About | Free Trial

Last Update

2016-02-25T00:00:00.000Z

This profile was last updated on . .

Is this you? Claim your profile.

Wrong Will Dormann?

Will Dormann

Vulnerability Analyst

CERT Coordination Center

Direct Phone: (412) ***-****       

Email: w***@***.org

CERT Coordination Center

4500 Fifth Avenue

Pittsburgh, Pennsylvania 15213

United States

Company Description

The CERT® Coordination Center (CERT/CC) is located at the Software Engineering Institute (SEI), a federally funded research and development center at Carnegie Mellon University in Pittsburgh, Pennsylvania. Following the Internet Worm incident, which brou... more

Find other employees at this company (351)

Background Information

Web References (198 Total References)


CERT's Podcast Series: Speaker Biographies

www.cert.org [cached]

Will Dormann

Will Dormann has been a software vulnerability analyst with Carnegie Mellon Software Engineering Institute's CERT Coordination Center (CERT/CC) since 2004. His focus area includes web browser technologies, ActiveX, and fuzzing. Will has discovered thousands of vulnerabilities through the use of fuzzing tools and other techniques.


However, research done since by Jongerius ...

www.cybersecurityaid.org [cached]

However, research done since by Jongerius and others such as Will Dormann of CERT at Carnegie Mellon University's Software Engineering Institute, indicate that the Java sandbox's wounds are self-inflicted because signed applets bypass the sandbox and have full access to the rest of the host computer.

...
Dormann wrote in an April blogpost that Oracle "conflates" authentication and authorization by allowing signed applets to gain automatic full privileges on a machine.
"Right now, if an attacker wants to repurpose a Java applet, it would need to be a signed applet. But what about Oracle's vision of a Java future where every Java applet is signed? What this vision means is that every Java applet, which would be signed, would also now be in a state where it could be repurposed because it is now no longer restricted by the sandbox," Dormann said.


"There is a big difference between ...

www.csoonline.com [cached]

"There is a big difference between losing computer data and the safety risks involving a house or car," said Will Dormann, senior vulnerability analyst in the CERT division of the Carnegie Mellon Software Engineering Institute.

"When you have more real-world devices connected, there can be risks involving human life, which are obviously much more serious," he said.
There is a big difference between losing computer data and safety risks involving a house or car. willdormann
Will Dormann, senior vulnerability analyst, CERT division of the Carnegie Mellon Software Engineering Institute
...
But Dormann said the practical reality is that most consumers don't think much about security when they buy "smart" devices - they focus on features and price. "Security is usually not part of the purchasing decision," he said.
...
There is not even an established seal of approval from an Internet organization comparable to Underwriters Laboratories (UL) which, as Dormann put it, tests and certifies products so, "a consumer has some amount of certainty that it won't burn your house down."


"There is a big difference between ...

www.cio.com [cached]

"There is a big difference between losing computer data and the safety risks involving a house or car," said Will Dormann, senior vulnerability analyst in the CERT division of the Carnegie Mellon Software Engineering Institute.

"When you have more real-world devices connected, there can be risks involving human life, which are obviously much more serious," he said.
There is a big difference between losing computer data and safety risks involving a house or car. willdormann
Will Dormann, senior vulnerability analyst, CERT division of the Carnegie Mellon Software Engineering Institute
...
But Dormann said the practical reality is that most consumers don't think much about security when they buy "smart" devices - they focus on features and price. "Security is usually not part of the purchasing decision," he said.
...
There is not even an established seal of approval from an Internet organization comparable to Underwriters Laboratories (UL) which, as Dormann put it, tests and certifies products so, "a consumer has some amount of certainty that it won't burn your house down."


Will Dormann, a ...

www.isssource.com [cached]

Will Dormann, a vulnerability analyst with the CERT/CC, reported the existence of the issue to Google on March 20.

Similar Profiles

Other People with this Name

Other people with the name Dormann

Dana Dormann
Pleasanton Golf Center

Kira Dormann
CRF Health

Christian Dormann
University of South Australia

Tony Dormann
Men's Health

Marie Dormann
Albin Michel

Browse ZoomInfo's Business Contact Directory by City

Browse ZoomInfo's
Business People Directory

Browse ZoomInfo's
Advanced Company Directory