This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Summit 2011 Working Sessions/Session047"
From OWASP
Sarah Baso (talk | contribs) |
Abraham Kang (talk | contribs) |
||
| (12 intermediate revisions by 4 users not shown) | |||
| Line 1: | Line 1: | ||
{{Template:<includeonly>{{{1}}}</includeonly><noinclude>Summit 2011 Working Sessions test tab</noinclude> | {{Template:<includeonly>{{{1}}}</includeonly><noinclude>Summit 2011 Working Sessions test tab</noinclude> | ||
|- | |- | ||
| − | |||
| − | |||
| − | | | + | | summit_session_attendee_name1 = Abraham Kang |
| + | | summit_session_attendee_email1 = [email protected] | ||
| + | | summit_session_attendee_username1 = | ||
| + | | summit_session_attendee_company1= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed1= | ||
| − | | | + | | summit_session_attendee_name2 = |
| + | | summit_session_attendee_email2 = | ||
| + | | summit_session_attendee_username2 = | ||
| + | | summit_session_attendee_company2= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed2= | ||
| − | | | + | | summit_session_attendee_name3 = |
| + | | summit_session_attendee_email3 = | ||
| + | | summit_session_attendee_username3 = | ||
| + | | summit_session_attendee_company3= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed3= | ||
| − | | | + | | summit_session_attendee_name4 = |
| − | | | + | | summit_session_attendee_email4 = |
| + | | summit_session_attendee_username4 = | ||
| + | | summit_session_attendee_company4= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed4= | ||
| − | | | + | | summit_session_attendee_name5 = |
| − | | | + | | summit_session_attendee_email5 = |
| + | | summit_session_attendee_username5 = | ||
| + | | summit_session_attendee_company5= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed5= | ||
| − | | | + | | summit_session_attendee_name6 = |
| − | | | + | | summit_session_attendee_email6 = |
| + | | summit_session_attendee_username6 = | ||
| + | | summit_session_attendee_company6= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed6= | ||
| − | | | + | | summit_session_attendee_name7 = |
| − | | | + | | summit_session_attendee_email7 = |
| + | | summit_session_attendee_username7 = | ||
| + | | summit_session_attendee_company7= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed7= | ||
| − | | | + | | summit_session_attendee_name8 = |
| − | | | + | | summit_session_attendee_email8 = |
| + | | summit_session_attendee_username8 = | ||
| + | | summit_session_attendee_company8= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed8= | ||
| − | | | + | | summit_session_attendee_name9 = |
| + | | summit_session_attendee_email9 = | ||
| + | | summit_session_attendee_username9 = | ||
| + | | summit_session_attendee_company9= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed9= | ||
| − | | | + | | summit_session_attendee_name10 = |
| + | | summit_session_attendee_email10 = | ||
| + | | summit_session_attendee_username10 = | ||
| + | | summit_session_attendee_company10= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed10= | ||
| − | | | + | | summit_session_attendee_name11 = |
| + | | summit_session_attendee_email11 = | ||
| + | | summit_session_attendee_username11 = | ||
| + | | summit_session_attendee_company11= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed11= | ||
| − | | | + | | summit_session_attendee_name12 = |
| + | | summit_session_attendee_email12 = | ||
| + | | summit_session_attendee_username12 = | ||
| + | | summit_session_attendee_company12= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed12= | ||
| − | | | + | | summit_session_attendee_name13 = |
| + | | summit_session_attendee_email13 = | ||
| + | | summit_session_attendee_username13 = | ||
| + | | summit_session_attendee_company13= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed13= | ||
| + | |||
| + | | summit_session_attendee_name14 = | ||
| + | | summit_session_attendee_email14 = | ||
| + | | summit_session_attendee_username14 = | ||
| + | | summit_session_attendee_company14= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed14= | ||
| + | |||
| + | | summit_session_attendee_name15 = | ||
| + | | summit_session_attendee_email15 = | ||
| + | | summit_session_attendee_username15 = | ||
| + | | summit_session_attendee_company15= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed15= | ||
| − | | | + | | summit_session_attendee_name16 = |
| + | | summit_session_attendee_email16 = | ||
| + | | summit_session_attendee_username16 = | ||
| + | | summit_session_attendee_company16= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed16= | ||
| − | | | + | | summit_session_attendee_name17 = |
| + | | summit_session_attendee_email17 = | ||
| + | | summit_session_attendee_username17 = | ||
| + | | summit_session_attendee_company17= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed17= | ||
| − | | | + | | summit_session_attendee_name18 = |
| + | | summit_session_attendee_email18 = | ||
| + | | summit_session_attendee_username18 = | ||
| + | | summit_session_attendee_company18= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed18= | ||
| − | | | + | | summit_session_attendee_name19 = |
| + | | summit_session_attendee_email19 = | ||
| + | | summit_session_attendee_username19 = | ||
| + | | summit_session_attendee_company19= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed19= | ||
| − | | | + | | summit_session_attendee_name20 = |
| + | | summit_session_attendee_email20 = | ||
| + | | summit_session_attendee_username20 = | ||
| + | | summit_session_attendee_company20= | ||
| + | | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed20= | ||
|- | |- | ||
| − | + | | summit_track_logo = | |
| − | | | + | | summit_ws_logo = |
| + | | summit_session_name = OWASP Security Refactorings | ||
| + | | summit_session_url = http://www.owasp.org/index.php/Summit_2011_Working_Sessions/Session047 | ||
| + | | mailing_list = | ||
|- | |- | ||
| − | | | + | | short_working_session_description=Most developers will read security guide information and cannot relate because they usually have not written code in the manner being shown. This session looks to present security coding bad practices as "bad smells" in a similar format to Martin Fowler's ''Refactoring: Improving the Design of Existing Code''. By presenting bad coding examples, we are hoping that developers reading the information think, "Oh, crap, I have similar code running in production and I need to utilize the solution provided (using ESAPI of course) to fix my mistake." |
|- | |- | ||
| − | | | + | | related_project_name1 = OWASP Guide |
| − | | | + | | related_project_url_1 = http://www.owasp.org/index.php/OWASP_Guide_Project |
| − | | | + | | related_project_name2 = ESAPI |
| − | | | + | | related_project_url_2 = http://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API |
| − | | | + | | related_project_name3 = |
| − | | | + | | related_project_url_3 = |
| − | | | + | | related_project_name4 = |
| − | | | + | | related_project_url_4 = |
| − | | | + | | related_project_name5 = |
| − | | | + | | related_project_url_5 = |
|- | |- | ||
| − | | | + | | summit_session_objective_name1= Goals and Scope of initial "Security Refactorings" |
| − | | | + | |
| − | | | + | | summit_session_objective_name2 = High level Organization of Code Example Smells |
| + | |||
| + | | summit_session_objective_name3 = Format to present Security Refactorings | ||
| − | | | + | | summit_session_objective_name4 = Solutions and Segmenting of work. |
| − | |||
| − | |||
| − | | | + | | summit_session_objective_name5 = |
| − | |||
| − | |||
|- | |- | ||
| − | | | + | | working_session_date_and_time = |
| − | |||
| − | |||
|- | |- | ||
| − | | | + | | discussion_model = participants and attendees |
| − | |||
| − | |||
| − | | | + | |- |
| − | |||
| − | |||
| − | | | + | | operational_resources = Projector, whiteboards, markers, Internet connectivity, power |
| − | |||
| − | |||
| − | | | + | |- |
| − | |||
| − | |||
| − | | | + | | working_session_additional_details = Looking to discuss organization of code examples, format for each "Security Refactoring" and secure solutions. |
| − | |||
| − | |||
| − | | | + | |- |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name1 = 1. Goals and Scope of initial "Security Refactorings" |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name2 = 2. High level Organization of Code Example Smells |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name3 = 3. Format to present Security Refactorings |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name4 = 4. Solutions and Segmenting of work. |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name5 = |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name6 = |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name7 = |
| − | |||
| − | |||
| − | | | + | |summit_session_deliverable_name8 = |
| − | |||
| − | |||
| − | | | + | |- |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | | | + | | summit_session_leader_name1 = Abraham Kang |
| − | | | + | | summit_session_leader_email1 = [email protected] |
| − | | | + | | summit_session_leader_username1 = abraham kang |
| − | | | + | | summit_session_leader_name2 = |
| − | | | + | | summit_session_leader_email2 = |
| − | | | + | | summit_session_leader_username2 = |
| − | | | + | | summit_session_leader_name3 = |
| − | | | + | | summit_session_leader_email3 = |
| − | | | + | | summit_session_leader_username3 = |
| + | |- | ||
| − | | | + | | operational_leader_name1 = Abraham Kang |
| − | | | + | | operational_leader_email1 = [email protected] |
| − | | | + | | operational_leader_username1 = |
|- | |- | ||
Latest revision as of 05:15, 3 February 2011
Global Summit 2011 Home Page
Global Summit 2011 Tracks
| OWASP Security Refactorings | ||||||
|---|---|---|---|---|---|---|
| Please see/use the 'discussion' page for more details about this Working Session | ||||||
| Working Sessions Operational Rules - Please see here the general frame of rules. |
| WORKING SESSION IDENTIFICATION | ||||||
|---|---|---|---|---|---|---|
| Short Work Session Description | Most developers will read security guide information and cannot relate because they usually have not written code in the manner being shown. This session looks to present security coding bad practices as "bad smells" in a similar format to Martin Fowler's Refactoring: Improving the Design of Existing Code. By presenting bad coding examples, we are hoping that developers reading the information think, "Oh, crap, I have similar code running in production and I need to utilize the solution provided (using ESAPI of course) to fix my mistake." | |||||
| Related Projects (if any) |
| |||||
| Email Contacts & Roles | Chair Abraham Kang @ |
Operational Manager Abraham Kang @ |
Mailing list Subscription Page | |||
| WORKING SESSION SPECIFICS | ||||||
|---|---|---|---|---|---|---|
| Objectives |
| |||||
| Venue/Date&Time/Model | Venue/Room OWASP Global Summit Portugal 2011 |
Date & Time
|
Discussion Model participants and attendees | |||
| |
|---|
| WORKING SESSION OPERATIONAL RESOURCES | ||||||
|---|---|---|---|---|---|---|
| Projector, whiteboards, markers, Internet connectivity, power | ||||||
| |
|---|
| WORKING SESSION ADDITIONAL DETAILS | ||||||
|---|---|---|---|---|---|---|
| Looking to discuss organization of code examples, format for each "Security Refactoring" and secure solutions. | ||||||
| WORKING SESSION OUTCOMES / DELIVERABLES | ||
|---|---|---|
| Proposed by Working Group | Approved by OWASP Board | |
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
| After the Board Meeting - fill in here. | ||
Working Session Participants
(Add you name by clicking "edit" on the tab on the upper left side of this page)
| WORKING SESSION PARTICIPANTS | ||||||
|---|---|---|---|---|---|---|
| Name | Company | Notes & reason for participating, issues to be discussed/addressed | ||||
| Abraham Kang @ |
|
| ||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
| |
| |||||
