
both the Merchant Risk Council (MRC) and AOTA. Users of leading
web browsers are presented with a “green address bar” indicating
the site as met the EV certification identity requirements.
Session will share common fraud techniques, user concerns, and
the value proposition of EV certs. |
#303
Computer
Espionage
Local
Problems of An International Scope Case study review
Barry Abel - Message
Systems
Manish Goel - Box Sentry
Kia Axford - Microsoft
Allyn Lynd - FBI
Cybercriminals may appear local, but the problem is global.
Often a threat which appears limited and local is a leading
indicator of threats that may come. In addition to looking at
real-world activity from around the globe, ths session will
address how companies can/should work with international
organizations to prevent and help pursue the cybercriminal.
|
| 3:30 |
Break & Solution Showcase
Grand Ballroom III & Grand Foyer |
| 4:00 |
#401
Building Brand, Affinity & ROI without
abusing your customers - Review of frequency & relevancy best
practices
Melissa
Campanelli - eM+c Magazine (intro)
Michael Zanies
- IAB
Sal Tripi -
Publishers Clearing House
David Baker - AvenueA/Razorfish
Opt in is great, but what is the expectation of the user and
their inbox? This session will educate the audience regarding
best practices on frequency and relevance – making them aware
that “less is more” when it comes to email ROI. When senders
report spam and your email reputation and consumer perception of
your is impacted. While the privacy and sign up policy may
state they allowed to share names with third parties twenty
pages below the first screen, we all know consumers do not read
or necessarily understand the legalese. AOTA advocates clear
notice and consent in the first few lines, to align the sender
and consumers expectations. Best practices such as this are a
step towards self-regulation and provide a competitive advantage
to those who adopt, while preserving the value of their brand.
|
#402
Online Banking – Don’t Let the Cybercriminals Force You Back
Into a "Line”
David Atlas -
Goodmail Systems (intro)
Allyn Lynd - FBI
Lucy Hoffa - Washington Mutual
Online banking provides a tremendous value proposition for
consumers and businesses alike, demonstrated by the exponential
growth and usage worldwide. Unfortunately the cybercriminal
wants to look over your shoulder. While such exploits are
rare, this session will examine what the banking and financial
services industries are doing to protect users worldwide.
Learning from the introduction of ATM and automatic pay
deposits, this session will share steps to provide consumer
confidence while combating the bad guys.
|
#403
Data
Governance & Data Leakage, impact to your consumer trust &
shopping cart
Ken Takahashi - ReturnPath
(intro)
Ken Schneider -
Symantec
Ramesh Ratan - DMA
Robb Walters - Costco
The largest identity theft cases of late have occurred via
losses of corporate data, infrastructure and employees, yet
these are often perceived as users erroneously divulging their
data online. Proper data governance and managing personal
information and data leakage are key to preventing such events
and this is a chance to educate the audience on the issues,
impact to consumer trust, and best practices to prevent such
occurrences.
|
| 5:00 |
#501
Update From the Hill
Spam, Spyware, Behavioral Targeting & More.
Michael Zanies
- IAB (moderator)
Sana Coleman
Chriss - FTC
Gary Warner - University of Albama
Alissa Cooper - Center for Democracy & Technology
This session will examine the issues and tradeoffs. Can the
industry self-regulate or is more regulation required? Does
regulation only increase costs on the good guys while the
criminal and deceptive business prosper? With Web 2.0, do we
need CAN-SPAM 2.0? This session will discuss the challenges
faced with legitimate businesses, while protecting the rights of
users. With ad tracking becoming top of mind, pressure is
mounting worldwide regarding user consent, control and
compliance. What should marketers expect and what can they do
today to protect online trust? |
#502
Minimal Disclosure: Evolving Technology
for Enhanced Privacy
David Jevans -
APWG
Stefan Brands -
Microsoft
“Who’s there? Is it really you?” Consumers want to interact
online without sharing too much about themselves or re-creating
a different identity everywhere they go, and companies need to
verify it’s really you and not some fraudster. What to do?
Learn from industry experts about the latest in identity –
issues, mandates, technologies and solutions. They will discuss
the often conflicting needs of both users and companies (simple
yet thorough, verifiable yet private), compare and contrast the
approaches, and predict which solutions will likely emerge as
winners.
|
#503
Step by
Step Guide to implementing email authentication
Jeff Wilbur - Iconix (Moderator)
Harry Katz - Microsoft
Jim Fenton - Cisco
Ready to authenticate your email, or just want tips on how to do
it right? Learn from the experts as they present an overview
and comparison of Sender ID and DKIM, a step-by-step guide on
how to implement them, and the common pitfalls to avoid. They
will address the entire process – business and technical – as
well as tips to verify that you’ve implemented authentication
properly. A summary checklist and list of authentication
resources will round out the
|
| 6:00
7:30 |
Evening
Reception & Solution Showcase
Grand Ballroom III
Live Entertainment with Music to Your Ears
Best of the Supremes, R & B and more!
Audience Participation
|
Day 2 Thursday June 5 >
|
