Craig Heath has been working in IT security since 1988, including positions at The Santa Cruz Operation as security architect for SCO UNIX, and at Lutris Technologies as security architect for the Enhydra Enterprise Java Application Server. He joined Symbian in 2002.
Craig has been a member of The Open Group Security Forum (originally the X/Open Security Working Group) since 1993, sitting on the Steering Committee since 1999. He has contributed to several published security standards, including XBSS (baseline system security requirements), XDAS (distributed audit), and XSSO (single sign-on). He is co-author of the Open Group Technical Guide to
Security Design Patterns. He has also participated in standards work within POSIX, IETF, the Java Community Process, and the Open Mobile Alliance.

Title of the IWWST 2005 keynote
Mobile Phone Malware - No Need to Panic (Yet?...)

Abstract
Over the last year we have seen several proof-of-concept trojans, worms and viruses written for mobile phones. So far there has not been any significant outbreak in the wild. We will discuss the real risk that such malware poses at present, how that risk is likely to develop, and how we can apply traditional computer security techniques to address the threat while considering the particular needs of mobile phone providers and users.