https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=BcornellOWASP - User contributions [en]2026-05-27T09:04:10ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Long_Island&diff=80147Long Island2010-03-18T22:32:16Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="font-size:400%;">NEED HELP FINDING THE PLACE! CALL 212 202 6704</p><br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form995438520/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 3/18/10 Thursday<br><br />
<b>Time:</b> 6:30 - 8pm<br><br />
<b>Place:</b> Adelphi Garden City Campus Ruth S. Harley University Center, room 210 [http://www.adelphi.edu/visitors/campus.php Campus Map]<i>The University Center is in the center of the campus, all the way to the North (marked as UNC)</i><br><br />
<b>Directions:</b> Via the Long Island Expressway (Route 495) <br><br />
<br />
Traveling east<br><br />
Take the L.I.E. to Exit 34 South or the Northern State Parkway to Exit 26 South (New Hyde Park Road). Turn right onto New Hyde Park Road. Continue south on New Hyde Park Road for approximately 3 miles. Turn left onto Stewart Avenue. At the fourth light, turn right onto Nassau Boulevard. Continue approximately for a quarter of a mile. At the first light (as soon as you cross over the railroad tracks), make a left onto South Avenue. The entrance to campus will be on your right.<br><br />
<br />
Traveling west<br><br />
Take the L.I.E. to Exit 39 South or the Northern State Parkway to Exit 31 (Glen Cove Road). Go south. (Note: the road will change from Guinea Woods Road to Glen Cove Road to Clinton Road). Turn right onto Stewart Avenue. Go one mile and at T-junction turn left onto Hilton Avenue. Immediately after crossing the railroad tracks, turn right onto Sixth Street. Continue onto South Avenue. The entrance to campus will be on your left..<br><br />
<br><br />
<b>Speakers: (TBD)</b><br><br><br />
<br />
[http://www.linkedin.com/in/blakecornell Blake Cornell], OWASP Board Member NY/NJ/LI<br />
<br />
<b>Session Initiation Protocol Bounce Attacks: Enumeration of Networked Addressing and Services With Timing Attacks and Other Vectors</b><br />
<br />
The SIP Bounce Attack is similar in nature to the File Transfer Protocol (FTP) Bounce Attack. SIP allows an attacker the ability to communicate with any Internet Protocol (IP) address or Fully Qualified Domain Name (FQDN) and their respective UDP or TCP port numbers. Utilizing precise timing algorithms it is possible to enumerate the address allocation of private networks (2) and determine the state of their ports. This is possible without authentication.<br />
<br />
There is an increasing trend to host SIP services publicly on the internet behind Demilitarized Zones (DMZ), firewalls and Access Control Lists (ACLs). Having the ability to bounce traffic through a protected system and allowing analysis of response data is quite risky.<br />
<br />
If a consumer grade VoIP product were reliably vulnerable to SIP bouncing an attacker could have a plethora of possible zombie proxies to choose from.<br />
<br />
These and other risks will be discussed.<br />
<br />
<br><br><br />
[http://pentest.cryptocity.net/blog/ Dan Guido], OWASP NY/NJ Board Member<br />
<br />
<b>Threat Modeling APT: A discussion of tactics behind recent targeted intrusions.</b><br />
<br />
<br />
<i>Free pizza and beverage will be provided. After event networking will be held at a local bar.</i><br><br><br />
<br />
<center>Come prepared for an evening of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local venue TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<center>If you can host an upcoming meeting please contact a LI board member.</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=79179Long Island2010-03-04T19:53:15Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form995438520/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 3/18/10 Thursday<br><br />
<b>Time:</b> 6:30 - 8pm<br><br />
<b>Place:</b> Adelphi Garden City Campus Ruth S. Harley University Center, room 210 [http://www.adelphi.edu/visitors/campus.php Campus Map]<i>The University Center is in the center of the campus, all the way to the North (marked as UNC)</i><br><br />
<b>Directions:</b> Via the Long Island Expressway (Route 495) <br><br />
<br />
Traveling east<br><br />
Take the L.I.E. to Exit 34 South or the Northern State Parkway to Exit 26 South (New Hyde Park Road). Turn right onto New Hyde Park Road. Continue south on New Hyde Park Road for approximately 3 miles. Turn left onto Stewart Avenue. At the fourth light, turn right onto Nassau Boulevard. Continue approximately for a quarter of a mile. At the first light (as soon as you cross over the railroad tracks), make a left onto South Avenue. The entrance to campus will be on your right.<br><br />
<br />
Traveling west<br><br />
Take the L.I.E. to Exit 39 South or the Northern State Parkway to Exit 31 (Glen Cove Road). Go south. (Note: the road will change from Guinea Woods Road to Glen Cove Road to Clinton Road). Turn right onto Stewart Avenue. Go one mile and at T-junction turn left onto Hilton Avenue. Immediately after crossing the railroad tracks, turn right onto Sixth Street. Continue onto South Avenue. The entrance to campus will be on your left..<br><br />
<br><br />
<b>Speakers: (TBD)</b><br><br><br />
<br />
[http://www.linkedin.com/in/blakecornell Blake Cornell], OWASP Board Member NY/NJ/LI<br />
<br />
<b>Session Initiation Protocol Bounce Attacks: Enumeration of Networked Addressing and Services With Timing Attacks and Other Vectors</b><br />
<br />
The SIP Bounce Attack is similar in nature to the File Transfer Protocol (FTP) Bounce Attack. SIP allows an attacker the ability to communicate with any Internet Protocol (IP) address or Fully Qualified Domain Name (FQDN) and their respective UDP or TCP port numbers. Utilizing precise timing algorithms it is possible to enumerate the address allocation of private networks (2) and determine the state of their ports. This is possible without authentication.<br />
<br />
There is an increasing trend to host SIP services publicly on the internet behind Demilitarized Zones (DMZ), firewalls and Access Control Lists (ACLs). Having the ability to bounce traffic through a protected system and allowing analysis of response data is quite risky.<br />
<br />
If a consumer grade VoIP product were reliably vulnerable to SIP bouncing an attacker could have a plethora of possible zombie proxies to choose from.<br />
<br />
These and other risks will be discussed.<br />
<br />
<br />
<br />
<i>Free pizza and beverage will be provided. After event networking will be held at a local bar.</i><br><br><br />
<br />
<center>Come prepared for an evening of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local venue TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<center>If you can host an upcoming meeting please contact a LI board member.</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Category:OWASP_Speakers_Project&diff=73032Category:OWASP Speakers Project2009-11-11T20:41:35Z<p>Bcornell: </p>
<hr />
<div>This program lead by [[:user:Knoblochmartin|Martin Knobloch]] helps local chapters or application security conferences to find OWASP related speakers to have OWASP presenters on site.<br />
<br />
This program allows two parties to find each other:<br />
<br />
* Local chapters or application security events that want to attract an OWASP speaker<br />
* OWASP speakers to entertain OWASP presentations and that want to see the world<br />
<br />
For sponsorship, see the [[:Category:OWASP_on_the_Move_Project|OWASP on the Move Project]] page<br />
<br />
== available presentations ==<br />
<br />
== available speakers ==<br />
If you want to (re)do an OWASP related presentation, propose them here with your availability boundaries (timing/geographical)<br />
<br />
* Add your name, contact and bio information to become available as OWASP Speaker!<br />
{| class="prettytable"<br />
! Name<br />
! Introduction<br />
! Available Area<br />
! Bios <br />
|-<br />
|[mailto:chuck(at)McCulloughAssociates.com Chuck McCullough]<br />
| Chuck provides training sessions to developers on the Top 10. Chuck welcomes speaking opportunities to any group. Chuck is available in the Texas area and at various other locations in the USA.<br />
| USA/Texas<br />
| [http://www.linkedin.com/in/chuckmccullough BIO]<br />
|-<br />
| Marc Curphey<br />
| Marc will happily speak about the WebAppSec industry, SDLC etc. around Europe. You can see him in action at [http://video.hitb.org/2006.html HITB with John Viega] (big download)<br />
| Europe<br />
| [http://www.linkedin.com/in/curphey BIO]<br />
|-<br />
| [mailto:tomb(at)owasp.org Tom Brennan]<br />
| based in NYC Metro is a long time volunteer and OWASP contributor. As a security evangelist is available for global speaking events to educate audiences about what OWASP Foundation mission is, how it works and projects. In addition he also provides talks on honeypot research and case-studies about tatical experinces when conducting Red Team/Tiger Team assessments involving the application, network, wireless and physical security<br />
| <br />
| [http://www.linkedin.com/in/tombrennan BIO] <br />
|-<br />
| [mailto:thesp0nge@owasp.org Paolo Perego]<br />
| Paolo is available to talk about [http://www.owasp.org/index.php/Category:OWASP_Orizon_Project Orizon project], safe coding and code review issues around Europe in the near October-December.<br />
| Europe<br />
| [http://www.linkedin.com/in/thesp0nge BIO]<br />
|-<br />
| [mailto:marc.m.morana@gmail.org Marco Morana]<br />
| Marco is available to talk about [http://iac.dtic.mil/iatac/download/security.pdf Software Security Frameworks]and Secure Code Reviews [https://www.cmpevents.com/CSI33/a.asp?option=G&V=3&id=443342 see 07 CSI conference as reference] in USA around November-December and in Europe around January-February<br />
| Europe<br />
| [http://www.linkedin.com/pub/2/a7a/59b BIO]<br />
|-<br />
| [mailto:sebastien.gioria@owasp.fr S&eacute;bastien Gioria]<br />
| Sebastien is available to talk about WebAppSec, educational purpose on AppSec in French or at least in english around France/Europe/Canada from middle of March 08. You can find some Talk on the [http://www.owasp.fr Owasp France Chapter] <br />
| France/Europe/Canada<br />
| [http://www.linkedin.com/in/gioria BIO]<br />
|-<br />
| [mailto:mkraushar@gmail.com Mordecai Kraushar]<br />
| Mordecai is available to talk about different topics within the Web application security space. One discussion involves the OWASP project [http://www.owasp.org/index.php/Category:OWASP_Vicnum_Project Vicnum], a flexible vulnerable web application that can be used in 'capture the flag' exercises.<br />
| Northeastern United States<br />
| [http://www.linkedin.com/in/mkraushar BIO]<br />
|-<br />
|[mailto:michael.coates@owasp.org Michael Coates]<br />
| Michael is available to talk on a variety of web application security topics. Talks are interactive and include live demos and code examples. Michael has spoken at multiple OWASP conferences and University security courses on topics such as Introduction to Application Security, Automated Defense Systems in Applications, Real Time Detection and Prevention of Application Worms, and security risks in SSL/TLS. Michael is based in Chicago and available to fly/drive as needed to the site.<br />
| USA/Chicago<br />
| [http://www.linkedin.com/in/mcoates BIO]<br />
|-<br />
|[mailto:dan.cornell@owasp.org Dan Cornell]<br />
| Dan Cornell has over twelve years of experience architecting, developing and securing web-based software systems. He speaks on a variety of software development and software security topics such as Vulnerability Management, Software Security Remediation, and Code Review/Static Analysis. Dan is based in San Antonio, TX and available to fly/drive as needed to the site.<br />
| USA/San Antonio<br />
| [http://www.denimgroup.com/about_team_dan.html BIO]<br />
|-<br />
|[mailto:John.Steven@owasp.org John Steven]<br />
| John speaks on a variety of topics including "How to build your own application security group", "Threat Modeling", "Code Review and Static analysis", as well as other topics. John has spoken at and given tutorials for multiple OWASP conferences. John frequents New York, Boston, Washington DC, and Charlotte, but is available for travel elsewhere.<br />
| Washington, DC/USA<br />
| [http://www.cigital.com/about/team/management.php#jsteven BIO]<br />
|-<br />
|[mailto:blake@owasp.org Blake Cornell]<br />
| Blake is available to speak regarding topics including Security v. HIPPA, Penetration Testing Methodologies, Fuzzing and Blended Threats such as attacking VoIP with the OWASP Top 10. Blake lives in the NY Metro area and is available for speaking at regional, national and world wide events.<br />
| New York, NY/USA<br />
| [http://www.linkedin.com/in/blakecornell BIO]<br />
|}<br />
<br />
* Add your name, contact and bio information to become available as OWASP Speaker!</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=70133Long Island2009-09-30T00:33:44Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe. How could an attacker 0wn your PBX with the OWASP Top 10? Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept 0day vectors will be discovered and exploited. This is going to be fun!<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
;All Day Event - Capture the Flag<br />
:There will be a day long CTF event. Test your skills, learn new exploitation techniques, hack in a team, get the highest score, win prizes? Hack the day away with your friends and peers.<br />
:--'''[http://pentest.cryptocity.net/blog/ Dan Guido], OWASP NY/NJ Board Member<br />
<br />
AFTER EVENT NETWORKING TBA!!<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local venue TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<center>If you can host an upcoming meeting please contact a LI board member.</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=70130Long Island2009-09-29T23:19:17Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe. How could an attacker 0wn your PBX with the OWASP Top 10? Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept 0day vectors will be discovered and exploited. This is going to be fun!<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
;All Day Event - Capture the Flag<br />
:There will be a day long CTF event. Test your skills, learn new exploitation techniques, hack in a team, get the highest score, win prizes. Hack the day away with your friends and peers.<br />
:--'''[http://pentest.cryptocity.net/blog/ Dan Guido], OWASP NY/NJ Board Member<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=70129Long Island2009-09-29T23:12:11Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe. How could an attacker 0wn your PBX with the OWASP Top 10? Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept 0day vectors will be discovered and exploited. This is going to be fun!<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
;All Day Event - Capture the Flag<br />
:There will be a day long CTF event. Test your skills, learn new exploitation techniques, hack in a team, get the highest score. Hack the day away with your friends and peers.<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=70110Long Island2009-09-29T20:35:40Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe. How could an attacker 0wn your PBX with the OWASP Top 10? Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept 0day vectors will be discovered and exploited. This is going to be fun!<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=70109Long Island2009-09-29T20:34:29Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. Current VoIP implimentations may be more vulnerable then you believe. How could an attacker 0wn your PBX with the OWASP Top 10? Easily. Topics will include Vulnerability Research, Protocol Fuzzing, VoIP and the OWASP Top 10. Proof of concept 0day vectors will be discovered and exploited.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=68823Long Island2009-09-14T13:09:41Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
RSVP REQUESTED [http://fs18.formsite.com/owaspli/form933354881/index.html http://www.owasp.org/images/7/7f/Register.gif]<br />
<br />
<b>Date:</b> 10/24/2009<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. How can an attacker 0wn your PBX with the OWASP Top 10? Proof of concept 0day attacks will be demonstrated and detailed.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - Network Version Control<br />
:Leveraging Python, Nmap, Ndiff and Subversion to create baselines of your hosts and services. Together, these form a basic foundation to detect unapproved changes and alert accordingly.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], OWASP LI Board Member<br />
;13-20 - TBD<br />
:--TBD<br />
<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=66687Long Island2009-07-27T18:51:27Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> TBD<br><br />
<b>Time:</b> 11:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Turn right after passing the security gate. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all attendees do not park in any spot marked as RESERVED. Once you enter building 200, pass through security, turn right and head down the hall, pass through the first set of doors. Our conference room is your first right. There will be signs posted along this path directing attendees to the room.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;11-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;11-20 - Attacking VoIP With The OWASP Top 10<br />
:VoIP systems allow for cheap and easy telephony communication. How can an attacker 0wn your PBX with the OWASP Top 10? Proof of concept 0day attacks will be demonstrated and detailed.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-20 - TBD<br />
:--TBD<br />
;13-20 - TBD<br />
:--TBD<br />
<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER!!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64737Long Island2009-06-22T15:12:11Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;10-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;11-20 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch<br />
:<br />
<br />
;12-25 - Education, Penetration Testing and Vulnerability Analysis<br />
:A course in Penetration Testing has existed at NYU:Poly as far back as 2002, in large part because of a NSA Center of Excellence in Education certification requirement. Professors for the course have come and gone and the course content has changed with them, sometimes for the better, but mostly for the worse. In the Summer of 2008, with no instructor in sight for the coming semester and the course material seriously neglected, I offered to teach it and rewrite it from scratch.<br />
<br />
:These are my experiences.<br />
:--'''[http://pentest.cryptocity.net/history/ Dan Guido], Board Member OWASP NYNJ<br />
;13-25 - Round Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/helengao Helen Gao], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
:--'''[http://pentest.cryptocity.net/history/ Dan Guido], Board Member OWASP NYNJ<br />
<br />
<br />
<br />
AFTER EVENT NETWORKING ON THE WATER !!<br />
<br />
'''[http://maps.google.com/maps?f=d&source=s_d&saddr=3500+Sunrise+Hwy,+Great+River,+NY+11739&daddr=445+Vanderbilt+Blvd,+Oakdale,+NY+11769-2009&hl=en&geocode=%3BFTN1bQIdVfuj-w&gl=us&mra=ls&sll=40.727859,-73.139371&sspn=0.011155,0.027938&ie=UTF8&ll=40.737925,-73.149204&spn=0.022307,0.055876&t=h&z=15 THE WHARF]<br />
<br />
445 Vanderbilt Blvd, Oakdale, NY 11769<br />
<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64479Long Island2009-06-19T18:28:42Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;10-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;11-20 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Education, Penetration Testing and Vulnerability Analysis<br />
:A course in Penetration Testing has existed at NYU:Poly as far back as 2002, in large part because of a NSA Center of Excellence in Education certification requirement. Professors for the course have come and gone and the course content has changed with them, sometimes for the better, but mostly for the worse. In the Summer of 2008, with no instructor in sight for the coming semester and the course material seriously neglected, I offered to teach it and rewrite it from scratch.<br />
<br />
:These are my experiences.<br />
:--'''[http://pentest.cryptocity.net/history/ Dan Guido], Board Member OWASP NYNJ<br />
;13-25 - Round Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/helengao Helen Gao], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64346Long Island2009-06-18T15:09:41Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome to [http://www.owasp.org/images/9/9f/2009-OWASP_KeyNote-V2.pdf OWASP Foundation]<br />
:--'''Helen Gao, OWASP LI Board <br />
;10-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;11-20 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - TBD<br />
:TBD<br />
;13-25 - Round Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/helengao Helen Gao], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64333Long Island2009-06-17T23:18:16Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;11-20 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;13-25 - Round Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan], Global Board Member, OWASP Foundation<br />
:--'''[http://www.linkedin.com/in/helengao Helen Gao], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64093Long Island2009-06-11T22:24:30Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through some recent incidents involving health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Reound Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan], Global Board Member, OWASP Foundation<br />
:--'''Helen Gao, Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:heleng@owasp.org Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64054Long Island2009-06-11T01:18:16Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
:A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
:All of these incidents were reported in the news within a five month period of each other. News like this is being reported with an increasing frequency. <br />
<br />
:Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through some recent incidents involving health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Reound Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan], Global Board Member, OWASP Foundation<br />
:--'''Helen Gao, Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan], Board Member, OWASP LI<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell], Board Member, OWASP NYNJ/LI<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBA.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64053Long Island2009-06-11T01:01:59Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Reound Table Discussion - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan], Helen Gao, [http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] and [http://www.linkedin.com/in/blakecornell Blake Cornell]<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64052Long Island2009-06-11T00:56:46Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Breaches happen. Proper audit compliance enables an organization the ability to detect and prevent attacks. A case study will be examined.<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''Helen Gao, [http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] and [http://www.linkedin.com/in/blakecornell Blake Cornell]<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64051Long Island2009-06-11T00:45:28Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:--'''Helen Gao, OWASP LI Board<br />
;10-20 - Who is OWASP and how could we help you?<br />
:--'''[http://www.linkedin.com/in/tombrennan Tom Brennan]<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Description TBD<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Successes, challenges, efforts, hopes and predictions for OWASP Long Island<br />
:--'''Helen Gao, [http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] and [http://www.linkedin.com/in/blakecornell Blake Cornell]<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64046Long Island2009-06-10T20:10:28Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Description TBD<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NJ/LI Board Member<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=64045Long Island2009-06-10T20:09:34Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Incident Response - Identify, Contain, Eradicate, Recover, Lessons Learned<br />
:Description TBD<br />
:--'''[http://www.linkedin.com/pub/ryan-behan/9/746/a12 Ryan Behan] Manager of Network Technologies at [http://www.ntst.com/ Netsmart Technologies]<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records (And What Can Be Done to Save Them)<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NY/LI Board Member<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63989Long Island2009-06-10T14:33:34Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Presentation TBD<br />
:TBD<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records and What Can Be Done to Save Them.<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NY/LI Board Member<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63988Long Island2009-06-10T14:32:15Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Presentation TBD<br />
:TBD<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Code Blue - The Unhealthy State of Your Medical Records and What Can Be Done to Save Them.<br />
:Millions of patient records have been disclosed to unauthorized third parties. Some of these records were stolen, some were lost yet all could have been prevented.<br />
<br />
A North Carolina hospital loses a laptop with 14,000 records. The Peninsula Orthopedic Associates lost backup tapes that help 100,000 patient records. The Wallgreens Health Initiative emailed 28,000 records to the state of Kentucky without using encryption. Confiker infects three University of Utah hospitals. Kaiser fires 15 employees for inappropriately accessing medical records. Two Scottish hospitals were infected by a computer worm. Researchers find 20,000 medical records using peer-to-peer software. The Mytob worm infects 4,700 computers at three UK hospitals. Confiker infects 8,000 computers at the Sheffield Teaching Hospitals Trust. A pro-Hamas computer hacker defaces an Israeli hospital's web site. Criminals tried to extort Express Scripts with the threat of releasing millions of patient records. SRA International was breached when malicious software allowed an attacker the ability to access patient data maintained by SRA. The list goes on.<br />
<br />
All of these incidents were reported in the news within a five month period of each other. These types of news are being reported with increasing frequency. <br />
<br />
Most of these incidents could have been easily avoided by conducting compliance audits and vulnerability assessments.<br />
<br />
We will walk through the most recent and most devastating incidents at health care facilities around the world and detail how they could have been prevented.<br />
:--'''[http://www.linkedin.com/in/blakecornell Blake Cornell] Security Consultant [http://www.net2s-us.com/ Net2S/BT-INS], OWASP NY/NY/LI Board Member<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63941Long Island2009-06-09T16:19:34Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<center>RSVP REQUIRED [http://fs18.formsite.com/owaspli/form562038653/index.html http://www.owasp.org/images/7/7f/Register.gif] </center><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Presentation TBD<br />
:TBD<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Presentation TBD<br />
:TBD<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63940Long Island2009-06-09T14:55:53Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks<br />
:TBD<br />
;10-20 - What is OWASP and how can we help you?<br />
:TBD<br />
;11-20 - Presentation TBD<br />
:TBD<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Presentation TBD<br />
:TBD<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63939Long Island2009-06-09T14:45:23Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<u>Agenda:</u><br><br><br />
;10-00 - Opening Remarks & Welcome<br />
:TBD<br />
;10-20 - What is OWASP and how can we help?<br />
:TBD<br />
;11-20 - Presentation TBD<br />
:TBD<br />
;12-10 - Lunch TBD<br />
:TBD<br />
;12-25 - Presentation TBD<br />
:TBD<br />
;13-25 - Presentation TBD<br />
:TBD<br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63813Long Island2009-06-08T23:26:35Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.behan@owasp.org Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63800Long Island2009-06-08T22:09:56Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River, NY 11730, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63799Long Island2009-06-08T22:08:50Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River , NY, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63796Long Island2009-06-08T22:04:05Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> Saturday June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River , NY, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63795Long Island2009-06-08T22:03:49Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> June 27th 2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River , NY, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63793Long Island2009-06-08T22:02:36Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River , NY, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] 212-202-6704<br />
</ul><br />
__NOTOC__<br />
<headertabs/><br />
<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63790Long Island2009-06-08T21:55:59Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy, Great River , NY, Building 200 [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY,+Great+River,+NY,+Building+200&sll=40.748249,-73.163388&sspn=0.009298,0.022745&ie=UTF8&ll=40.748249,-73.163388&spn=0.009298,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63787Long Island2009-06-08T21:10:58Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63786Long Island2009-06-08T21:10:35Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
<center>Come prepared for a day of networking with your industry peers.</center><br />
<br><br />
<center>We invite all attendees to food and libations after the meeting at a local restaurant TBD.</center><br />
<br><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63785Long Island2009-06-08T21:09:33Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
Come prepared for a day of networking with your industry peers, enter raffles for prizes and learn new techniques in application security.<br />
<br><br />
We invite all attendees to food and libations after the meeting at a local restaurant TBD.<br />
<br><br><br />
<center>If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.</center><br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63784Long Island2009-06-08T21:09:04Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
Come prepared for a day of networking with your industry peers, enter raffles for prizes and learn new techniques in application security.<br />
<br><br />
We invite all attendees to food and libations after the meeting at a local restaurant TBD.<br />
<br><br><br />
If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.<br />
<br />
<center>To be a co-sponsor for this or a future meeting consider [http://www.owasp.org/index.php/Membership annual chapter sponsorship]</center><br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
<br><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63783Long Island2009-06-08T21:06:16Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
<b>Date:</b> 6-27-2009<br><br />
<b>Time:</b> 10:00-14:00<br><br />
<b>Place:</b> Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
<b>Directions:</b> Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
We invite all attendees to food and libations after the meeting at a local restaurant TBD.<br />
<br><br />
If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
<br><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell] +1(212)202-6704<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63782Long Island2009-06-08T20:30:28Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
Date: 6-27-2009<br><br />
Time: 10:00-14:00<br><br />
Place: Sunrise Business Center, 3500 Sunrise Hwy [http://maps.google.com/maps?f=q&source=s_q&hl=en&geocode=&q=3500+Sunrise+Hwy,+NY&sll=40.706858,-73.576154&sspn=0.595471,1.455688&ie=UTF8&ll=40.673461,-73.502741&spn=0.009309,0.022745&t=h&z=16&iwloc=A MAP]<br><br />
Directions: Enter from the service road on the East Bound side of Sunrise Hwy. Attendees can park in front of Building 200 and enter through the Building 200 entrance. We must ask that all Attendees do not park in any spot marked as RESERVED.<br><br />
<br><br />
We invite all attendees to food and libations after the meeting at a local restaurant TBD.<br />
<br><br />
If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
<br><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell]<br />
</ul><br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63698Long Island2009-06-06T14:55:40Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
The next chapter meeting will be held at the end of June, 2009. <br />
<br />
<b>Details will be announced shortly, please check back often for details. </b><br />
<br />
If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
<ul><br />
<br><br><br />
*[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
*[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
*[mailto:blake@owasp.org Blake Cornell]<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Long_Island&diff=63697Long Island2009-06-06T14:54:30Z<p>Bcornell: </p>
<hr />
<div>{{Chapter Template|chaptername=Long Island | extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-longisland | emailarchives=http://lists.owasp.org/pipermail/owasp-longisland }}<br />
<br />
<paypal>Long Island</paypal><br />
<br />
==== Chapter Meetings ====<br />
<p style="margin:0; background:#cef2e0; font-size:120%; font-weight:bold; border:1px solid #a3bfb1; text-align:left; color:#000; padding:0.2em 0.4em; ">Scroll down to see the upcoming Long Island OWASP events</p> <br />
<br />
The next chapter meeting will be held at the end of June, 2009. <br />
<br />
<b>Details will be announced shortly, please check back often for details. </b><br />
<br />
If you join our [http://lists.owasp.org/mailman/listinfo/owasp-longisland mailing list], then you will receive details of the meeting as soon as they are finalized.<br />
<br />
==== Chapter News ====<br />
<br />
<br />
==== Chapter Leaders/Contacts ====<br />
[mailto:HelenG@Proginet.com Helen Gao, CISSP]<br />
[mailto:ryan.c.behan@gmail.com Ryan C Behan]<br />
[mailto:blake@owasp.org Blake Cornell]<br />
<br />
<br />
==External Links==<br />
* [http://www.qualityit.net/Resources/WhitePapers/IEEEP1074-2005-RoadmapForOptimizingSecurityInTheSystemAndSoftwareLifeCycle.pdf IEEE considers security as a software lifecycle development requirement]<br />
* [http://usa.visa.com/download/business/accepting_visa/ops_risk_management/cisp_PCI_Data_Security_Standard.pdf OWASP is a recommended secure coding guideline in PCI DSS]<br />
* [http://www.ietf.org/rfc/rfc2828.txt Internet Security Glossary]</div>Bcornellhttps://wiki.owasp.org/index.php?title=Talk:OWASP_Podcast&diff=49895Talk:OWASP Podcast2008-12-28T18:48:21Z<p>Bcornell: </p>
<hr />
<div>Speakers should call in via <br />
- Skype directly via another Skype account - Normal computer headset works best here. The moderator is Skype user jmanico<br />
- (213) 985 1930. Please use an old fashioned plain-ol wired telephone - no wireless headsets or cell phones, please<br />
<br />
The show is produced by Jim Manico and Kevin Coons using <br />
- Skype (allow callers to call-in via computer)<br />
- SkypeIN/OUT (allow callers to call in via a standard phone number<br />
- MX Skype Recorder (to record the Skype feed)<br />
- Soundforge (simple first-pass editing - Audacity is a free alternative)<br />
- Garage Band or Pro Tools (eq, sound levels, conversion to mp3 - Audacity is a free alternative)<br />
- mp3tag (allows for detailed tagging of your mp3's metadata, including providing an embedded images)<br />
<br />
<br />
Cost Estimates<br />
{|<br />
|[http://www.skype.com/download/skype/windows/ Skype Account] (Skype-2-Skype)<br />
|$0.00<br />
|-<br />
|[http://www.skype.com/allfeatures/subscriptions/ Skype Subscription] (Unlimited US)<br />
|$8.85 For 3 Months<br />
|-<br />
|[http://www.skype.com/allfeatures/onlinenumber/ SkypeIN Phone Number] (Requires Subscription)<br />
|$18.00 For 3 Months<br />
|-<br />
|[http://www.skyperec.com/registration.htm MX Skype Recorder]/[http://callgraph.in/ Call Graph]<br />
|$19.95/$0.00<br />
|-<br />
|[http://audacity.sourceforge.net/ Audacity]<br />
|$0.00<br />
|-<br />
|[http://www.mp3tag.de/en/download.html mp3tag]<br />
|$0.00<br />
|}<br />
<br />
== Regarding Podcasts #2 and #3 ==<br />
<br />
Only the first podcast appears in the feed right now. Can someone make the other two podcasts also available?--[[User:Thunderboltz|Thunderboltz]] 03:53, 28 December 2008 (EST)</div>Bcornellhttps://wiki.owasp.org/index.php?title=Talk:OWASP_Podcast&diff=49894Talk:OWASP Podcast2008-12-28T18:42:01Z<p>Bcornell: </p>
<hr />
<div>Speakers should call in via <br />
- Skype directly via another Skype account - Normal computer headset works best here. The moderator is Skype user jmanico<br />
- (213) 985 1930. Please use an old fashioned plain-ol wired telephone - no wireless headsets or cell phones, please<br />
<br />
The show is produced by Jim Manico and Kevin Coons using <br />
- Skype (allow callers to call-in via computer)<br />
- SkypeIN/OUT (allow callers to call in via a standard phone number<br />
- MX Skype Recorder (to record the Skype feed)<br />
- Soundforge (simple first-pass editing - Audacity is a free alternative)<br />
- Garage Band or Pro Tools (eq, sound levels, conversion to mp3 - Audacity is a free alternative)<br />
- mp3tag (allows for detailed tagging of your mp3's metadata, including providing an embedded images)<br />
<br />
<br />
Cost Estimates<br />
{|<br />
|[http://www.skype.com/download/skype/windows/ Skype Account] (Skype-2-Skype)<br />
|$0.00<br />
|-<br />
|[http://www.skype.com/allfeatures/subscriptions/ Skype Subscription] (Unlimited US)<br />
|$8.85 For 3 Months<br />
|-<br />
|[http://www.skype.com/allfeatures/onlinenumber/ SkypeIN Phone Number] (Requires Subscription)<br />
|$18.00 For 3 Months<br />
|-<br />
|[http://www.skyperec.com/registration.htm MX Skype Recorder]<br />
|$19.95<br />
|-<br />
|[http://audacity.sourceforge.net/ Audacity]<br />
|$0.00<br />
|-<br />
|[http://www.mp3tag.de/en/download.html mp3tag]<br />
|$0.00<br />
|}<br />
<br />
== Regarding Podcasts #2 and #3 ==<br />
<br />
Only the first podcast appears in the feed right now. Can someone make the other two podcasts also available?--[[User:Thunderboltz|Thunderboltz]] 03:53, 28 December 2008 (EST)</div>Bcornellhttps://wiki.owasp.org/index.php?title=Talk:OWASP_Podcast&diff=49870Talk:OWASP Podcast2008-12-27T18:59:14Z<p>Bcornell: </p>
<hr />
<div>Speakers should call in via <br />
- Skype directly via another Skype account - Normal computer headset works best here. The moderator is Skype user jmanico<br />
- (213) 985 1930. Please use an old fashioned plain-ol wired telephone - no wireless headsets or cell phones, please<br />
<br />
The show is produced by Jim Manico and Kevin Coons using <br />
- Skype (allow callers to call-in via computer)<br />
- SkypeIN/OUT (allow callers to call in via a standard phone number<br />
- MX Skype Recorder (to record the Skype feed)<br />
- Soundforge (simple first-pass editing)<br />
- Garage Band or Pro Tools (eq, sound levels, conversion to mp3)<br />
- mp3tag (allows for detailed tagging of your mp3's metadata, including providing an embedded images)<br />
<br />
<br />
The follow cost estimates follow the current process requirements. The following associated costs can be minimized to ensure that this process can be reproduced quickly, easily and cost effectively.<br />
<br />
{|<br />
|Skype Account (Skype-2-Skype)<br />
|$0.00<br />
|-<br />
|Skype Subscription (Unlimited US)<br />
|$8.85 For 3 Months<br />
|-<br />
|SkypeIN Phone Number (Requires Subscription)<br />
|$18.00 For 3 Months<br />
|-<br />
|MX Skype Recorder<br />
|$19.95<br />
|-<br />
|Soundforge 9.0<br />
|$219.95<br />
|-<br />
|Garage Band (Mac iLife)/Pro Tools<br />
|$79.00/$445.42<br />
|-<br />
|mp3tag<br />
|$0.00<br />
|}</div>Bcornell