Difference between revisions of "Summit 2011 Working Sessions/Session052"

Latest revision as of 12:20, 9 February 2011

Global Summit 2011 Home Page
Global Summit 2011 Tracks

OWASP Testing Guide
Please see/use the 'discussion' page for more details about this Working Session
Working Sessions Operational Rules - Please see here the general frame of rules.

WORKING SESSION IDENTIFICATION

Short Work Session Description

We need to define:

- an updated vulnerability list to test (from the OWASP Common Vulnerabiltity list)
- Create a more readable guide, eliminating some sections that are not really useful,
- Insert new testing techniques: HTTP Verb tampering, HTTP Parameter Pollutions, etc.,
- Rationalize some sections as Session Management Testing,
- Debate if create a new section: Client side security and Firefox extensions testing.

Related Projects (if any)

OWASP Testing Project

Email Contacts & Roles

Chair
Matteo Meucci @

Operational Manager
Giorgio Fedon

Mailing list
Subscription Page

WORKING SESSION SPECIFICS
Objectives	Show the v3, and debating what we need to create an excellent v4
Venue/Date&Time/Model	Venue/Room OWASP Global Summit Portugal 2011	Date & Time TODO	Discussion Model participants and attendees

WORKING SESSION OPERATIONAL RESOURCES
Projector, whiteboards, markers, Internet connectivity, power

WORKING SESSION ADDITIONAL DETAILS
The presence of participants on the Working Session Common structure and numbering for all guides is advisable.

WORKING SESSION OUTCOMES / DELIVERABLES
Proposed by Working Group	Approved by OWASP Board
An updated outline for the testing guide that is tied into the OWASP common numbering scheme	After the Board Meeting - fill in here.
A short white paper with ideas for revisions to the Testing Guide for evaluation and discussion by the community at large.	After the Board Meeting - fill in here.
A committed project manager who can reach out to experts to get the document completed.	After the Board Meeting - fill in here.
	After the Board Meeting - fill in here.
	After the Board Meeting - fill in here.
	After the Board Meeting - fill in here.
	After the Board Meeting - fill in here.
	After the Board Meeting - fill in here.

Working Session Participants

(Add you name by clicking "edit" on the tab on the upper left side of this page)

WORKING SESSION PARTICIPANTS
Name	Company	Notes & reason for participating, issues to be discussed/addressed
Nishi Kumar @	FIS
Cecil Su @	GT
Lucas C. Ferreira @
Keith Turpin @
Achim Hoffmann @	sic[!]sec
Tom Neaves @	Verizon Business
Vishal Garg @	AppSecure Labs
Giorgio Fedon @	Minded Security
Stefano Di Paola @	Minded Security
Pavol Luptak @	Nethemba
Andre Gironda @		Will be available remotely
Edward Bonver @	Symantec
Wojciech Dworakowski @	SecuRing
Vlatko Kosturjak @
Antonio Fontes @	L7 Sécurité
Christian Martorella @	Verizon Business

@@ Line 20: / Line 20: @@
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed3=
-| summit_session_attendee_name4 =
+| summit_session_attendee_name4 = Keith Turpin
-| summit_session_attendee_email4 =
+| summit_session_attendee_email4 = [email protected]
-| summit_session_attendee_username4 =
+| summit_session_attendee_username4 = Keith_Turpin
 | summit_session_attendee_company4=
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed4=
@@ Line 35: / Line 35: @@
 | summit_session_attendee_email6 = [email protected]
 | summit_session_attendee_username6 =
-| summit_session_attendee_company6= Verizon Business
+| summit_session_attendee_company6 = Verizon Business
-| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed6=
+| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed6 =
 | summit_session_attendee_name7 = Vishal Garg
@@ Line 62: / Line 62: @@
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed10=
-| summit_session_attendee_name11 =
+| summit_session_attendee_name11 = Andre Gironda
-| summit_session_attendee_email11 =
+| summit_session_attendee_email11 = andregATthegmail
-| summit_session_attendee_username11 =
+| summit_session_attendee_username11 = Dre
 | summit_session_attendee_company11=
-| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed11=
+| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed11= Will be available remotely
-| summit_session_attendee_name12 =
+| summit_session_attendee_name12 = Edward Bonver
-| summit_session_attendee_email12 =
+| summit_session_attendee_email12 = [email protected]
-| summit_session_attendee_username12 =
+| summit_session_attendee_username12 = Edward Bonver
-| summit_session_attendee_company12=
+| summit_session_attendee_company12= Symantec
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed12=
-| summit_session_attendee_name13 =
+| summit_session_attendee_name13 = Wojciech Dworakowski
-| summit_session_attendee_email13 =
+| summit_session_attendee_email13 = [email protected]
-| summit_session_attendee_username13 =
+| summit_session_attendee_username13 = Wojciech Dworakowski
-| summit_session_attendee_company13=
+| summit_session_attendee_company13= SecuRing
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed13=
-| summit_session_attendee_name14 =
+| summit_session_attendee_name14 = Vlatko Kosturjak
-| summit_session_attendee_email14 =
+| summit_session_attendee_email14 = [email protected]
-| summit_session_attendee_username14 =
+| summit_session_attendee_username14 = kost
 | summit_session_attendee_company14=
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed14=
-| summit_session_attendee_name15 =
+| summit_session_attendee_name15 = Antonio Fontes
-| summit_session_attendee_email15 =
+| summit_session_attendee_email15 = [email protected]
 | summit_session_attendee_username15 =
-| summit_session_attendee_company15=
+| summit_session_attendee_company15= L7 Sécurité
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed15=
-| summit_session_attendee_name16 =
+| summit_session_attendee_name16 = Christian Martorella
-| summit_session_attendee_email16 =
+| summit_session_attendee_email16 = [email protected]
 | summit_session_attendee_username16 =
-| summit_session_attendee_company16=
+| summit_session_attendee_company16= Verizon Business
 | summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed16=
@@ Line 182: / Line 182: @@
 |-
-| working_session_additional_details = The presence of participants on the [[Summit 2011 Working Sessions/Session085|'''Common structure and numbering for all guides session''']] is advisable.
+| working_session_additional_details = The presence of participants on the Working Session [[Summit 2011 Working Sessions/Session085|'''Common structure and numbering for all guides''']] is advisable.
 |-

Difference between revisions of "Summit 2011 Working Sessions/Session052"

Latest revision as of 12:20, 9 February 2011

Working Session Participants

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools