https://wiki.owasp.org/api.php?action=feedcontributions&feedformat=atom&user=JderryOWASP - User contributions [en]2026-05-07T12:07:22ZUser contributionsMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=Nov_12,_2012&diff=139175Nov 12, 20122012-11-10T03:44:12Z<p>Jderry: </p>
<hr />
<div>'''2012 OWASP Board Meeting Agenda'''<br />
<br />
12:00pm - 1:30pm EST<br />
<br />
Teleconference Information:<br />
<br />
----<br />
<br />
<br />
Approval of Prior Minutes<br />
<br />
'''President's Report'''<br />
<br />
'''Treasurer's Report'''<br />
* Matt / Alison<br />
<br />
'''OPS TEAM UPDATES'''<br />
* Kate Hartmann<br />
* Sarah Baso <br />
<br />
<br />
[https://www.owasp.org/index.php/Global_Committee_Pages Global Committee] Reports<br />
<br />
- https://www.owasp.org/index.php/OWASP_Initiatives_Global_Strategic_Focus status report<br />
<br />
'''Old Business (Status of Action Items Open)'''<br />
<br />
* All Board Members and Board Member Elects have reviewed and submitted feedback for [https://docs.google.com/a/owasp.org/document/d/1r_hS2ioEBcNOKqmEjSJmlLUOdQEb5qPb_0GU_VU1Arw/edit amendments] per bylaws - Brennan<br />
* Bylaws moved to wiki - Manico<br />
* Update on Wiki 3rd Party - Manico<br />
* [https://docs.google.com/a/owasp.org/document/d/159bD2oeAmM2yfPNeq5wHvIvHcl10Hl-c3Um2GXAW81Y/edit Splits] Chapters/OWASP - Dave Wichers (Vote needed)<br />
- Brennan proposes a flat 80/20 split when it is a chapter effort a 80/20 split when it is a OWASP Foundation effort with local chapter help keep it simple.<br />
* New Hires - Kate<br />
<br />
<br />
'''New Business'''<br />
<br />
* Update on voter turnout statistics & discussion of next steps - Kelly, Kate & All<br />
* $500 per chapter/project investment budget item for 2013 - Brennan<br />
* OWASP Conflict of Interest public statement: https://twitter.com/manicode/status/265934370991386624 - Jim Manico <br />
* Remove all project leaders that have been on a project, initiative, committee but have done nothing (measurable) in the last 6 months <br />
** a good test is just to ask: 'Dear project leader XYX, what have you done for the project/initiative/committee ABC over the last 6 months.'<br />
** see [http://diniscruz.blogspot.co.uk/2012/11/the-difference-between-being-appointed.html The difference between being 'Appointed' and being 'Accepted' as an OWASP Leader (of its Fork)] for more details -- Submitted by Dinis<br />
<br />
<br />
Adjourn</div>Jderryhttps://wiki.owasp.org/index.php?title=User:Jderry&diff=133397User:Jderry2012-07-24T10:37:50Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''Got a Question for me?''' [mailto:jderry@owasp.org Email me at OWASP]<br />
<br />
<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
== My BIO ==<br />
<br />
Justin is a seasoned Information Security Professional with over 16 years in the industry. Since 2000, Justin has focused primarily on securing applications and evangelising the need for secure software. He is currently the CEO of Appsecure. Appsecure is Asia-Pacific’s leading Application Security specialist consulting firm. The firm works with industry bodies and large-scale enterprises to identify, educate and minimise information security threats. He brings to clients a wealth of experience in penetration testing, source code reviews, assurance testing, and implementing strategic goals to minimise operational risks associated with application security threats.<br />
<br />
Justin has been extensively involved with OWASP since 2002. Within OWASP, he has worked on many different projects, organized and run local chapters, and chaired the Asia Pacific conference each year it has run in Australia. Justin has a strong reputation within the industry and has delivered keynote and technical presentations at many global industry events.<br />
<br />
Justin’s passion about application security has lead him to increase the awareness of security threats, participate in open forums, and reach out to developers outside of the information security industry. Most recently, Justin has focused on the strategic problems associated with implementing effective application security controls. Hence, he was one of the core contributors to the OpenSAMM (OWASP) project when Pravir Chandra started it. Lastly, Justin finds time to write code and contribute to the open source community and industry bodies on the topic of secure code development and technology adoption.<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133396Justin Derry2012-07-24T10:37:19Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''Got a Question for me?''' [mailto:jderry@owasp.org Email me at OWASP]<br />
<br />
<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
== My BIO ==<br />
<br />
Justin is a seasoned Information Security Professional with over 16 years in the industry. Since 2000, Justin has focused primarily on securing applications and evangelising the need for secure software. He is currently the CEO of Appsecure. Appsecure is Asia-Pacific’s leading Application Security specialist consulting firm. The firm works with industry bodies and large-scale enterprises to identify, educate and minimise information security threats. He brings to clients a wealth of experience in penetration testing, source code reviews, assurance testing, and implementing strategic goals to minimise operational risks associated with application security threats.<br />
<br />
Justin has been extensively involved with OWASP since 2002. Within OWASP, he has worked on many different projects, organized and run local chapters, and chaired the Asia Pacific conference each year it has run in Australia. Justin has a strong reputation within the industry and has delivered keynote and technical presentations at many global industry events.<br />
<br />
Justin’s passion about application security has lead him to increase the awareness of security threats, participate in open forums, and reach out to developers outside of the information security industry. Most recently, Justin has focused on the strategic problems associated with implementing effective application security controls. Hence, he was one of the core contributors to the OpenSAMM (OWASP) project when Pravir Chandra started it. Lastly, Justin finds time to write code and contribute to the open source community and industry bodies on the topic of secure code development and technology adoption.<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133395Justin Derry2012-07-24T10:36:58Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
<br />
'''Got a Question for me?''' [mailto:jderry@owasp.org Email me at OWASP]<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
== My BIO ==<br />
<br />
Justin is a seasoned Information Security Professional with over 16 years in the industry. Since 2000, Justin has focused primarily on securing applications and evangelising the need for secure software. He is currently the CEO of Appsecure. Appsecure is Asia-Pacific’s leading Application Security specialist consulting firm. The firm works with industry bodies and large-scale enterprises to identify, educate and minimise information security threats. He brings to clients a wealth of experience in penetration testing, source code reviews, assurance testing, and implementing strategic goals to minimise operational risks associated with application security threats.<br />
<br />
Justin has been extensively involved with OWASP since 2002. Within OWASP, he has worked on many different projects, organized and run local chapters, and chaired the Asia Pacific conference each year it has run in Australia. Justin has a strong reputation within the industry and has delivered keynote and technical presentations at many global industry events.<br />
<br />
Justin’s passion about application security has lead him to increase the awareness of security threats, participate in open forums, and reach out to developers outside of the information security industry. Most recently, Justin has focused on the strategic problems associated with implementing effective application security controls. Hence, he was one of the core contributors to the OpenSAMM (OWASP) project when Pravir Chandra started it. Lastly, Justin finds time to write code and contribute to the open source community and industry bodies on the topic of secure code development and technology adoption.<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=User:Jderry&diff=133394User:Jderry2012-07-24T10:35:59Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
== My BIO ==<br />
<br />
Justin is a seasoned Information Security Professional with over 16 years in the industry. Since 2000, Justin has focused primarily on securing applications and evangelising the need for secure software. He is currently the CEO of Appsecure. Appsecure is Asia-Pacific’s leading Application Security specialist consulting firm. The firm works with industry bodies and large-scale enterprises to identify, educate and minimise information security threats. He brings to clients a wealth of experience in penetration testing, source code reviews, assurance testing, and implementing strategic goals to minimise operational risks associated with application security threats.<br />
<br />
Justin has been extensively involved with OWASP since 2002. Within OWASP, he has worked on many different projects, organized and run local chapters, and chaired the Asia Pacific conference each year it has run in Australia. Justin has a strong reputation within the industry and has delivered keynote and technical presentations at many global industry events.<br />
<br />
Justin’s passion about application security has lead him to increase the awareness of security threats, participate in open forums, and reach out to developers outside of the information security industry. Most recently, Justin has focused on the strategic problems associated with implementing effective application security controls. Hence, he was one of the core contributors to the OpenSAMM (OWASP) project when Pravir Chandra started it. Lastly, Justin finds time to write code and contribute to the open source community and industry bodies on the topic of secure code development and technology adoption.<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133393Justin Derry2012-07-24T10:34:09Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
== My BIO ==<br />
<br />
Justin is a seasoned Information Security Professional with over 16 years in the industry. Since 2000, Justin has focused primarily on securing applications and evangelising the need for secure software. He is currently the CEO of Appsecure. Appsecure is Asia-Pacific’s leading Application Security specialist consulting firm. The firm works with industry bodies and large-scale enterprises to identify, educate and minimise information security threats. He brings to clients a wealth of experience in penetration testing, source code reviews, assurance testing, and implementing strategic goals to minimise operational risks associated with application security threats.<br />
<br />
Justin has been extensively involved with OWASP since 2002. Within OWASP, he has worked on many different projects, organized and run local chapters, and chaired the Asia Pacific conference each year it has run in Australia. Justin has a strong reputation within the industry and has delivered keynote and technical presentations at many global industry events.<br />
<br />
Justin’s passion about application security has lead him to increase the awareness of security threats, participate in open forums, and reach out to developers outside of the information security industry. Most recently, Justin has focused on the strategic problems associated with implementing effective application security controls. Hence, he was one of the core contributors to the OpenSAMM (OWASP) project when Pravir Chandra started it. Lastly, Justin finds time to write code and contribute to the open source community and industry bodies on the topic of secure code development and technology adoption.<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133392Justin Derry2012-07-24T10:32:52Z<p>Jderry: /* Justin Derry */</p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences (Back as far as 2006)<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133391Justin Derry2012-07-24T10:32:27Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br />
* OWASP Asia Pacific/Australia Conferences Chair & Organiser (2008, 2009, 2012)<br />
* Founder of OWASP Brisbane Chapter<br />
* Core Contributor to OpenSAMM Project<br />
* Contributor to the OWASP WASS Project (Now PCI Project)<br />
* Project Lead for OWASP Interceptor Project and SoC (now closed) if you're looking go use ZAP! Awesome tool<br />
* Presentations at OWASP Conferences, including OWASP Appsec 2006 in Seattle<br />
* Presentations at OWASP Japan, China, Australia<br />
* Member of the Global Conferences Committee (Previously)<br />
* Helped to grow Australian Chapters including presentations at each Chapter<br />
* Completed a number of external presentations on OWASP (Auscert, China Software Summit, Japan Developer Group - JAVA & .NET, US, Europe - OWASP)<br />
<br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Mission/Vision ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133390Justin Derry2012-07-24T09:52:26Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Objective ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133389Justin Derry2012-07-24T09:51:22Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Justin Derry </b> ==<br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
== My OWASP Objective ==<br />
<br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133388Justin Derry2012-07-24T09:50:29Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <br />
<br />
== <b>Name: Justin Derry </b> ==<br />
<br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133387Justin Derry2012-07-24T09:49:45Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
* '''OWASP Community'''<br/>The OWASP Community is a critical resource that we should help continue to grow and expand with updated projects, new technologies and new approaches to solving the risks associated with application security. Firmly investing in these resources will ensure we continue to be recognised as the global leader.<br />
<br />
* '''OWASP Transparency'''<br/>With such a recognised brand, I believe transparency and openness of all activities within OWASP ensures that we remain as the “trusted source” of information within the industry.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133386Justin Derry2012-07-24T09:48:12Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* '''Global Outreach - Expanding Asia Pacific'''<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
* '''OWASP - Application Security Evangelism'''<br />I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133385Justin Derry2012-07-24T09:47:44Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* Global Outreach - Expanding Asia Pacific<br/>To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
'''* OWASP - Application Security Evangelism'''<br />
<br />
I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133384Justin Derry2012-07-24T09:47:30Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
* Global Outreach - Expanding Asia Pacific<br />
To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
'''* OWASP - Application Security Evangelism'''<br />
<br />
I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133383Justin Derry2012-07-24T09:46:56Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
'''* Global Outreach - Expanding Asia Pacific'''<br />
<br />
To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
'''* OWASP - Application Security Evangelism'''<br />
<br />
I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133382Justin Derry2012-07-24T09:46:16Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
'''* Global Outreach - Expanding Asia Pacific'''<br />
To ensure adequate representation of Asia Pacific region within OWASP, OWASP should assist local regions with chapters, conferences and language translation.<br />
<br />
'''* OWASP - Application Security Evangelism'''<br />
I firmly believe that OWASP needs to spend more time with developers, project owners and businesses to deliver a few key messages. These messages emphasize that application security is relevant and important. The messages also need to illustrate the current threat landscape. We need to take our wealth of experience and information to the wider community by attending and presenting OWASP to the community outside of the Application/Information Security forum.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133381Justin Derry2012-07-24T09:39:55Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences (most years). I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP, and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
'''My Vision for OWASP''' <br /><br />
I’ve been working with OWASP since 2002. During this time, I’ve seen a dramatic rise in the need for Application Security within the global industry. OWASP plays a critical role as an independent advisor to the community on topics of Application Security. I firmly believe that OWASP is the leading and only truly open resource on application security topics. It is the most globally trusted brand in this field. Historically, OWASP has tried to become a global organisation with some success. To be a truly global brand, we need to significantly increase our focus within the Asia Pacific Rim. This can be achieved through a top-down approach of representation on the board and core committees within the region.<br />
<br />
The Asia Pacific region has a number of unique challenges. These include language, cultural and distance issues. The majority of OWASP members are from the US or UK geographies. To ensure a global reach, OWASP must meet these challenges head on. This involves growing local, country, and regional chapters. A program must be built to help language-specific translation of key OWASP project resources. OWASP must assist local chapters with planning local conferences, events, and coordinating international speakers. OWASP must also aide in evangelising the mission throughout the region.<br />
<br />
We know that the OWASP brand is one of the most trusted brands in Application Security. It is critical that OWASP maintains transparency and be open to members and the community at large.<br />
<br />
My key focus statements for OWASP are as follows:<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133380Justin Derry2012-07-24T09:37:09Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP continues to grow and is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133379Justin Derry2012-07-24T09:36:38Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
<br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:''' <br /><br />
To ensure OWASP is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133378Justin Derry2012-07-24T09:36:15Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Objective:'''<br />
To ensure OWASP is a ''transparent and Open organisation'' that has ''global'' reach across the Information Security and ''Development Communities''.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133377Justin Derry2012-07-24T09:34:39Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b Click Here]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133376Justin Derry2012-07-24T09:34:18Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b|Click Here]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133375Justin Derry2012-07-24T09:33:55Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [Click here|http://www.linkedin.com/pub/justin-derry/1/b54/84b]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133373Justin Derry2012-07-24T09:33:41Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter and conference sessions across Australia and Asia Pacific. I've also presented at conferences around the world on Application Security, and spoken and been an evangelist for OWASP and Application Security at many conferences. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133372Justin Derry2012-07-24T09:31:53Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="1000" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="850" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter sessions across Australia. See more of my experience in OWASP below. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133371Justin Derry2012-07-24T09:31:29Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter sessions across Australia. See more of my experience in OWASP below. <br /><br />
<br /><br />
<br />
'''LinkedIn Profile:''' [http://www.linkedin.com/pub/justin-derry/1/b54/84b]<br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133367Justin Derry2012-07-24T05:58:46Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
'''Job:''' CEO/Managing Partner Appsecure (Australia) <br /><br />
'''OWASP Involvement:''' <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter sessions across Australia. See more of my experience in OWASP below. <br /><br />
<br /><br />
<br />
'''My OWASP Goals:'''<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133366Justin Derry2012-07-24T05:57:55Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement: <br /><br />
I've been involved with OWASP for nearly 10 years, and have worked within the organisation in many roles. Recently for a number of years, i've been the conference chair and organiser of the OWASP Asia Pacific/Australia conferences. I worked extensively on the OpenSAMM project with Pravir, and have reviewed other recent projects. Previously i've written and run the Interceptor project for OWASP (now closed), and have been a chapter leader and organised many chapter sessions across Australia. See more of my experience in OWASP below. <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133362Justin Derry2012-07-24T02:33:20Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement: <br /><br />
Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
There's more to come here..... Stay Tuned<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133361Justin Derry2012-07-24T02:31:48Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement: <br /><br />
Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133360Justin Derry2012-07-24T02:31:18Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131"| <b>Name: Justin Derry </b><br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement: <br /><br />
Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133359Justin Derry2012-07-24T02:30:43Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| <b>Name: Justin Derry </b><br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement: <br /><br />
Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133358Justin Derry2012-07-24T02:30:08Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #FFFFFF; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name: Justin Derry <br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133357Justin Derry2012-07-24T02:29:47Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px;"<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name: Justin Derry <br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133356Justin Derry2012-07-24T02:29:24Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 0px; border-color: #010101; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name: Justin Derry <br /><br />
Job: CEO/Managing Partner Appsecure (Australia) <br /><br />
OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below) <br /><br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133355Justin Derry2012-07-24T02:28:44Z<p>Jderry: </p>
<hr />
<div><br />
{| border="0" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 1px; border-color: #010101; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name: Justin Derry<br />
Job: CEO/Managing Partner Appsecure (Australia)<br />
OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below)<br />
<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133354Justin Derry2012-07-24T02:28:13Z<p>Jderry: </p>
<hr />
<div><br />
{| border="1" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 1px; border-color: #010101; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name:&#160; Justin Derry<br />
Job: CEO/Managing Partner @ Appsecure (Australia)<br />
OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below)<br /><br />
<br />
My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133353Justin Derry2012-07-24T02:27:30Z<p>Jderry: </p>
<hr />
<div><br />
{| border="1" width="800" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 1px; border-color: #010101; "<br />
|-<br />
| align="left" valign="top" width="150" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="650" height="131" style="border: solid #010101 1px;"| Name:&#160; Justin DerryJob:&#160;&#160;&#160;&#160;&#160; CEO/Managing Partner @ Appsecure (Australia)OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below)<br />My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133352Justin Derry2012-07-24T02:26:45Z<p>Jderry: </p>
<hr />
<div><br />
|}<br />
{| border="1" width="1873" cellpadding="3" cellspacing="0" style="table-layout: fixed; border-collapse: collapse; border-width: 1px; border-color: #010101; "<br />
|-<br />
| align="left" valign="top" width="179" height="131" style="border: solid #010101 1px;"| <div align="left"><span style="font-size: 12pt;">[[image:JustinDerryPublicImage.png]]</span></div><br />
| align="left" valign="top" width="1680" height="131" style="border: solid #010101 1px;"| Name:&#160; Justin DerryJob:&#160;&#160;&#160;&#160;&#160; CEO/Managing Partner @ Appsecure (Australia)OWASP Involvement:Since 2002, on many different projects, chapters, conferences and so on (see below)<br />My OWASP Goals:<br />
To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development Communities.</div><br />
<br />
<br />
|}<br />
<br />
&nbsp;&nbsp;</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133351Justin Derry2012-07-23T23:12:26Z<p>Jderry: </p>
<hr />
<div>{| class="prettytable"<br />
|-<br />
|<br />
[[image:JustinDerryPublicImage.png]]<br />
<br />
|<br />
Name: Justin Derry<br />
<br />
Job: CEO/Managing Partner at Appsecure (Australia)<br />
<br />
Involvement in OWASP: Since 2002 (Conferences, Chapters, Projects)<br />
<br />
<br />
<br />
My OWASP Goals: To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development community.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=File:JustinDerryPublicImage.png&diff=133350File:JustinDerryPublicImage.png2012-07-23T23:12:00Z<p>Jderry: Image of Justin Derry (OWASP-Appsecure) for OWASP Board Election 2012</p>
<hr />
<div>Image of Justin Derry (OWASP-Appsecure) for OWASP Board Election 2012</div>Jderryhttps://wiki.owasp.org/index.php?title=Justin_Derry&diff=133349Justin Derry2012-07-23T23:10:58Z<p>Jderry: Created page with "{| class="prettytable" |- | C:\Users\jderry.CORP\Desktop\JustinDerryPublicImage.png | Name: Justin Derry Job: CEO/Managing Partner at Appsecure (Austral..."</p>
<hr />
<div>{| class="prettytable"<br />
|-<br />
|<br />
[[image:Picture 1|C:\Users\jderry.CORP\Desktop\JustinDerryPublicImage.png]]<br />
<br />
|<br />
Name: Justin Derry<br />
<br />
Job: CEO/Managing Partner at Appsecure (Australia)<br />
<br />
Involvement in OWASP: Since 2002 (Conferences, Chapters, Projects)<br />
<br />
<br />
<br />
My OWASP Goals: To ensure OWASP is a transparent and Open organisation that has global reach across the Information Security and Development community.<br />
<br />
<br />
<br />
|}</div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=127325AppSecAsiaPac20122012-04-03T01:40:05Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: To be Announced<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - Ground Floor - Four Points Sheraton'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Gala Dinner - Grand Ballroom. (Inclusive in Conference Fee) - Speaker: Sabeena Oberoi - Assistant Secretary Cyber Security and Asia Pacific Engagement.'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: [[OWASP_Zed_Attack_Proxy_Project OWASP Project - Zed Attack Proxy (ZAP)]]'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: DSD - Cyber Security Australia'''<br />
&nbsp;Speaker: Chris Clarke - Cyber Security Analyst<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=127324AppSecAsiaPac20122012-04-03T01:39:39Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: To be Announced<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - Ground Floor - Four Points Sheraton'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Gala Dinner - Grand Ballroom. (Inclusive in Conference Fee) - Speaker: Sabeena Oberoi - Assistant Secretary Cyber Security and Asia Pacific Engagement.'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: [[OWASP_Zed_Attack_Proxy_Project OWASP Project - Zed Attack Proxy (ZAP)]]'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: DSD - Cyber Security Australia'''<br />
&nbsp;Speaker: Chris Clarke - Cyber Security Analyst<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
Click here for a Layout of the Conference Floor Plan. [[File:AppsecAsiaLayout.jpg|Layout]]<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderryhttps://wiki.owasp.org/index.php?title=File:AppsecAsiaLayout.jpg&diff=127323File:AppsecAsiaLayout.jpg2012-04-03T01:38:18Z<p>Jderry: </p>
<hr />
<div></div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=126748AppSecAsiaPac20122012-03-23T05:01:39Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: To be Announced<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - Ground Floor - Four Points Sheraton'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Gala Dinner - Grand Ballroom. (Inclusive in Conference Fee) - Speaker: Sabeena Oberoi - Assistant Secretary Cyber Security and Asia Pacific Engagement.'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - ZED Attack Proxy'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: DSD - Cyber Security Australia'''<br />
&nbsp;Speaker: Chris Clarke - Cyber Security Analyst<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=126747AppSecAsiaPac20122012-03-23T04:59:27Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: TBA<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - Ground Floor - Four Points Sheraton'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Gala Dinner - Grand Ballroom. (Inclusive in Conference Fee) - Speaker: Sabeena Oberoi - Assistant Secretary Cyber Security and Asia Pacific Engagement.'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - ZED Attack Proxy'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: DSD - Cyber Security Australia'''<br />
&nbsp;Speaker: Chris Clarke - Cyber Security Analyst<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=126746AppSecAsiaPac20122012-03-23T04:56:36Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: TBA<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - TBA'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Evening Networking Event - TBA'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - ZED Attack Proxy'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: DSD - Cyber Security Australia'''<br />
&nbsp;Speaker: Chris Clarke - Cyber Security Analyst<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderryhttps://wiki.owasp.org/index.php?title=AppSecAsiaPac2012&diff=126745AppSecAsiaPac20122012-03-23T04:47:41Z<p>Jderry: </p>
<hr />
<div>__NOTOC__ <br />
{| border="0" align="center" style="width: 100%;"<br />
|-<br />
| style="width: 75%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:Owasp appsecAsia2012ConfBanner.jpg]]<br />
| style="width: 25%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
|}<br />
=Welcome=<br />
<font size=2pt><br />
{{Social Media Links}}<br />
<!-- Twitter Box --> <br />
<!--<br />
'''@appsecasia Twitter Feed ([http://twitter.com/appsecasia follow us on Twitter!])''' <twitter>228540661</twitter> --><br />
<br />
{| border="0" cellpadding="15" align="center" class="FCK__ShowTableBorders" style="width: 100%;"<br />
|-<br />
| style="width: 35%; background: none repeat scroll 0% 0% rgb(255, 255, 255); color: black;" | <br />
<center>[[File:Owaspconf2012_small320w.jpg]]</center><br />
<br />
<br/><br />
<br/><br />
'''Welcome to the OWASP 2012 Appsec Asia Pacific Conference.'''<br />
<br />
The event is being held in Sydney, Australia from the 11th to the 14th of April 2012 at the Four Points Sheraton Darling Harbour.<br />
<br />
The conference consists of 2 days of world class training by OWASP instructor's followed by 2 days of quality presentations and keynotes from industry leaders, OWASP projects and industry consultants. In previous years the OWASP Asia Pacific conference has been rated as one of the "must attend" events of the year, with the conference always filling up quickly.<br />
<br/><br />
<br />
<br />
'''Who should attend this conference:'''<br />
<br />
* Application Developers, Testers, Quality Assurance Team Members<br />
* Chief Information Officers, Security Officers, Technology Officers<br />
* Security Managers and Staff<br />
* Executives, Managers and staff responsible for IT Security Governance<br />
* IT Professionals interested in Improving Information Security<br />
<br/><br />
<br />
'''Conference Highlights:'''<br />
<br />
* Alastair MacGibbon: Keynote Presentation (more information available on "Speakers" Tab)<br />
* Jacob West (Fortify - HP): Keynote Presentation (more information available on "Speakers" Tab)<br />
* Industry Leading training - Exploiting Web Applications with Samurai-WTF<br />
* Industry Panel from Finance and Insurance Sectors<br />
* Networking Opportunities to meet peers and other developers<br />
* Gain access to resources within OWASP projects as well as leading vendors<br />
<br/><br />
[[File:RegisterForAppsec.png|link=http://www.regonline.com/appsecapac2012]]<br />
<br />
| style="width: 20%; background: none repeat scroll 0% 0% rgb(255, 255, 255);" | <br />
<center>'''Thank you to all of our supporters!'''</center><br />
<br/><br />
<h2><center>Diamond & Platinum Sponsors</center></h2> <br />
<br />
<center>[[File:Fortify HP logo.png|link=http://www.fortify.com]]</center><br />
<br />
<br />
<h2><center>Gold & Silver Sponsors</center></h2> <br />
<br />
<br />
<center>[[File:AppsecureLogo.jpg|link=http://www.appsecure.com/]]</center><br/><br />
<br />
<center>[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]</center><br/><br />
<br />
<center>[[File:GASystems-logo.jpg|link=http://www.gasystems.com.au/]]</center><br/><br />
<br />
<center>[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]</center><br/><br />
<br />
<center>[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]</center><br/><br />
<br />
<center>[[File:SPL-LOGO-LARGE.png|link=http://www.trustwave.com/]]</center><br/><br />
<br />
<br />
<h2><center> Associations & Supporters</center></h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
<center>[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]</center><br />
<br />
<br />
<center>[[File:AisaLogo.png|link=http://www.aisa.org.au/]]</center><br />
<br />
<br />
|}<br />
<br />
<br />
<br />
=Registration Costs=<br />
<br />
{{:AppSecAsiaPac2012/Register}}<br />
<br />
<br />
=Training=<br />
<br />
{{:AppSecAsiaPac2012/Training}}<br />
<br />
= Conference Schedule=<br />
<br />
NOTE: Conference is scheduled to change as required by the conference committee, check back for updates prior to the conference.<br />
<br />
<font size=2pt><br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 1 - Friday - April 13th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Opening - Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Alastair MacGibbon<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker:Jacob West<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: You can't filter the stupid!'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Advanced Mobile Application Code Review Techniques'''<br />
&nbsp;Speaker: Prashant Vema & Dinesh Shetty<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Effective Software Development in a PCI-DSS Environment'''<br />
&nbsp;Speaker: Bruce Ashton<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Testing from the Cloud. Is the Sky Falling?'''<br />
&nbsp;Speaker: Matt Tesauro<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Rethinking Web Application Architecture for Cloud'''<br />
&nbsp;Speaker: Arshad Noor<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - Secure Coding Practices Quick Reference Guide'''<br />
&nbsp;Speaker: Justin Clarke<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Overcoming the Quality vs Quantity Problem in Software Security Testing'''<br />
&nbsp;Speaker: Rafal Los<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Mobile Security on iOS and Andriod'''<br />
&nbsp;Speaker: Mike Park (Trustwave)<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: De-Anonymizing Anonymous'''<br />
&nbsp;Speaker: Wayne O'Young<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pen Testing Mobile Applications'''<br />
&nbsp;Speaker: Frank Fan<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Application Security Logging & Monitoring, The Next Frontier'''<br />
&nbsp;Speaker: Peter Freiberg<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Modern Software Security Assurance with OpenSAMM'''<br />
&nbsp;Speaker: Pravir Chandra<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Afternoon Tea - Provided for attendees in EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:00-4:50 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Harder, Better, Faster, Stronger (SQLi)'''<br />
&nbsp;Speakers: Luke Jahnke<br> & Louis Nyffenegger<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Securing the SSL Channel against Man-in-the-middle Attacks'''<br />
&nbsp;Speaker: Tobias Gondrom<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: The risks that Pen Tests don't find'''<br />
&nbsp;Speaker: Gary Gaskell<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:50-5:00 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-5:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Panel Discussion - Application Security Trends in 2012'''<br />
Panelists: TBA<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:30-6:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Afternoon Networking Event - TBA'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''6:30 - 10:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP - Evening Networking Event - TBA'''<br />
|}<br />
<br />
<br />
<br />
{| border="0" align="center" class="FCK__ShowTableBorders" style="width: 75%;"<br />
|-<br />
| align="center" colspan="4" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font size=3pt>'''Conference Day 2 - Saturday- April 14th''' </font><br />
<br> <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | ''(Time Allocated)'' <br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Track 1 - Detect''' <br> (Grand Ballroom 1 & 2)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | '''Track 2 - Protect''' <br> (Grand Ballroom 3)<br />
| style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | '''Track 3 - Leadership & OWASP''' <br> (Wharf & Bridge Rooms Level 1)<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''7:30 - 8:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Conference Registration Open - Coffee & Tea Available '''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:30-8:40 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''Conference Day 2 Update- Appsec Asia 2012'''<br />
Speakers: Conference Committee Chair - Mr Justin Derry<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''8:40-9:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Jeremiah Grossman<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:30-9:40 AM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''9:40-10:30 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''KeyNote: Presentation'''<br />
Speaker: Dr Jason Smith<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''10:30-11:00 AM'' <br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Morning Tea - Provided for attendees in main EXPO & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:00-11:50 AM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation:Pentesting iOS Applications:'''<br />
&nbsp;Speaker:Jason Haddix<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Password Less Authentication & Authorization & Payments'''<br />
&nbsp;Speaker: Srikar Sagi<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Project - ZED Attack Proxy'''<br />
&nbsp;Speaker: Simon Bennetts<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''11:50-12:00 PM'' <br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:00-12:50 PM'' <br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: HTTP Fingerprinting - Next Generation'''<br />
&nbsp;Speaker: Eldar Marcussen<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Web Crypto for the Developer who has better things to do.'''<br />
&nbsp;Speaker: Adrian Hayes<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Static Code Analysis & Governance'''<br />
&nbsp;Speaker: Jonathan Carter<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''12:50-1:30 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''Break - Lunch - Provided for attendees in main Expo & Conference Hall - Ground Level'''<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''1:30-2:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Shake Hooves with BeEF'''<br />
&nbsp;Speaker: Christian Frichot<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Software Security Goes Mobile'''<br />
&nbsp;Speakers: Jacob West<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: Data Breaches - When Application Security Goes Wrong'''<br />
&nbsp;Speaker: Mark Goudie<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:20-2:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''2:30-3:20 PM'' <br />
<br> <br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Pentesting Smart Grid Web Apps'''<br />
&nbsp;Speaker: Justin Searle<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Breaking is Easy, Preventing is Hard'''<br />
&nbsp;Speakers: Matias Madou<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: How MITM Proxy has been slaying SSL Dragons'''<br />
&nbsp;Speaker: Jim Cheetham<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:20-3:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement <br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''3:30-4:20 PM''<br />
<br><br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | &nbsp;'''Presentation: Rise of the Planet of the Anonymous'''<br />
&nbsp;Speaker: Errazudin Ishak<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(188, 165, 122);" | &nbsp;'''Presentation: Anatomy of a Logic Flaw'''<br />
&nbsp;Speakers: Charles Henderson & David Byrne<br />
| align="left" style="width: 30%; background: none repeat scroll 0% 0% rgb(204, 255, 122);" | &nbsp;'''Presentation: OWASP Australia - Where, How, Why, When'''<br />
&nbsp;Speaker: Justin Derry & Andrew Vanderstock<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:20-4:30 PM''<br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(246, 246, 246);" | Short Break - Conference Movement<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''4:30-5:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(188, 133, 122);" | '''OWASP Appsec Asia 2012 - Conference Wrap Up'''<br />
Speakers: OWASP Board, OWASP Appsec Asia Conference Committee<br />
|-<br />
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | &nbsp;''5:00-6:00 PM''<br />
<br><br />
| align="center" colspan="3" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | '''OWASP Sponsor - Afternoon Networking Event - TBA'''<br />
|}<br />
<br />
</font><br />
<br />
<br />
=Keynote Speakers=<br />
<br />
'''In alphabetical order:'''<br />
<br />
<br />
==Alastair MacGibbon== <br />
Alastair MacGibbon is an internationally-respected authority on cybercrime, including Internet fraud, consumer victimisation and a range of Internet security and safety issues. He is the managing partner of Surete Group, a consultancy dealing with improved customer retention for Internet companies by increasing trust and reducing negative user experiences. Prior to this for almost 5 years Alastair headed Trust & Safety at eBay Australia and later eBay Asia Pacific. He was a Federal Agent with the Australian Federal Police for 15 years, his final assignment as the founding Director of the Australian High Tech Crime Centre.<br />
<br />
<br />
==Jacob West== <br />
Jacob West is Director, Software Security Research for the Enterprise Security Products division of Hewlett-Packard. West is a world-recognized expert on software security and brings a technical understanding of the languages and frameworks used to build software together with extensive knowledge about how real-world systems fail. In 2007, he co-authored the book "Secure Programming with Static Analysis" with colleague and Fortify founder Brian Chess. Today, the book remains the only comprehensive guide to static analysis and how developers can use it to avoid the most prevalent and dangerous vulnerabilities in code. West is a frequent speaker at industry events, including RSA Conference, Black Hat, Defcon, OWASP, and many others. A graduate of the University of California, Berkeley, West holds dual-degrees in Computer Science and French and resides in San Francisco, California. <br />
<br />
<br />
==Dr. Jason Smith from CERT Australia==<br />
Dr Jason Smith is an assistant director at the national CERT, CERT Australia, which is part of the Attorney-General's Department. He is an experienced cyber security researcher and consultant, having provided consultancy services over the last decade on information infrastructure protection to government and critical infrastructure utilities.<br />
<br />
Since joining government Jason has been involved in the development and execution national scale cyber exercises and the advanced cyber security training for control systems conducted by the US Department of Homeland Security.<br />
<br />
Jason holds a degree in software engineering and data communications, a PhD in information security and is an Adjunct Associate Professor at the Queensland University of Technology.<br />
<br />
[http://www.cert.gov.au/ About CERT Australia] <br />
<br />
<br />
==Jeremiah Grossman==<br />
Jeremiah Grossman is the Founder and CTO of WhiteHat Security, where he is responsible for Web security R&D and industry outreach. Mr. Grossman has written dozens of articles, white papers, and is a published author. His work has been featured in the Wall Street Journal, NY Times and many other mainstream media outlets. As a well-known security expert and industry veteran, Mr. Grossman has been a guest speaker on five continents at hundreds of events including BlackHat, RSA, ISSA, and others. He has been invited to guest lecture at top universities such as UC Berkeley, Stanford, Harvard, UoW Madison, UCLA, and Carnegie Mellon. Mr. Grossman is also a co-founder of the Web Application Security Consortium (WASC) and previously named one of InfoWorld's Top 25 CTOs. Before founding WhiteHat, Mr. Grossman was an information security officer at Yahoo!<br />
<br />
<br />
Mr. Grossman was recently a speaker at TEDxMaui. [http://tedxmaui.com/2011/12/30/speaker-spotlight-jeremiah-grossman/ Learn more here.]<br />
<br />
<br />
<br />
=Track Session Speakers=<br />
<br />
{{:AppSecAsiaPac2012/Talks}}<br />
<br />
<br />
=Sponsors=<br />
<br />
The Conference Committee is excited to announce that the conference has been openly supported by the following vendors and associations. Without the great support of these companies and organisations the 2012 event would not be what it is today.<br />
<br />
<h2>Diamond & Platinum Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Diamond and Platinum. There are still spaces available for sponsorship, but it's closing fast.<br />
<br />
More information is available on our sponsorship packages by viewing the sponsor pack [[File:AppSec AsiaPac 2012 Sponsorship.pdf]]. Contact our Committee for more information.<br />
<br />
[[File:Fortify HP logo.png|link=http://www.fortify.com]]<br />
<br />
<br />
<h2>Gold & Silver Sponsors</h2> <br />
The OWASP Conference 2012, welcomes our sponsors for Gold and Silver. The conference still has availability for other Gold and Silver sponsors.<br />
<br />
[[File:AppsecureTransLogo.png|link=http://www.appsecure.com/]]<br />
[[File:Imperva 312x54.jpg|link=http://www.imperva.com/]]<br />
[[File:Ionize75H.jpg|link=http://www.ionize.com.au/]]<br />
[[File:CS-LogoWeb.png|link=http://www.contentsecurity.com.au/]]<br />
[[File:Trustwave small.png|link=http://www.trustwave.com/]]<br />
<br />
<br />
<h2> Associations & Supporters</h2> <br />
We are proudly supported by the following Industry Associations and Media outlets.<br />
<br />
[[File:Auscert-Header-logo.gif|link=http://www.auscert.org.au/]]<br />
[[File:AisaLogo.png|link=http://www.aisa.org.au/]]<br />
<br />
<br />
<br />
<br />
=Chapters Workshop=<br />
<br />
{{:AppSecAsiaPac2012/Chapters_Workshop}}<br />
<br />
=Venue=<br />
<br />
We're excited to announce that the location of the OWASP Conference for Appsec Asia 2012 will be held at:<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
The facility provides hotel rooms and conference facilities, OWASP has secured cheap room rates directly in the hotel for the duration of the event.<br />
<br />
If you don't know your way around Sydney, here's the Google Maps link to the Hotel.<br />
<br />
http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
[[File:FourPointsSheratonDarlingHarbour.jpg]]<br />
<br><br />
<br />
We are using both the Ground and upper levels. The majority of the event will be held on the ground level, including all breaks etc. Attendees will find the registration and conference desk located at the Ground level near Hotel Reception. (You're not going to get lost, as we take up most of the ground level for this event.)<br />
<br />
Further details about venue locations will be posted when they become available.<br />
<br />
=Travel and Accommodations=<br />
For assistance with any of the items below, feel free to utilize OWASP's preferred travel agency:<br><br />
Segale Travel Service contact information is: +1-800-841-2276 <br><br />
Sr. Travel Consultants: <br><br />
[mailto:mariam@segaletravel.com Maria Martinez]...ext 524 <br><br />
[mailto:linnv@segaletravel.com Linn Vander Molen]...ext 520<br />
<br />
<br />
Additionally, the [mailto:appsecasia2012@owasp.org Conference Planning Team] is available to answer any questions!<br />
<br />
<br />
==Accommodation==<br />
<br />
We've been able to arrange for accommodation within the Four Points Sheraton Hotel(where the training and conference will be held) for attendees. These rooms have been allocated at a special rate, and available strictly for a limited time. To book these rooms at the special rate, you need to use the booking link shown below. These rooms are available one night either side of the event ensuring that if you are travelling interstate or international it's easy to find a room at a good rate. The room rate allocated for the event is $200 AUD Inclusive per night.<br />
<br />
<br />
'''Four Points Sheraton, Darling Harbour'''<br><br />
161 Sussex Street<br><br />
Sydney, New South Wales 2000<br><br />
Australia <br><br />
<br><br />
<br />
'''[http://www.starwoodmeeting.com/Book/OWASP http://www.starwoodmeeting.com/Book/OWASP]'''<br />
<br />
<br />
==Travel Domestic==<br />
<br />
The OWASP Conference is to be held in Sydney at the Darling Harbour precinct. Hotel Location, http://maps.google.com.au/maps/place?q=Four+Points+by+Sheraton+Sydney,+Sussex+Street,+Sydney,+New+South+Wales&hl=en&cid=7369128618339939693<br />
<br />
<br />
<br />
==International Travel==<br />
<br />
The Sydney International Airport is located adjacent to the Domestic terminal. Similar taxi fares to the city and hotel venue apply.<br />
If you are travelling by train, you can ride the train from the International terminal all the way to the Town Hall station as above.<br />
<br />
<br />
==Airport Transportation==<br />
<br />
*Any major Airline carrier will fly you into Sydney Airport, from here, you can take a Taxi (Approx $35-40 AUD).<br />
*[http://www.kst.com.au KST Sydney Airport Shuttle] -- $18AUD oneway/ $32AUD roundtrip<br />
* Another option is the train from the Airport, which you can ride all the way into the closest station which is Town Hall. From this stop the hotel is a small downhill walk (no more then 5-10mins) from the station.<br />
<br />
<br />
<br />
==Driving Instructions==<br />
<br />
''From Sydney Airport (South)'' <br />
<br />
Travel along Southern Cross Drive and take the South Dowling Street exit.<br />
<br />
Turn right onto Dacey Avenue.<br />
<br />
At the second set of traffic lights turn left onto Anzac Parade.<br />
<br />
Follow Anzac Parade past Moore Park on your right; Anzac Parade will become Flinders Street.<br />
<br />
Turn left onto Oxford Street and follow to Liverpool Street; Hyde Park will be on your right.<br />
<br />
Continue along Liverpool Street and turn right onto Kent Street.<br />
<br />
Travel five blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From East'' <br />
<br />
Proceed along New South Head Road. Continue onto William Street and then onto Park Street; Hyde Park will be on your right.<br />
<br />
Proceed along Park Street as it becomes Druitt Street and turn right onto Kent Street.<br />
<br />
Travel approximately three blocks and turn left onto Erskine Street.<br />
<br />
Immediately turn left again onto Sussex Street. The hotel will be on your right.<br />
<br />
<br />
''From West'' <br />
<br />
Proceed along the Western Distributor towards the city taking the City North exit followed by the Sussex Street South Exit.<br />
<br />
Turn right onto Sussex Street, the hotel will be on your right.<br />
<br />
<br />
''From North'' <br />
<br />
Take the Pacific Highway/Warringah Highway and proceed over the Sydney Harbour Bridge.<br />
<br />
Take the York street exit off the bridge and continue along before turning right into Erskine Street .<br />
<br />
Proceed approximately three blocks before turning left into Sussex Street. The hotel will be on your right.<br />
<br />
<br />
<br />
=Contact Us=<br />
<br />
Justin Derry - Planning Committee Co-Chair<br><br />
Andrew van der Stock - Planning Committee Co-Chair<br><br />
Christian Frichot - Planning Committee Member<br><br />
Andrew Mueller - Planning Committee Member<br><br />
Mohd Fazli Azran - Global Conference Committee Liaison<br><br />
Sarah Baso - OWASP Operational Support<br><br />
<br />
<br />
If you are interested in helping out with this conference or have any questions, please contact us at: appsecasia2012@owasp.org<br />
<br />
<br />
=Archives=<br />
<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFP Call for Papers]<br />
*[[Speaker Agreement]]<br />
*[https://www.owasp.org/index.php/AppSecAsiaPac2012/CFT Call for Trainers]<br />
*[https://www.owasp.org/images/8/80/APAC2012_Training_Instructor_Agreement.pdf Training Instructor Agreement]<br />
*Information about the [https://www.owasp.org/index.php/AppSecAsiaPac2012/OWASP_Track OWASP Track]<br />
<br />
<br />
</font><br />
<br />
<headertabs /></div>Jderry