Conference Location: 
Philadelphia, PA
United States

The DFRWS USA 2015 Conference was held in Philadelphia, PA.


Luke Dembosky

Department of Justice National Security Division

Luke Dembosky is Deputy Assistant Attorney General at the Department of Justice National Security Division (NSD), where he manages NSD's newly created portfolio covering protection of national assets, including efforts to combat economic espionage, proliferation, and cyber-based national security threats, as well as its work on the Committee on Foreign Investment in the United States. Before joining NSD, Dembosky served as Deputy Chief for Litigation at the Criminal Division's Computer Crime and Intellectual Property Section. He previously served as the DOJ representative at the U.S. Embassy in Moscow, Russia, where he represented DOJ to Russia on matters of transnational crime, including cybercrime and intellectual property crimes, and worked with Russian law enforcement and other government officials to build cooperation between the two countries. Prior to working in Moscow, Dembosky was based in Pittsburgh as a member of DOJ's Computer Hacking and Intellectual Property (CHIP) network of federal prosecutors. He has been involved in some of the largest and most groundbreaking cyber-crime prosecutions and disruptions in U.S. history, including the GameOver Zeus botnet disruption, coordination of the Silk Road takedown, and U.S. v. Max Ray Butler. Prior to entering government service, Dembosky worked in civil practice at a Philadelphia law firm, and clerked for Judge Richard L. Nygaard of the U.S. Court of Appeals for the Third Circuit.

Changing the Malware Economy

Jason Updike, Intel

Abstract: The malware economy provides attackers with the resources needed to buy and sell their wares. We will examine a simple representation of the malware economy in terms of a supply pyramid and discuss how we manipulate the pyramid to cause the greatest effect. New technologies in the detection of code reuse in malware and reducing the trusted compute boundary to hardware will be introduced with respect to their effect on the malware economy. We will discuss attacks in terms of risk, cost, and returns and how to use technology to increase risk/cost while reducing returns to change the economics of the malware marketplace.

Bio: Jason Upchurch is a security research scientist and Principal Investigator for Intel Security Group, Intel Corporation. He is the lead researcher at the Center of Innovation, Anti-Malware Laboratory at the United States Air Force Academy. Prior to joining Intel at the Air Force Academy, Jason was a Sr. Lead Engineer at General Dynamics and was the subject matter expert for malicious software and reverse engineering. While with General Dynamics he had the honor of serving as the section chief of the DCFL Intrusions Section and technical manager for the GD assets in the NCIJTF/AG and DCISE at the DoD Cyber Crime Center (DC3). He is currently pursuing his PhD in Engineering - Security at the University of Colorado at Colorado Springs.


Test of Date Falling off August 15, 2015
Papers Due September 10, 2015
Something September 18, 2015
Something Else September 25, 2015
Something October 22, 2015


Organizing Committee

Conference Chair: Tim Vidas (Carnegie Mellon University)
Conference Vice Chair: Vassil Roussev (University of New Orleans)
Program Chair: Simson Garfinkel (U.S. Census Bureau)
Program Vice Chair: Nicole Beebe (UTSA)
Proceedings: Elizabeth Schweinsberg (Facebook)
Keynote: Matthew Geiger (Qintel)
Publicity: Dave Baker
Advertisement/Sponsorship: Daryl Pfeif (Digital Forensics Solutions and DFRWS)
Event Management/Production: Daryl Pfeif (Digital Forensics Solutions and DFRWS)
Finances: Rick Smith (ATC-NY)
Registration: Timothy Leschke (Johns Hopkins University)
Forensic Challenge: Golden Richard (Louisiana State University)
Web: Josiah Dykstra (National Security Agency)
Demo/Posters: Alex Nelson (NIST)
Workshop Chair: Wietse Venema (Google)
Workshop Vice Chair: Frank Adelstein (NFA Digital)

Technical Program Committee

Frank Adelstein (NFA Digital)
Cory Altheide (Crowdstrike)
Ibrahim Baggili (University of New Haven)
David Baker
Nicole Beebe (UTSA)
Robert Beverly
Frank Breitinger (University of Liechtenstein)
Florian Buchholz (James Madison University)
Eoghan Casey (University of Lausanne)
Lorenzo Cavallaro (Royal Holloway)
Kam-Pui Chow
Greg Conti (USMA)
Jedidiah Crandall (University of New Mexico)
Rinku Dewri (University of Denver)
Brendan Dolan-Gavitt (Georgia Institute of Technology)
Josiah Dykstra (National Security Agency)
William Enck (North Carolina State University)
Greg Freemyer
Simson Garfinkel (U.S. Census Bureau)
Matthew Geiger (Qintel)
Xuxian Jiang (North Carolina State University)
Rob Joyce (ATC-NY)
Jesse Kornblum (Facebook)
Andrea Lanzi (Universita` degli studi di Milano)
Christopher Lee (UNC)
Brian Levine (University of Massachusetts Amherst)
Marc Liberatore (University of Massachusetts Amherst)
Zhiqiang Lin (The Ohio State University)
Stephen McCamant (University of Minnesota)
Alex Nelson (NIST)
Fernando Perez-Gonzalez (Universidad de Vigo)
Gilbert Peterson (US Air Force Institute of Technology)
Daryl Pfeif (Digital Forensics Solutions and DFRWS)
Mark Pollitt (Daytona)
Golden Richard (Louisiana State University)
Vassil Roussev (University of New Orleans)
Bradley Schatz (Schatz Forensic)
Elizabeth Schweinsberg (Facebook)
Clay Shields (Georgetown University)
Asia Slowinska (Vrije Universiteit Amsterdam)
Joe Sylve (BlackBag Technologies)
Wietse Venema (Google)
Timothy Vidas
Dongyan Xu (Purdue University)

Associate Technical Program Committee

Irfan Ahmed (University of New Orleans)
Stefan Axelsson (Norwegian University of Science and Technology)
Masooda Bashir (Illinois)
Ralf Brown (CMU)
Michael Cohen (Google)
Dave Dampier (Mississippi State University)
Sarah Edwards (SANS Institute)
Paul Giura (AT&T Security Research Center)
Sanjay Goel (Univeristy of Alband)
Barbara Guttman (NIST)
Jamie Levy (Volatility)
Bryant Ling (FBI)
David Loveall (FBI)
Vico Marziale (BlackBag Technologies)
Cindy Murphy (Madison Police Department)
Judson Powers (ATC-NY)
Tu-Thach Quach (Sandia National Laboratories)
Steve Romig (Ohio State University)
Neil Rowe (Naval Postgraduate School)
Andreas Schuster (BFK edv-consulting GmbH)
Kathryn Seigfried-Spellar (Purdue University)
Jill Slay (La Trobe University)
Liang Zhenkai (National University of Singapore)
Ezhil Kalaimannan (UWF)



The DFRWS Annual Conference is made possible because of the hours that the organizing committee volunteers and because of the donations from our sponsors. Sponsors help to provide a neutral environment where new research can be presented and discussed, while keeping the registration prices low. Please support the sponsors that help DFRWS.

Details on becoming a sponsor can be found here.

DFRWS 2015 Silver Sponsor

Dell SecureWorks focuses exclusively on information security services to protect thousands of customers around the world. As a security service provider, we strive to be a world leader in everything related to information security; from firewall management services, combating advanced persistent threats to ensuring your PCI readiness for compliance. Our Global Headquarters located in Atlanta, GA is where a large amount of monitoring and research is performed while working in tandem with our other US, Europe and Japan offices. Many industries and IT security companies need assistance in maintaining or even building a new infrastructure for their information security and we have the expert security analysts to assist you along the way through consulting, audits, assessments, and tests.

DFRWS 2015 Student Scholarship (2)

Google's mission is to organize the world's information and make it universally accessible and useful. Google is pleased to sponsor a student scholarship to DFRWS USA.