Summit 2011

2010-11-22T03:00:43Z

Tara Causey:

Working Sessions XSS AwarnessResourcesPartnerships

2010-11-22T02:54:02Z

Tara Causey:

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" colspan="7" | '''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION IDENTIFICATION'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | Assessment Criteria & Orphaned Projects 
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | Generate
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | 
|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list''' [http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION SPECIFICS'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | 
#Discuss gaps and patterns in gaps in security coverage across frameworks,
#Discuss possible solutions for security areas.

|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue''' [http://www.owasp.org/index.php/Summit_2011 OWASP EU Summit Portugal 2011]
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
'''Date&Time'''

February 10, 2011 Time 11:00AM

| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model''' "Participants + Attendees"
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% white; color: white;" colspan="7" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION OPERATIONAL RESOURCES'''
|-
| align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, power
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% white; color: white;" colspan="7" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION ADDITIONAL DETAILS'''
|-
| align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
*'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
*'''Frameworks to invite:''' .NET, J2EE, Spring, Struts, ASP.NET MVC, RoR, PHP, etc.
**10 Oct: "Open Letter to Frameworks (version for open mailing lists)" sent to
***Ruby-on-Rails Core mailing list
***Springnet Developer mailing list
***Struts Dev mailing list

|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="3" | '''WORKING SESSION OUTCOMES'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Actionable advice for each individual frameworks .
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Identify points-of-contact for frameworks.
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|}

== Working Session Participants ==

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION PARTICIPANTS'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Name'''
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Company'''
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Notes & reason for participating, issues to be discussed/addressed'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|}

If needed add here more lines.

[[Category:OWASP_Working_Session]]

2010-11-22T02:41:53Z

Tara Causey:

Working Sessions Projects Funding Marketing and Commerical Services

2010-11-22T02:39:42Z

Tara Causey: Created page with '{| border="0" align="center" style="width: 100%;" |- ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" | <font color="bl…'

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" | '''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION IDENTIFICATION'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Funding, Marketing, & Commercial Services 
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Generate
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list''' [http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION SPECIFICS'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
#Discuss gaps and patterns in gaps in security coverage across frameworks,
#Discuss possible solutions for security areas.

|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue''' [http://www.owasp.org/index.php/Summit_2011 OWASP EU Summit Portugal 2011]
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
'''Date&Time'''

February 9, 2011 Time 3:30 PM

| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model''' "Participants + Attendees"
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OPERATIONAL RESOURCES'''
|-
| align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, power
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION ADDITIONAL DETAILS'''
|-
| align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
*'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
*'''Frameworks to invite:''' .NET, J2EE, Spring, Struts, ASP.NET MVC, RoR, PHP, etc.
**10 Oct: "Open Letter to Frameworks (version for open mailing lists)" sent to
***Ruby-on-Rails Core mailing list
***Springnet Developer mailing list
***Struts Dev mailing list

|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="3" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OUTCOMES'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Actionable advice for each individual frameworks .
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Identify points-of-contact for frameworks.
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|}

== Working Session Participants ==

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION PARTICIPANTS'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Name'''
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Company'''
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Notes & reason for participating, issues to be discussed/addressed'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|}

If needed add here more lines.

[[Category:OWASP_Working_Session]]

Working Sessions XSS Frameworks

2010-11-22T02:28:51Z

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" | '''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION IDENTIFICATION'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | XSS - Frameworks 
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Generate
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list''' [http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION SPECIFICS'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
#Discuss gaps and patterns in gaps in security coverage across frameworks,
#Discuss possible solutions for security areas.

|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue''' [http://www.owasp.org/index.php/Summit_2011 OWASP EU Summit Portugal 2011]
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
'''Date&Time'''

February 10, 2011 Time 9:00AM

| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model''' "Participants + Attendees"
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OPERATIONAL RESOURCES'''
|-
| align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, power
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION ADDITIONAL DETAILS'''
|-
| align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
*'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
*'''Frameworks to invite:''' .NET, J2EE, Spring, Struts, ASP.NET MVC, RoR, PHP, etc.
**10 Oct: "Open Letter to Frameworks (version for open mailing lists)" sent to
***Ruby-on-Rails Core mailing list
***Springnet Developer mailing list
***Struts Dev mailing list

|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="3" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OUTCOMES'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Actionable advice for each individual frameworks .
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Identify points-of-contact for frameworks.
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|}

== Working Session Participants ==

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION PARTICIPANTS'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Name'''
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Company'''
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Notes & reason for participating, issues to be discussed/addressed'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|}

If needed add here more lines.

[[Category:OWASP_Working_Session]]

Funding, Marketing & Commercial services

2010-11-22T02:24:12Z

Tara Causey:

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" colspan="7" | '''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION IDENTIFICATION'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" |  '''Funding, Marketing & Commercial services '''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | Generate
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | 
|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list''' [http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION SPECIFICS'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| align="left" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" colspan="6" | 
#Discuss gaps and patterns in gaps in security coverage across frameworks,
#Discuss possible solutions for security areas.

|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue''' [http://www.owasp.org/index.php/Summit_2011 OWASP EU Summit Portugal 2011]
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
'''Date&Time'''

February 9, 2011 Time 1330

| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model''' "Participants + Attendees"
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% white; color: white;" colspan="7" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION OPERATIONAL RESOURCES'''
|-
| align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, power
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% white; color: white;" colspan="7" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION ADDITIONAL DETAILS'''
|-
| align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
*'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
*'''Frameworks to invite:''' .NET, J2EE, Spring, Struts, ASP.NET MVC, RoR, PHP, etc.
**10 Oct: "Open Letter to Frameworks (version for open mailing lists)" sent to
***Ruby-on-Rails Core mailing list
***Springnet Developer mailing list
***Struts Dev mailing list

|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="3" | '''WORKING SESSION OUTCOMES'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Actionable advice for each individual frameworks .
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Identify points-of-contact for frameworks.
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|}

== Working Session Participants ==

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

{| border="0" align="center" style="width: 100%;"
|-
! align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="7" | '''WORKING SESSION PARTICIPANTS'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Name'''
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Company'''
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Notes & reason for participating, issues to be discussed/addressed'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 3
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 4
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 5
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 6
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 7
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 8
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 9
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|}

If needed add here more lines.

[[Category:OWASP_Working_Session]]

Funding, Marketing & Commercial services

2010-11-22T02:23:22Z

Tara Causey:

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" | '''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION IDENTIFICATION'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |  '''Funding, Marketing & Commercial services '''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Generate
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary''' 
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list''' [http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION SPECIFICS'''
|-
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
#Discuss gaps and patterns in gaps in security coverage across frameworks,
#Discuss possible solutions for security areas.

|-
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue''' [http://www.owasp.org/index.php/Summit_2011 OWASP EU Summit Portugal 2011]
| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
'''Date&Time'''

February 9, 2011 Time 1330

| align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model''' "Participants + Attendees"
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OPERATIONAL RESOURCES'''
|-
| align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, power
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | 
|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION ADDITIONAL DETAILS'''
|-
| align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
*'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
*'''Frameworks to invite:''' .NET, J2EE, Spring, Struts, ASP.NET MVC, RoR, PHP, etc.
**10 Oct: "Open Letter to Frameworks (version for open mailing lists)" sent to
***Ruby-on-Rails Core mailing list
***Springnet Developer mailing list
***Struts Dev mailing list

|}

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="3" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OUTCOMES'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Actionable advice for each individual frameworks .
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Identify points-of-contact for frameworks.
| align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
|}

== Working Session Participants ==

(Add you name by editing this table. On your the right, just above the this frame, you have the option to edit)

{| border="0" align="center" style="width: 100%;"
|-
! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION PARTICIPANTS'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Name'''
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Company'''
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Notes & reason for participating, issues to be discussed/addressed'''
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | TDB (Officially Invited by OWASP)
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | http://forums.asp.net/Themes/fan/images/roleicons/dff6f773-6732-4cd8-addf-42a8ab367d22.gif
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Official Representative from Microsoft's ASP.NET team
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | TDB (Officially Invited by OWASP)
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | http://metawidget.sourceforge.net/media/logo-struts.gif
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Official Representative from Apache Struts team
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | TDB (Officially Invited by OWASP)
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | http://boedesign.com/wp-content/themes/bd5/images/cakephp.gif
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Official Representative from CakePHP team
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | TDB (Officially Invited by OWASP)
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | http://www.tutorialized.com/upload/20070625154105_rails.jpg
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Official Representative from Ruby-on-Rails team
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | -
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | TDB (Officially Invited by OWASP)
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | http://www.springframework.net/doc-1.1-M1/reference/html/images/xdev-spring_logo.jpg
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Official Representative from Spring.NET team
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Mario Heiderich
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Independent
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | General Expertise
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Gareth Heyes
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Independent
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | General Expertise
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 3
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Marcin Wielgoszewski
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Protiviti
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Participant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 4
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Adam Baso
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Symantec
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Participant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 5
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Giorgio Fedon
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Minded Security
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Participant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 6
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Colin Watson
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Watson Hall
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Participant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 7
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Esteban Ribicic
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | HP
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Participant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 8
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Daniele Bellucci
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Communication Valley
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Partecipant
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 9
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|-
| align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
| align="center" style="width: 63%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | 
|}

If needed add here more lines.

[[Category:OWASP_Working_Session]]

Funding, Marketing & Commercial services

2010-11-02T03:45:55Z

Tara Causey:

Summit 2011

2010-11-02T03:40:40Z

Tara Causey:

__NOTOC__

==== Welcome ====

{| cellspacing="0" cellpadding="20" border="0" style=""
|-
| height="" width="" | [[Image:OWASPGlobalSummitLogo-3THISONEHASTHEMOSTVOTESSOFAR.jpg|border|center|462x347px]]
|
=== Dear OWASP Leaders and appsec community, ===

 The Summit will be held February 8th-11th in (Cascais) Lisbon, Portugal. This will be the place where appsec experts meet, discuss, work, socialize, and set the roadmap for OWASP in coming years. 

=== The Summit Activates *You* ===

Whereas the OWASP AppSec conferences are great places to listen to interesting talks, go for training, and meet with OWASP people, the Global Summit is the place where we all sit down together and take the time to discuss and work out plans, projects and solutions for the appsec future.

Examples of topics:

*How should we support the OWASP projects?
*How can we work with browser vendors to enhance security (see "Browser Day" tab above)?
*How should the community reach out to developers and education institutions?
*How often should we publish the OWASP Top 10?
*How can OWASP support your chapter?

|-
| valign="top" |
=== Organizing Committee ===

[[User:Lorna Alamri|Lorna Alamri]], [[User:Bradcausey|Brad Causey]], [[User:Justin42|Justin Clarke]], [[User:Paulo Coimbra|Paulo Coimbra]], [[User:Dinis.cruz|Dinis Cruz]], [[User:Knoblochmartin|Martin Knobloch]], [[User:Wichers|Dave Wichers]], [[User:John.wilander|John Wilander]], [[User:Jason Li|Jason Li]], Tara Causey, Sarah Baso.

| valign="top" |
=== Who's Invited? ===

As an OWASP leader you are automatically invited to the summit, but we also welcome leading experts from industry and academia. Together we can create a more secure web. Check the "How Do I Join?" tab above for more info.

|}



==== Operational guidelines ====

Following the first meeting of the Summit 2011 Organizational team, here are the current proposed operational guidelines:

#the summit is an annual event
#outside OWASP conference
#the summit should take place in January not later then begin of February
#the summit takes 3 to 4 days
#budget aim is US$ 150'000 US$ where 50'000 from OWASP and US$100'000 from sponsors
#attendees targets are:
##OWASP Funded:
###Board
###Committee Members
##Chapter / sponsor Funded:
###Chapter Leaders
##Project Leaders
#venue / location criteria (no decision on the venue)
##1 key organizer in close contact with the venue
##hosting 30 to 100 people
##US$2'000 a head (flight/accommodation/food/beers)
##conference facilities
###multiple meeting rooms
###one big meeting room e.g. auditorium
###hotel with the conference facilities or conference venue within walking distance
###apartments if possible (to share apartments/rooms and save money)
###4 to 5 star hotel
###local food supplier for apartment crashing
###has to be negotiated with the hotel
###max 50 km's form international airport
###sufficient Internet access!

'''Attendees that qualify to be sponsored by OWASP''' Some leaders that are active within OWASP may qualify to have all or partial transportation and lodging paid for by OWASP. To be considered for qualification, you must meet one or more of the following criteria:

#Member of the OWASP Board
#Member of a global committee that has been active in the last 6 months. This will be verified by the leader(s) of the committee.
#Key personnel that are integral to the operation of the summit

If you feel you might qualify, please contact [[Bradcausey@owasp.org|Brad Causey]] or [[Jasonli@owasp.org|Jason Li]]. If you do not meet these criteria, and still feel that you should be sponsored, please contact [[Bradcausey@owasp.org|Brad Causey]] or [[Jasonli@owasp.org|Jason Li]].

'''Success factors (what indicates the summit as success)'''

#break even
#the summits are the place to go to discus about and working on Web Application Security
#review of the past year
#working sessions on committees, projects and industry sectors (e.g. browsers and frameworks)
##universities / education sessions
##committee member election
##board election
##strategic OWASP issues
##road map and action plans for the next 12 month

Other local Summit(s):

*The conferences are free to organize small, conference bound summit
*this are not sponsored by OWASP of OWASP summit budget

==== Browser Day! ====

One of the great challenges of application security is browser security. The browser is becoming our de facto runtime platform for applications and it comprises a whole ecosystem of plugins and web technologies.

Therefore we will spend '''a full day working together with the leading browser vendors''' to penetrate current problems, new ideas, and how security fits in alongside other requirements from developers and endusers.

Do not miss this chance to influence what's important in browser security in the coming years.

=== Agenda (draft) ===

*'''The browser as an operating system'''. Do attackers even need to target the underlying OS or is browser compromise enough? Will this put new requirements on the browser such as full-fledged user accounts, auto updates, and backup?
*'''Sandboxing'''. Is sandboxing the right way forward? Can sandboxing be harmonized with the origin policies for cookies, scripting, and ajax – i e share the same compartmentalization? How should we apply sandboxing to plugins?
*'''Securing plugins'''. Should browsers ship with default plugins? Should plugins be auto-updated? Can plugins or versions of plugins be blacklisted centrally?
*'''Enduser warnings'''. How should browsers signal invalid SSL certs to the enduser? Are we helping security right now? What to do about 50 % of users clicking through warnings?
*'''Blacklisting'''. Can we cooperate better on blacklisting? Does it work between cultures, i e can we have the same process for reporting throughout the world?
*'''OS integration'''. More and more features in browsers get integrated with the underlying operating system. Processes, fonts, filesystem, 3D graphics. How do we secure this?
*'''JavaScript'''. How do we secure the universally deployed web application language. Much focus has been on execution performance but what about security? Is EcmaScript 5 strict-mode coming anytime soon ([http://kangax.github.com/es5-compat-table/ currently none does])? Are (more) secure "dialects" such as [http://developers.facebook.com/docs/fbjs FBJS] and [http://en.wikipedia.org/wiki/Caja_project Caja] the way to go? What's happening in EcmaScript Harmony?
*'''New HTTP headers'''. Are new opt-in HTTP headers the right way to add security features? For example [http://en.wikipedia.org/wiki/Strict_Transport_Security Strict Transport Security], [http://blogs.msdn.com/b/ieinternals/archive/2010/03/30/combating-clickjacking-with-x-frame-options.aspx x-frame-options], [http://people.mozilla.com/~bsterne/content-security-policy/origin-header-proposal.html origin] and [http://people.mozilla.com/~bsterne/content-security-policy/ Content Security Policy].

==== XSS Eradication ====

We will have a '''half day working session on Cross Site Scripting''' - specifically how OWASP can make 2011 the year of XSS... going away. How we help bring this about through contributing our knowledge to cornerstone projects, how we can raise the awareness through advocacy, and what we can do to ensure that OWASP and other freely available resources and made available to the wider community, and that they are aware of them.

=== Agenda ===

Please '''edit this tab and enter topics we should cover''' during the XSS session. If you want you can add your name after each suggestion and we can work out the details with you.

*Outreach to frameworks/other constituent parties /Justin Clarke
*OWASP XSS Awareness resources and partner freely available resources /Justin Clarke
*[Your topic here]

==== University Reachout ====

This summit will be the place to bring the OWASP Educational Supporters together! What security major and minor educations are out there? Can it be standardized?

=== Agenda ===

Outreach to OWASP Educational Supporters /Martin Knobloch

*Introduction of the represented Universities and College Chapters
**Where from and what focus?
*What security educations, majors and minors, are out there?
**What security educations are available?
*What OWASP material is and can be used?
**What OWASP material is used / other resources?
*How can OWASP further support security educations on Universities?
*[more?]

==== OWASP Projects ====

We will have a session on how OWASP should support, grow, and manage projects. This includes:

*Assessment criteria
*Orphaned projects
*Funding
*Marketing
*Commercial services

As an OWASP leader you have most probably seen some of the above topics discussed on the leaders list. Now is the time to boil down to consensus.

==== OWASP Around the World ====

OWASP is a fast growing global community. How should we support and manage this growth? During this session we'll look into issues of:

*[http://www.owasp.org/index.php/OWASP_Internationalization Internationalization]
*The [http://www.owasp.org/index.php/OWASP_Jobs global job board]
*New OWASP chapters in parts of the world where we have not spread much yet

==== More Topics ====

You know how OWASP works – it's all up to you. Please '''edit this tab and enter topics we should cover''' during the Global Summit 2011! If you want you can add your name after each suggestion and we can work out the details with you.

*Discussion on Douglas Crockford's bold statement that we should stop HTML5 development, fix XSS, and then start over. Is he right? How is OWASP active in the HTML5 development? Check [http://blip.tv/file/3755495 this webcast], jump to 20:50 to hear the XSS part. /John Wilander
*[Your topic here]

==== How Do I Join? / Mailing list ====

As an OWASP leader you are automatically invited to the summit.

The first thing to do is to join the [https://lists.owasp.org/mailman/listinfo/owasp-summit-2011 Summit 2011 mailing list].

On the mailing list you'll get first hand information on how to register, exact dates, updates to the agenda, funding for your trip etc.

If you are a leading appsec expert from industry or academia but not yet an OWASP leader you can just contact John.Wilander at owasp.org and we'll try to get you in.

==== Social Events ====

It goes without saying – the summit is all about meeting people. So there will be a constant mixture of workshops, dinners, beers and wine. We like to think of the summit as a very social event in itself.

==== Venue ====

Hotel Quinta da Marinha Resort

[[Image:2011venue.jpg]]

 

Between city and nature, between the beach and the mountain, Hotel Quinta da Marinha Resort - located in the excellent area of Cascais / Sintra, a mere 25 km from Lisbon - is the perfect setting to feel like all your wishes always come true. Discover one of the finest Resorts in Portugal.

 

*Total Rooms: 11
*“All In One” with 474 m2
*Capacity for 450 persons
*Moveable walls in 4 rooms (“All in One”)
*Wireless Internet access in all rooms and public areas
*Available Av systems, top of the line, for rent
*9 rooms with natural light
*Air conditioning

 

[[Image:Inside-venue2011.jpg]] 

 

[http://www.quintadamarinha.com Website]

 

A Day in Lisbon, Portugal:

 Click this link to see all the City of Lisbon has to offer, which is only a short train ride from the resort. http://www.golisbon.com/portugal/cities/cascais.html or http://www.travel-in-portugal.com/Cascais/ Lisbon - Spreading out along the right bank of the Tagus, its downtown, the Baixa, is located in the 18th-century area around Rossio. East of the arcade Praça do Comércio, are the medieval quarters of Alfama and Mouraria, crowned by the magnificent St. George's Castle. To the west lie Bairro Alto and Madragoa, with their typical streets, and on the western extreme is Belém, with its Belém Tower, (the sentinel over the Tagus river that protects the entrance into Lisbon), the Jerónimos Monastery (masterpieces of Manueline architecture and classified in UNESCO's International Heritage list) and the Cultural Center of Belém. Museums: Ancient Art, Chiado (Contemporary Art), Tile, Archaeology, Ethnology, Coach, Costume, Theater, Maritime, Military, City, Gulbenkian, Modern Art Center, and the Ricardo Espirito Santo Silva Foundation. Palaces open to the public: Ajuda and Fronteira. Churches: Cathedral (with Treasury); São Vicente de Fora; Conceição Velha (Manueline), São Roque and Sacred Art; Madre Deus; Santa Engrácia Pantheon (Baroque), and the Estrela Basilica. Shopping: Downtown; Avenida de Roma, Praça de Londres, Avenida Guerra Junqueiro, and Amoreiras. Nightlife: Bairro Alto and Avenida 24 de Julho. Guided Tours 

 

==== Sponsoring ====

We will welcome a few sponsors of this very special event, typically organization that participate in the summit. If you are interested in supporting the global summit, please contact Lorna.Alamri at owasp.org.

 

'''Attendees that qualify to be sponsored by OWASP Some leaders that are active within OWASP may qualify to have all or partial transportation and lodging paid for by OWASP. To be considered for qualification, you must meet one or more of the following criteria:'''

#Member of the OWASP Board
#Member of a global committee that has been active in the last 6 months. This will be verified by the leader(s) of the committee.
#Key personnel that are integral to the operation of the summit

If you feel you might qualify, please contact Brad Causey or Jason Li. If you do not meet these criteria, and still feel that you should be sponsored, please contact Brad Causey or Jason Li.

<headertabs />