Difference between revisions of "OWASP NYC AppSec 2008 Conference/altspeaker"

Revision as of 15:36, 3 July 2008

 Alternative Speaker Wiki Submission
 The below is a list of speaker names, bios and abstracts for the 2008 event

(These are in no order)

1. Joe White - PCI

2. Joe J (DHS) - ?

3. Kenneth R. van Wyk - ?

4. Andy Steingruebl - Paypal

5. Blake Cornell - XSS/MITM

6. Andre M. DiMino Shadowserver Research

7. Garth Bruen knujon Research

8. David Stern, NYC using OWASP NYC

9.

2008 OWASP USA, NYC Conference Schedule – Sept 24th - Sept 25th

OWASP Speaker Agreement

Day 1 – Sept 24th, 2008
	Track 1:	Track 2:	Track 3:
07:30-10:00	Doors Open for Attendee/Speaker Registration & Exhibit/Sponsor Area
09:00-09:45	Introduction, OWASP Version 3.0 where we are.. where we are going OWASP Foundation Board Jeff Williams, Tom Brennan, Dinis Cruz, Sebastien Deleersnyder & Dave Wichers
10:00-10:45	TALK1 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK2 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK3 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
11:00-11:45	TALK4 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK5 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK6 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
12:00-13:00	Capture the Flag Sign-Up LUNCH - Provided by event sponsors @ TechExpo
13:00-13:45	TALK7 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK8 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK9 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
14:00-14:45	TALK10 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK11 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK12 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
15:00-15:45	TALK13 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK14 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK15 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
16:00-16:45	TALK16 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK17 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK18 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
17:00-17:45	TALK19 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK20 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK21 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
18:00-18:45	TALK22 TITLE TRACK1 SPEAKER NAME, TITLE [http:// LINK]	TALK23 TITLE TRACK2 SPEAKER NAME, TITLE [http:// LINK]	TALK24 TITLE TRACK3 SPEAKER NAME, TITLE [http:// LINK]
20:00-24:00	OWASP NYC AppSec 2008 VIP Party Location: TBD
Day 2 – Sept 25th, 2008
8:00-10:00	Breakfast @ Tech-Expo
0900-10:00	Prof. Howard A. Schmidt, CISSP, CISM (Hon.) \| Current (ISC)² Security Strategist and Former White House Cyber Security Advisor
10:00-11:00	Practical Advanced Threat Modeling John Steven	Open Reverse Benchmarking Project Marce Luck & Tom Stracener	Building Usable Security Zed Abbadi
11:00-12:00	Offshoring Application Development? Security is Still Your Problem Rohyt Belani	OWASP Orizon Project Paolo Perego	NIST SAMATE Static Analysis Tool Exposition (SATE) Vadim Okun
12:00-13:00	Wild Wild Web on Security Planet Mano Paul CEO Express Certifications	Software Liability Jack Danahy	Cross-Site Scripting Filter Evasion Alexios Fakos
13:00-14:00	OWASP Projects "Dinis Cruz & OWASP Project Leaders"
14:00-15:00	Projects with OWASP Steve Malson	OWASP Pantera Advances Simon Roses Femerling	Software-as-a-Service (SaaS) James Landis
15:00-16:00	"Out of Band" Injection Vijay Akasapu & Marshall Heilman	OWASP V2 Testing Guide 4.2.3 Spidering and Googling in depth Christian Heinrich	Caution, Java ahead Jeremiah Grossman CTO WhiteHat Security
16:00-17:00	Input validation: the Good, the Bad and the Ugly Johan Peeters	Flash Parameter Injection (FPI) Ayal Yogev & Yuval Baror	Learning the .Net Debugging API Kevin Spett
17:00-18:00	Secure System Development Life Cycle (SSDLC) Methodology for SOA Ken Huang	Web Security Education using Open Source Tools Prof. Li-Chiou Chen & Chienitng Lin	Friend or Foe: Penetration Testing VS Source Code Analysis Tom Ryan
18:30	Closing Remarks / CTF Awards / Raffles
21:00	Farewell dinner.. Go secure the world

@@ Line 101: / Line 101: @@
   | style="width:10%; background:#7B8ABD" | 20:00-24:00 || colspan="3" style="width:80%; background:#C2C2C2" align="center" | OWASP NYC AppSec 2008 VIP Party
 ''Location: TBD''
+<br>
+<br>
-|-
-| style="width:10%; background:#7B8ABD" | 10:30-11:30 || style="width:30%; background:#BC857A" align="left" | Logic Attacks and Inefficiencies of Robotic Detection
-''Robert "RSnake" Hansen CEO [http://www.sectheory.com SecTheory]''
- | style="width:30%; background:#BCA57A" align="left" | Offensive Assessing Financial Apps
-''[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-daniel-cuthbert Daniel Cuthbert]''
-| style="width:30%; background:#7B8ABD" align="left" | Web Intrusion Detection with ModSecurity
-''Ivan Ristic''
- |-
-| style="width:10%; background:#7B8ABD" | 11:30-12:30 || style="width:30%; background:#BC857A" align="left" | Reverse Engineering .NET
-''Adam Boulton''
- | style="width:30%; background:#BCA57A" align="left" | [http://www.owasp.org/index.php/Category:OWASP_JBroFuzz JBroFuzz] 0.1 - 1.1: [http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Yiannis_Pavlosoglou Building a Java Fuzzer for the Web]
-''[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Yiannis_Pavlosoglou Yiannis Pavlosoglou] - Senior Director - [http://www.ouncelabs.com Ounce Labs] ''
-| style="width:30%; background:#7B8ABD" align="left" | [http://www.owasp.org/index.php/Category:OWASP_Live_CD_Project OWASP LIVE CD]
-''Joshua Perrymon - CEO [http://www.packetfocus.com Packetfocus]''
-|-
-| style="width:10%; background:#7B8ABD" | 12:30-13:30 || style="width:30%; background:#BC857A" align="left" | [http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-GunterOllmann Multidisciplinary Bank Attacks]
-''Gunter Ollmann, Director Security Strategy, [http://www.iss.net IBM Internet Security Systems]''
- | style="width:30%; background:#BCA57A" align="left" | OWASP CLASP
-''Pravir Chandra''
-| style="width:30%; background:#7B8ABD" align="left" | Shootout at the Blackbox Corral
-''Dinis Cruz & Larry Suto''
-|-
- | style="width:10%; background:#7B8ABD" | 13:30-14:30 || colspan="3" style="width:80%; background:#C2C2C2" align="center" | Collective Intelligence - Jennifer Bayuk-CISO Bear Stearns, Mark Clancy EVP CitiGroup, Jim Routh CISO DTCC, Sunil Seshadri CISO NYSE-Euronet, Warren Axelrod SVP Bank of America, Joe Bernik Royal Bank of Scotland & Philip Venables CIRO, Goldman, Sachs
-Moderator: Mahi Dontamsetti
-|-
-| style="width:10%; background:#7B8ABD" | 14:30-15:30 || style="width:30%; background:#BC857A" align="left" | [http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Andres_Riancho w3af, a framework to own the web] -
-[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference-SPEAKER-Andres_Riancho ''Andres Riancho''], [http://www.cybsec.com/ Cybsec]
- | style="width:30%; background:#BCA57A" align="left" | [[AppSecEU08_Trends_in_Web_Hacking_Incidents:_What's_hot_for_2008 | Trends in Web Hacking: What's hot in 2008<br/>Analysis of the Web Hacking Incidents Database (WHID)]]
-''[http://blog.shezaf.com Ofer Shezaf], Breach''
-| style="width:30%; background:#7B8ABD" align="left" | Security in Agile Development
-''Dave Wichers, COO [http://www.aspectsecurity.com Aspect Security]''
-|-
-| style="width:10%; background:#7B8ABD" | 15:30-16:30 || style="width:30%; background:#BC857A" align="left" | [http://www.owasp.org/index.php/ESAPI OWASP Enterprise Security API (ESAPI) Project]
-''Jeff Williams, CEO [http://www.aspectsecurity.com Aspect Security]''
- | style="width:30%; background:#BCA57A" align="left" | Next Generation Cross Site Scripting Worms
-''Arshan Dabirsiaghi, Director of Research [http://www.aspectsecurity.com Aspect Security]''
-| style="width:30%; background:#7B8ABD" align="left" | "Threading the Needle:
-Bypassing web application/service security controls using Encoding, Transcoding, Filter Evasion, and other Canonicalization Attacks."
-''Arian Evans, Director of Operations [http://www.whitehatsec.com WhiteHat Security]''
-|-
-| style="width:10%; background:#7B8ABD" | 16:30-17:30 || style="width:30%; background:#BC857A" align="left" | Shhhh Don’t Tell Anybody
-''Petko D. Petkov, a.k.a. pdp''
- | style="width:30%; background:#BCA57A" align="left" | Secure PHP
-''Hans Zaunere, CEO [http://www.nyphp.com NYCPHP]''
-| style="width:30%; background:#7B8ABD" align="left" | [http://www.owasp.org/index.php/Payment_Card_Data_Security_and_the_new_Enterprise_Java Payment Card Data Security and the new Enterprise Java]
-''[http://www.owasp.org/index.php/Dr_BV_Kumar_and_Mr_Abhay_Bhargav Dr. B. V. Kumar & Mr. Abhay Bhargav] ''
-|-
-| style="width:10%; background:#7B8ABD" | 17:30-18:30 || style="width:30%; background:#BC857A" align="left" | Notes Security
-''Jian Hui Wang''
- | style="width:30%; background:#BCA57A" align="left" | Mastering PCI Section 6.6
-''Taylor McKinley and Jacob West''
-| style="width:30%; background:#7B8ABD" align="left" | AppSec Techniques
-''JD Glaser, CEO [http://www.ntobjectives.com/company/management.php NTO Objectives]''
-|-
- | style="width:10%; background:#7B8ABD" | 18:30 || colspan="3" style="width:80%; background:#C2C2C2" align="center" | '''Capture the Flag - [http://isis.poly.edu/projects Polytechnic University] & OWASP Chapter Leader Meeting - '''
-|-
- | style="width:10%; background:#7B8ABD" | 20:00 || colspan="3" style="width:80%; background:#C2C2C2" align="center" | ''' Speaker/Attendee Reception'''
 |-
 ! colspan="4" align="center" style="background:#4058A0; color:white" | Day 2 – Sept 25th, 2008

Difference between revisions of "OWASP NYC AppSec 2008 Conference/altspeaker"

Revision as of 15:36, 3 July 2008

2008 OWASP USA, NYC Conference Schedule – Sept 24th - Sept 25th

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools