This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Front Range OWASP Conference 2012"

From OWASP
Jump to: navigation, search
m (Conference Sponsors)
m (Welcome: added link to SnowFROC 2013)
 
(53 intermediate revisions by 5 users not shown)
Line 2: Line 2:
  
 
<!-- [http://froc2011.eventbrite.com/ Registration is NOW OPEN] -->
 
<!-- [http://froc2011.eventbrite.com/ Registration is NOW OPEN] -->
FROC2010 was a major success!  The [http://www.surveymonkey.com/sr.aspx?sm=Fn2UBK3eyju0z2k3B8XpvHvs9s_2bdRO1BS428Of_2f9ZA0_3d survey results]are now posted.
+
<!-- FROC2010 was a major success!  The [http://www.surveymonkey.com/sr.aspx?sm=Fn2UBK3eyju0z2k3B8XpvHvs9s_2bdRO1BS428Of_2f9ZA0_3d survey results]are now posted.
  
 
'''Looking for the presentations and videos?  They are [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Agenda here]'''
 
'''Looking for the presentations and videos?  They are [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Agenda here]'''
  
<br> <!-- Header -->
+
<br>  
 +
-->
 +
<!-- Header -->
 +
====2012 Presentations ==== 
 +
[[Media:CameronMorris_OwaspPassfault.pdf|OWASP Passfault]]<br>
 +
[[Media:DougLandoll_PCI 2.0 Risk Management.pdf|PCI vs Risk Management]]<br>
 +
[[Media:Laz_owasp_denver_FROC_032212.pdf|What the Cyber Criminals are Doing on Your Website Right Now]]<br>
 +
[[Media:MikeFleckOWASP_Presentation.ppt|Securing Data from the Web Tier]]<br>
 +
[[Media:RajivSharma_A_Scalable_Secure_Development_Program_OWASP.ppt|A Scalable Secure Development Program]]<br>
 +
[[Media:RobertRowleyOWASPSNOWFROC2012.ppt|State of Web Security: Monitored Attacks]]<br>
 +
 
 
====Welcome====   
 
====Welcome====   
 
<!-- *** Update image [[Image:Froc2010_sm.png|200px]]  
 
<!-- *** Update image [[Image:Froc2010_sm.png|200px]]  
 
  -->
 
  -->
 
'''Welcome to SnowFROC 2012, the fourth Front Range OWASP Application Security Conference!'''
 
'''Welcome to SnowFROC 2012, the fourth Front Range OWASP Application Security Conference!'''
 +
'''Click [[Front_Range_OWASP_Conference_2013|here]] if you're looking for SnowFROC 2013'''
  
 
After successful FROC's in June of 2008, [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009 March of 2009], and [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010 2010] we are back in Denver, Colorado USA on '''Thursday the 22nd of March'''!  
 
After successful FROC's in June of 2008, [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009 March of 2009], and [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010 2010] we are back in Denver, Colorado USA on '''Thursday the 22nd of March'''!  
  
This year we again present a full day, multi-track event, which will provide valuable information for managers and executives as well as developers and engineers.
+
This year we again present a full day, multi-track event, which will provide valuable information for managers and executives as well as developers and engineers. '''ALSO''', on Friday March 23rd several instructors from OWASP will be conducting day-long deep-dives!
  
 
In 2010, we attracted a packed venue with our great AppSec speakers, and we hope to achieve the same again in 2012.  <!-- This year we are organizing the conference with the support of our colleagues at the [http://www.cloudsecurityalliance.org/ Cloud Security Alliance], and will feature an AppSec track as well as a CloudSec/VirtSec track.
 
In 2010, we attracted a packed venue with our great AppSec speakers, and we hope to achieve the same again in 2012.  <!-- This year we are organizing the conference with the support of our colleagues at the [http://www.cloudsecurityalliance.org/ Cloud Security Alliance], and will feature an AppSec track as well as a CloudSec/VirtSec track.
Line 21: Line 32:
 
====Registration====
 
====Registration====
  
<!-- [http://froc2010.eventbrite.com Registration is now open!] -->
+
[http://snowfroc2012.eventbrite.com Registration for SnowFROC is now open!]
 
 
Previous years have been free or based on donations.  This year we'll be charging $20.
 
Follow @OWASP303 for an announcement that registration's open.  Seats are limited.
 
  
 +
$20 covers breakfast, lunch, and a WORLD-CLASS AppSec conference!
 
<!-- Due to the hard work of our organizers and the gracious support of our sponsors, FROC was a free event in 2008 and 2009.  This year, thanks to the generosity of our [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Conference_Sponsors sponsors] we are offering tickets to the event on a DONATION basis.  Pay whatever you or your company can afford.
 
<!-- Due to the hard work of our organizers and the gracious support of our sponsors, FROC was a free event in 2008 and 2009.  This year, thanks to the generosity of our [http://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010#tab=Conference_Sponsors sponsors] we are offering tickets to the event on a DONATION basis.  Pay whatever you or your company can afford.
 
-->
 
-->
  
<!-- Click [http://froc2012.eventbrite.com HERE] to register now. -->
+
Click [http://snowfroc2012.eventbrite.com HERE] to register now for SnowFROC!
  
====Agenda====
+
<!-- FAIL - need to get our act together MUCH EARLIER if we're going to have OWASP training in conjunction w/SnowFROC! Click [[Denver,_Colorado|here]] to register for OWASP Deep Dives in Denver!
 +
Specifically:
 +
1. Include Kate/OWASP Ops in SnowFROC planning
 +
2. AT A MINIMUM, GET THE SCHEDULE AND PUBLISH IT
 +
3. NEED  a COUPLE of local chapter meetings to socialize/promote the ACTUAL CLASSES
 +
-->
 +
<!-- ====Agenda====
  
'''TBD'''
+
'''CFP has closed; '''the agenda is being formed NOW and the draft agenda should be published SOON!
 +
-->
  
 
==Agenda and Presentations: 22 March 2012==
 
==Agenda and Presentations: 22 March 2012==
  
The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main auditorium, split tracks in the middle of the day, and closing panel discussions back in the main auditorium.
+
The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room, split tracks in the middle of the day, and closing panel discussions back in the main room.
  
{| style="width:80%" border="0" align="center"
+
{| style="width:86%" border="0" align="center"
 
  ! colspan="4" align="center" style="background:#4058A0; color:white" | March 22nd, 2012
 
  ! colspan="4" align="center" style="background:#4058A0; color:white" | March 22nd, 2012
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 07:30-08:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Registration and Continental Breakfast in the Sponsor Expo Room
+
  | style="width:10%; background:#7B8ABD" | 07:45-08:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Registration and Continental Breakfast in the Adirondack Room
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 08:30-08:35 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | Welcome to SnowFROC 2012 Conference  
+
  | style="width:10%; background:#7B8ABD" | 08:30-08:45 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | Welcome to SnowFROC 2012 Conference
''OWASP Denver Board''
+
 
 +
''OWASP Denver and OWASP Boulder Chapter Leaders''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 08:35-09:35 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | Keynote: TBD
+
  | style="width:10%; background:#7B8ABD" | 08:45-09:10 || colspan="3" style="width:80%; background:#F2F2F2" align="center" |  
''TBD, TBD''
+
'''State of OWASP'''
 +
 
 +
''[[Matt_Tesauro|Matt Tesauro]]''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 09:35-10:00 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | OWASP: State of the Union
+
  | style="width:10%; background:#7B8ABD" | 09:10-10:10 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | '''Keynote: Point in Time Security'''
''Tom [https://www.owasp.org/index.php/User:Brennan Brennan], OWASP Board Chairman Emeritus''
+
 
 +
''[[John_Pirc|John Pirc]], Co-Author of [http://www.amazon.com/Cybercrime-Espionage-Analysis-Subversive-Multi-Vector/dp/1597496138/ref=sr_1_1?s=books&ie=UTF8&qid=1330542019&sr=1-1 "Cybercrime and Espionage: An Analysis of Subversive Multi-Vector Threats"]''
  
<!-- *** above -->
 
 
  |-
 
  |-
| style="width:10%; background:#7B8ABD" | 10:00-10:20 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | TBD
 
''TBD, TBD''
 
  
<!-- [http://blip.tv/file/3710535 Video]
+
| style="width:10%; background:#7B8ABD" | 10:10-10:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Break - Expo
-->
 
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 10:20-10:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Break - Expo - (CTF?)
+
 
|-
+
  | style="width:10%; background:#7B8ABD" | || colspan="1" style="width:45%; background:#BC857A" | '''Tech Track - Zenith Room 640'''
| style="width:10%; background:#7B8ABD" | || style="width:22%; background:#BC857A" | '''AppSec/Technical Track: Room 1'''
+
  | colspan="1" style="width:45%; background:#BCA57A" | '''Management Track - Senate Chamber'''  
  | style="width:22%; background:#BCA57A" | '''Tools Track: Room 2'''
+
<!-- | style="width:22%; background:#C6E2FF" | '''Management / Exec Track: Room 3''' -->
| style="width:22%; background:#C6E2FF" | '''Management / Exec Track: Room 3'''
 
 
  |-
 
  |-
| style="width:10%; background:#7B8ABD" | 10:30-11:15 || style="width:22%; background:#BC857A" align="left" | "[[TBD]]"
 
''TBD''
 
  
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFZTIwOWY3NjctZTY1OC00YTRjLThjNGUtMDIwZTk3MmVhN2Zi&hl=en Presentation] <!-- [http://blip.tv/file/3711213 Video] [https://whitehatsec.market2lead.com/go/whitehatsec/WebEx_odyssey0310 Video] Note the blip version seems broken, so linked to WhiteHatSec webex.
+
| style="width:10%; background:#7B8ABD" | 10:30-11:15 || style="width:45%; background:#BC857A" align="left" | OWASP Passfault
-->
+
''Cameron Morris''
  
<!-- [http://video.google.com/videoplay?docid=-8396241750899139680 Video] -->
+
  | style="width:45%; background:#BCA57A" align="left" | Managing IT Risk in a Cloud Environment
  | style="width:22%; background:#BCA57A" align="left" | TBD
+
''Karl Steinkamp''
''TBD''
 
 
 
| style="width:22%; background:#C6E2FF" align="left" | TBD
 
''TBD''
 
  
 +
<!--  | style="width:22%; background:#C6E2FF" align="left" | TBD
 +
''TBD''
 +
-->
 
  |-
 
  |-
| style="width:10%; background:#7B8ABD" | 11:15-12:00 || style="width:22%; background:#BC857A" align="left" | "TBD"
 
''TBD''
 
 
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFMmRlODIyOWItMTQwMS00ZjMzLWFkYWMtYjc4YzZiOGVjY2U1&hl=en Presentation]
 
-->
 
 
<!-- [http://video.google.com/videoplay?docid=-8396241750899139680 Video] -->
 
| style="width:22%; background:#BCA57A" align="left" | TBD
 
''TBD''
 
  
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFMWIyNjc2MWUtYjc2NS00MjExLTg3NGYtNWFmN2RjMjFmNTI4&hl=en Presentation]
 
-->
 
  
| style="width:22%; background:#C6E2FF" align="left" | TBD
+
| style="width:10%; background:#7B8ABD" | 11:15-12:00 || style="width:45%; background:#BC857A" align="left" | State of Web Security: Monitored Attacks
''TBD''
+
 +
''Robert Rowley''
  
<!-- [https://docs.google.com/present/edit?id=0Af-vbfka88vFZGRrcjYycXZfMzI5Z3c0OWQ2Y2M&hl=en Presentation]
+
| style="width:45%; background:#BCA57A" align="left" | PCI vs Risk Management 
-->
+
''Doug Landoll'' 
 +
<!-- | style="width:22%; background:#C6E2FF" align="left" | Securing Data from the Web Tier ''Mike Fleck'' -->
  
|-
 
| style="width:10%; background:#7B8ABD" | 12:00-13:00 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Lunch - Expo - (CTF?)
 
 
  |-
 
  |-
  
| style="width:10%; background:#7B8ABD" | 13:00-13:50 || style="width:22%; background:#BC857A" align="left" | "TBD"
 
''TBD''
 
  
<!-- [http://blip.tv/file/3713199 Video]
+
| style="width:10%; background:#7B8ABD" | 12:00-13:00 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Lunch - Expo
-->
+
  |-
  
<!-- [http://video.google.com/videoplay?docid=-8396241750899139680 Video] -->
 
| style="width:22%; background:#BCA57A" align="left" | TBD
 
''TBD''
 
  
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFNWJhN2I3NzMtOTI2Mi00YWEzLWI1YzgtOTlkNTQ4YWU5YTEx&hl=en Presentation]
+
| style="width:10%; background:#7B8ABD" | 13:00-13:50 || style="width:45%; background:#BC857A" align="left" | WebGoat.NET
  -->
+
   
 +
''Jerry Hoff''
  
  | style="width:22%; background:#C6E2FF" align="left" | TBD
+
| style="width:45%; background:#BCA57A" align="left" | Securing Data from the Web Tier  
''TBD''
+
''Mike Fleck'' 
 +
<!-- | style="width:22%; background:#C6E2FF" align="left" | TBD
 +
''TBD'' -->
  
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFMjk5MDY0MDMtYjdmYy00MWU5LTgyMDQtNTUwZjZmYTM3NjAx&hl=en Presentation]
 
-->
 
 
  |-
 
  |-
  
| style="width:10%; background:#7B8ABD" | 13:50-14:40 || style="width:22%; background:#BC857A" align="left" | "TBD"
 
''TBD''
 
  
<!-- [http://blip.tv/file/3713260 Video]
+
| style="width:10%; background:#7B8ABD" | 13:50-14:40 || style="width:45%; background:#BC857A" align="left" | Gray, the new black: Gray box vulnerability testing
-->
+
''Adam Hills''
  
<!-- [http://video.google.com/videoplay?docid=-8396241750899139680 Video] -->
+
  | style="width:45%; background:#BCA57A" align="left" | What the Cyber Criminals are Doing on Your Website Right Now.
  | style="width:22%; background:#BCA57A" align="left" | TBD
+
''LAZ''
''TBD''
 
  
| style="width:22%; background:#C6E2FF" align="left" | TBD
+
<!-- | style="width:22%; background:#C6E2FF" align="left" | TBD
 
''TBD''
 
''TBD''
 
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFYWY0YzZkZjEtYzc4My00ZTk2LWFmYWQtYjViYTdkZDcxNThm&hl=en Presentation]
 
 
  -->
 
  -->
 
  |-
 
  |-
Line 144: Line 136:
 
  |-
 
  |-
  
  | style="width:10%; background:#7B8ABD" | 15:00-15:50 || style="width:22%; background:#BC857A" align="left" | "TBD"
+
  | style="width:10%; background:#7B8ABD" | 15:00-15:50 || style="width:45%; background:#BC857A" align="left" | "The Mobile Top 10"
''TBD''
+
''Mike Zussman''
 
 
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFNjM5NzZmODQtZTQ1OS00NTYxLWJmOWQtNzE3OWY4OWZkOGMw&hl=en Presentation] [http://blip.tv/file/3713316 Video]
 
-->
 
  
<!-- [http://video.google.com/videoplay?docid=-8396241750899139680 Video] -->
+
  | style="width:45%; background:#BCA57A" align="left" | A Scalable Secure Development Program
  | style="width:22%; background:#BCA57A" align="left" | TBD
+
''Rajiv Sharma''
''TBD''
 
 
 
<!-- [https://docs.google.com/present/edit?id=0Af-vbfka88vFZGRrcjYycXZfMjUyZDQ3enN6ZmI&hl=en Presentation]
 
-->
 
  
 +
<!--
 
  | style="width:22%; background:#C6E2FF" align="left" | TBD
 
  | style="width:22%; background:#C6E2FF" align="left" | TBD
 
''TBD''
 
''TBD''
 +
-->
 +
|-
 +
| style="width:10%; background:#7B8ABD" | 15:50-16:30 || colspan="3" style="width:80%; background:#F2F2F2" align="center" | End of Conference Panel Discussion:
  
<!-- [https://docs.google.com/fileview?id=0B_-vbfka88vFNTY3OGUwMGItMmQyMi00YWRmLWJkMzgtMTZhNDNlZjJiNWJm&hl=en Presentation]
+
Topic: ''The Crystal Ball and the 2-headed Calf - What's on the Horizon and Why Does It Seem So Unnatural?''  
  -->
 
  
|-
+
'''Moderator:''' ''Andy Lewis''
| style="width:10%; background:#7B8ABD" | 15:50-16:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Panel Discussion: Topic: ''TBD'' Moderator: TBD.
+
'''Panelists:''' ''Laz, Matt Tesauro, John Pirc, Tanner Coltrin, René Agüero, Steve Kosten, others''
Panelists: TBD
 
 
  |-
 
  |-
  
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 16:30-17:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Wrap up, vendor raffles, (CTF awards?), FREE BEER!
+
  | style="width:10%; background:#7B8ABD" | 16:30-17:30 || colspan="3" style="width:80%; background:#C2C2C2" align="left" | Wrap up, vendor raffles!
 
  |-
 
  |-
  
Line 178: Line 165:
 
[[Image:Denver_mountains.JPG]]
 
[[Image:Denver_mountains.JPG]]
  
This year, the conference will again be held at University of Colorado, Denver at the Tivoli Center.
+
This year, the conference will again be held at University of Colorado, Denver at the [http://maps.google.com/maps?hl=en&ie=UTF8&cid=0,0,17887458453474608109&fb=1&split=1&gl=us&dq=Tivoli+Student+Union+in+downtown+Denver,+CO&daddr=900+Auraria+Pkwy+%23+325E,+Denver,+CO+80204&geocode=2315206160437382962,39.746366,-105.007463&ei=jKOsSeKrM5O5twfLh4GDBg&z=16 Tivoli Student Union]  (900 Auraria Pkwy # 325E Denver, CO 80204).
  
 
<!--  *** need image, lat-long, directions [[File:Froc map.GIF|thumb|left]]
 
<!--  *** need image, lat-long, directions [[File:Froc map.GIF|thumb|left]]
Line 186: Line 173:
  
 
=====Accomodation=====
 
=====Accomodation=====
OWASP is in the process of negotiating discounted rates with the uber-pimpin [http://www.hotelteatro.com/ Hotel Teatro].  Rooms under the FROC rate will be competitively priced and include courtesy Cadillac Escalade transportation to and from Auraria Campus.  
+
OWASP is in the process of negotiating discounted rates with the uber-pimpin [http://www.hotelteatro.com/ Hotel Teatro].  Rooms under the FROC rate will be competitively priced and include courtesy Cadillac Escalade transportation to and from Auraria Campus. Currently a "petite queen" room will be reduced from $279/night to $149 by mentioning SnowFROC.
<!-- To reserve a room, contact Hotel Teatro at +1.303.228.1100 and mention SnowFROC or use the [https://reservations.ihotelier.com/crs/g_reservation.cfm?groupID=464765&hotelID=14708 iHotelier.com link here].
+
 
-->
+
To reserve a room, contact Hotel Teatro at +1.303.228.1100 and mention SnowFROC or use the [https://reservations.ihotelier.com/crs/g_reservation.cfm?groupID=464765&hotelID=14708 iHotelier.com link here].
  
 
=====How to get to the venue?=====
 
=====How to get to the venue?=====
Line 197: Line 184:
  
 
*By car: there is plenty of parking at the Tivoli.  Attendees should park at the Tivoli lot (as in past years).  Parking validation will be provided for registered FROC participants.
 
*By car: there is plenty of parking at the Tivoli.  Attendees should park at the Tivoli lot (as in past years).  Parking validation will be provided for registered FROC participants.
 
 
  
 
====Call for Presentations====
 
====Call for Presentations====
The [[Front_Range_OWASP_Conference_2012_CFP|call for presentations]] is open until February 23rd 2012.
+
<!-- The [[Front_Range_OWASP_Conference_2012_CFP|call for presentations]] is open until February 23rd 2012. -->
 +
The [[Front_Range_OWASP_Conference_2012_CFP|call for presentations]] closed February 23rd.  If you've got a compelling presentation involving bleeding-edge research please contact steve dot kosten /\+ owasp d0+ org for consideration.
  
  
Line 208: Line 194:
 
<!-- Back to [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009 SnowFROC Home] -->
 
<!-- Back to [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2009 SnowFROC Home] -->
  
====Capture the Flag (CTF)====
+
<!-- ====Capture the Flag (CTF)====
  
 
A capture the flag contest may be held if we can find space and someone to set it up and lead it.
 
A capture the flag contest may be held if we can find space and someone to set it up and lead it.
 
+
-->
  
 
====Conference Committee====
 
====Conference Committee====
  
FROC 2012 Planning Committee Chair: Kathy Thaxton -  kthaxton at owasp dot org
+
FROC 2012 Planning Committee Chair: Kathy Thaxton -  kthaxton at hosting dot com
  
 
Presentation Selection Committee:
 
Presentation Selection Committee:
Line 224: Line 210:
 
Colorado Chapter Hosts:
 
Colorado Chapter Hosts:
 
* Andy Lewis - OWASP Denver - alewis at owasp dot org
 
* Andy Lewis - OWASP Denver - alewis at owasp dot org
* Might have a Boulder & CO Springs chapter in time for SnowFROC; stay tuned...
+
* Mark Major - OWASP Boulder - mark dot major at owasp dot org
 +
* Might have a CO Springs chapter in time for SnowFROC; stay tuned...
  
Vendor Exhibition POC: Kathy Thaxton - kthaxton at owasp dot org
+
Vendor Exhibition POC: Kathy Thaxton - kthaxton at hosting dot com
  
  
Line 234: Line 221:
 
====Sponsors====
 
====Sponsors====
  
 +
If you are interested in sponsoring the Front Range OWASP Conference, please contact Kathy Thaxton at kthaxton at hosting dot com.
 
<!-- [[File:Sponsors.PNG]]
 
<!-- [[File:Sponsors.PNG]]
 
  -->
 
  -->
  
The following organizations are proud sponsors of this conference:
+
We are proud to have the following sponsors for this year's conference:
 
<!--  
 
<!--  
 
*Accuvant
 
*Accuvant
Line 250: Line 238:
 
*Trustwave
 
*Trustwave
 
*WhiteHat Security
 
*WhiteHat Security
 +
*Hosting.com
 +
-->
 +
<!--
  
*[http://www.accuvant.com/ Accuvant]
 
 
*[http://www.denimgroup.com/ Denim Group]
 
*[http://www.denimgroup.com/ Denim Group]
 
*[http://www.fortify.com/ Fortify Software]
 
*[http://www.fortify.com/ Fortify Software]
 +
-->
 +
 +
*[http://www.accuvant.com/ Accuvant]
 
*[http://www.hosting.com/ Hosting.com]
 
*[http://www.hosting.com/ Hosting.com]
 
*[http://www.whitehatsec.com/home/index.html Whitehat Security]
 
*[http://www.whitehatsec.com/home/index.html Whitehat Security]
-->
+
*[http://www.hpenterprisesecurity.com/register/esp-grand-slam-camp-hpesp-homepage HP ESP]
 +
*[http://www.coalfire.com/Home Coalfire Systems]
 +
*[http://www.rapid7.com/ Rapid7]
 +
*[http://www.silvertailsystems.com/ Silvertail Systems]
 +
*[http://www.southseascorp.com/ South Seas Corporation]
  
If you are interested in sponsoring a Front Range OWASP Conference, please contact Kathy Thaxton at kthaxton at owasp dot org.
 
  
 
<!--  *** Logistics information for sponsors is available [[FROC2010 Sponsor Info|here]]
 
<!--  *** Logistics information for sponsors is available [[FROC2010 Sponsor Info|here]]
Line 267: Line 263:
 
[[Category:OWASP AppSec Conference]]
 
[[Category:OWASP AppSec Conference]]
  
Link to [https://www.owasp.org/index.php/Front_Range_OWASP_Conference_2010 2010's SnowFROC page]
 
  
 
<!--  
 
<!--  
Line 282: Line 277:
 
|}  
 
|}  
 
  -->
 
  -->
 +
 +
  
  

Latest revision as of 16:30, 16 April 2012


2012 Presentations

OWASP Passfault
PCI vs Risk Management
What the Cyber Criminals are Doing on Your Website Right Now
Securing Data from the Web Tier
A Scalable Secure Development Program
State of Web Security: Monitored Attacks

Welcome

Welcome to SnowFROC 2012, the fourth Front Range OWASP Application Security Conference! Click here if you're looking for SnowFROC 2013

After successful FROC's in June of 2008, March of 2009, and 2010 we are back in Denver, Colorado USA on Thursday the 22nd of March!

This year we again present a full day, multi-track event, which will provide valuable information for managers and executives as well as developers and engineers. ALSO, on Friday March 23rd several instructors from OWASP will be conducting day-long deep-dives!

In 2010, we attracted a packed venue with our great AppSec speakers, and we hope to achieve the same again in 2012.

Registration

Registration for SnowFROC is now open!

$20 covers breakfast, lunch, and a WORLD-CLASS AppSec conference!

Click HERE to register now for SnowFROC!


Agenda and Presentations: 22 March 2012

The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main room, split tracks in the middle of the day, and closing panel discussions back in the main room.

March 22nd, 2012
07:45-08:30 Registration and Continental Breakfast in the Adirondack Room
08:30-08:45 Welcome to SnowFROC 2012 Conference

OWASP Denver and OWASP Boulder Chapter Leaders

08:45-09:10

State of OWASP

Matt Tesauro

09:10-10:10 Keynote: Point in Time Security

John Pirc, Co-Author of "Cybercrime and Espionage: An Analysis of Subversive Multi-Vector Threats"

10:10-10:30 Break - Expo
Tech Track - Zenith Room 640 Management Track - Senate Chamber
10:30-11:15 OWASP Passfault

Cameron Morris

Managing IT Risk in a Cloud Environment

Karl Steinkamp

11:15-12:00 State of Web Security: Monitored Attacks

Robert Rowley

PCI vs Risk Management

Doug Landoll

12:00-13:00 Lunch - Expo
13:00-13:50 WebGoat.NET

Jerry Hoff

Securing Data from the Web Tier

Mike Fleck

13:50-14:40 Gray, the new black: Gray box vulnerability testing

Adam Hills

What the Cyber Criminals are Doing on Your Website Right Now.

LAZ

14:40-15:00 BREAK
15:00-15:50 "The Mobile Top 10"

Mike Zussman

A Scalable Secure Development Program

Rajiv Sharma

15:50-16:30 End of Conference Panel Discussion:

Topic: The Crystal Ball and the 2-headed Calf - What's on the Horizon and Why Does It Seem So Unnatural?

Moderator: Andy Lewis Panelists: Laz, Matt Tesauro, John Pirc, Tanner Coltrin, René Agüero, Steve Kosten, others

16:30-17:30 Wrap up, vendor raffles!


Logistics

Denver mountains.JPG

This year, the conference will again be held at University of Colorado, Denver at the Tivoli Student Union (900 Auraria Pkwy # 325E Denver, CO 80204).


Accomodation

OWASP is in the process of negotiating discounted rates with the uber-pimpin Hotel Teatro. Rooms under the FROC rate will be competitively priced and include courtesy Cadillac Escalade transportation to and from Auraria Campus. Currently a "petite queen" room will be reduced from $279/night to $149 by mentioning SnowFROC.

To reserve a room, contact Hotel Teatro at +1.303.228.1100 and mention SnowFROC or use the iHotelier.com link here.

How to get to the venue?
  • By taxi: taxi from the airport to venue is about $50 USD
  • From hotel: transport from the conference hotel (Hotel Teatro) by limo is free
  • By car: there is plenty of parking at the Tivoli. Attendees should park at the Tivoli lot (as in past years). Parking validation will be provided for registered FROC participants.

Call for Presentations

The call for presentations closed February 23rd. If you've got a compelling presentation involving bleeding-edge research please contact steve dot kosten /\+ owasp d0+ org for consideration.



Conference Committee

FROC 2012 Planning Committee Chair: Kathy Thaxton - kthaxton at hosting dot com

Presentation Selection Committee:

  • Steve Kosten
  • Denver OWASP Board


Colorado Chapter Hosts:

  • Andy Lewis - OWASP Denver - alewis at owasp dot org
  • Mark Major - OWASP Boulder - mark dot major at owasp dot org
  • Might have a CO Springs chapter in time for SnowFROC; stay tuned...

Vendor Exhibition POC: Kathy Thaxton - kthaxton at hosting dot com


Sponsors

If you are interested in sponsoring the Front Range OWASP Conference, please contact Kathy Thaxton at kthaxton at hosting dot com.

We are proud to have the following sponsors for this year's conference:




Retrieved from "https://wiki.owasp.org/index.php?title=Front_Range_OWASP_Conference_2012&oldid=127919"