This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP Newsletter 17"
KateHartmann (talk | contribs) (→New Pages) |
(→OWASP references in the Media) |
||
(15 intermediate revisions by 2 users not shown) | |||
Line 1: | Line 1: | ||
− | == OWASP Newsletter #17 ( | + | == OWASP Newsletter #17 (12-August-2008) == |
− | Welcome to the 17th edition of the OWASP Newsletter, featuring [[OWASP_NYC_AppSec_2008_Conference|The New York City AppSec Conference]] | + | Welcome to the 17th edition of the OWASP Newsletter, featuring [[OWASP_NYC_AppSec_2008_Conference|The New York City AppSec Conference]] . |
As always, if you have any content to add to the next edition, please feel free to add it directly to its WIKI page [[OWASP Newsletter 18]]. | As always, if you have any content to add to the next edition, please feel free to add it directly to its WIKI page [[OWASP Newsletter 18]]. | ||
Line 11: | Line 11: | ||
<center>[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference http://www.owasp.org/images/a/ad/NYC08_468x60_72_newdates.gif]</center> | <center>[http://www.owasp.org/index.php/OWASP_NYC_AppSec_2008_Conference http://www.owasp.org/images/a/ad/NYC08_468x60_72_newdates.gif]</center> | ||
− | |||
+ | == Featured Item: India Conference == | ||
+ | [https://www.owasp.org/index.php/OWASP_AppSec_India_Conference_2008 OWASP AppSec India Conference 2008] | ||
+ | [[Image:OWASP_India-mhnew.gif]] | ||
+ | |||
+ | |||
+ | == Featured Item: Israel Conference == | ||
+ | [https://www.owasp.org/index.php/OWASP_Israel_2008_Conference OWASP AppSec Israel Conference 2008] | ||
+ | |||
+ | = OWASP AppSec India Conference 2008 - August 20th-21st 2008 = | ||
+ | |||
+ | == Featured Projects == | ||
+ | |||
+ | * Four new projects have been set up, namely: | ||
+ | ** [[:Category:OWASP EnDe|'''OWASP EnDe Project''']] - This tool is an encoder, decoder, converter, transformer, calculator, for various codings used in the wild wide web. Achim Hoffmann is the project leader. | ||
+ | ** [[:Category:OWASP Google Hacking Project|'''OWASP Google Hacking Project''']] - This is a Google SOAP Search API with Perl. Christian Heinrich is the project leader. | ||
+ | ** [[:Category:OWASP NetBouncer Project|'''OWASP NetBouncer Project''']] - This is secure by default centralised input/output validation library which combines security rules and business rules as well as escaping in the output level. Ferruh Mavituna is the project leader. | ||
+ | ** [[:Category:OWASP Open Review Project|'''OWASP Open Review Project''']] - A project to openly check open source libraries and software that are vital to most commercial and non-commercial apps around. Mario de Boer is the project leader. | ||
+ | <br> | ||
+ | * The [[OWASP Summer of Code 2008|'''OWASP Summer of Code 2008''']] is doing its way up the ladder. | ||
+ | ** 34 SoC’s projects pages, the [[:Category:OWASP_Project#Current_Season_of_Code_Projects |Current Season of Code Projects]], have been set up. | ||
+ | ** [[:OWASP_Summer_of_Code_2008_Projects_Authors_Status_Target_and_Reviewers|70 reviewers were matched with 34 SoC’s projects]]. | ||
+ | ** Having reached the stage of 50% completion, 7 project have already been reviewed, namely: | ||
+ | *** [[:OWASP Internationalization|OWASP Internationalization Guidelines Project]]''' | ||
+ | *** [[:OWASP Spanish|OWASP Spanish Project]] | ||
+ | *** [[:Category:OWASP Ruby on Rails Security Guide V2|OWASP Ruby on Rails Security Guide v2]] | ||
+ | *** [[:Category:OWASP Source Code Review OWASP Projects Project|OWASP Source Code Review OWASP Projects]] | ||
+ | *** [[:Category:GTK plus GUI for w3af Project|GTK+ GUI for w3af project]] | ||
+ | *** [[:Category:OWASP Live CD 2008 Project|OWASP Live CD 2008 Project]] | ||
+ | *** [[:Category:OWASP Python Static Analysis Project|OWASP Python Static Analysis]] | ||
== Latest additions to the WIKI == | == Latest additions to the WIKI == | ||
Line 26: | Line 54: | ||
== Chapter News == | == Chapter News == | ||
+ | ===Paypal now Accepted=== | ||
+ | |||
+ | Chapter pages are being updated with the new link to paypal. This will allow your chapter sponsors to make donations to your chapter or project directly. Because the funds will be managed through the OWASP Foundation, your local chapter or project may take advantage of the non-profit status! Reimbursement of expenses will be processed through submission of an expense report. Please contact [mailto:alison.mcnamee@owasp.org Alison McNamee] with any questions. | ||
===New Chapter Pages=== | ===New Chapter Pages=== | ||
Line 44: | Line 75: | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
− | == | + | == OWASP references in the Media== |
− | + | [http://www.net-security.org/dl/insecure/INSECURE-Mag-16.pdf OWASP Featured Article: Producing Producing Secure Software With Software Security Enhanced Processes, In-secure Magazine, Page 57-67] | |
− | = | + | NSA: http://www.nsa.gov/notices/notic00004.cfm?Address=/snac/support/I733-034R-2007.pdf |
− | + | FFIEC: http://www.occ.treas.gov/ftp/bulletin/2008-16.html | |
− | + | FTC: http://www.ftc.gov/bcp/conline/pubs/buspubs/security.shtm | |
− | + | NIST: http://csrc.nist.gov/publications/PubsSPs.html | |
− | + | DHS: https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition.pdf | |
== Application Security News== | == Application Security News== |
Latest revision as of 20:27, 15 August 2008
OWASP Newsletter #17 (12-August-2008)
Welcome to the 17th edition of the OWASP Newsletter, featuring The New York City AppSec Conference .
As always, if you have any content to add to the next edition, please feel free to add it directly to its WIKI page OWASP Newsletter 18.
Kate Hartmann - OWASP Operations Director - Tel: 301-575-0197 - eMail: Kate.Hartmann@owasp.org
Featured Item: OWASP NYC 2008
OWASP NYC AppSec 2008 Conference Schedule – Sept 24th - Sept 25th Full details In association with: WASC, NYM InfraGard, AITGlobal, NYC PHP, NYCBUG, ISACA, ISSA and Pace University your invited to (2) days of Seminars and Technology Pavilion from the world's best application security technology minds, (2) days of hardcore hands-on training, all held at Pace University, located in downtown New York City at One Pace Plaza New York, NY 10038. Event Fees: $350 for 2 days of seminars, $675 for 1-day training classes and $1,350 for 2-day courses. With capacity of 1000 folks from around the world, don't miss this event!

Featured Item: India Conference
OWASP AppSec India Conference 2008
Featured Item: Israel Conference
OWASP AppSec Israel Conference 2008
OWASP AppSec India Conference 2008 - August 20th-21st 2008
Featured Projects
- Four new projects have been set up, namely:
- OWASP EnDe Project - This tool is an encoder, decoder, converter, transformer, calculator, for various codings used in the wild wide web. Achim Hoffmann is the project leader.
- OWASP Google Hacking Project - This is a Google SOAP Search API with Perl. Christian Heinrich is the project leader.
- OWASP NetBouncer Project - This is secure by default centralised input/output validation library which combines security rules and business rules as well as escaping in the output level. Ferruh Mavituna is the project leader.
- OWASP Open Review Project - A project to openly check open source libraries and software that are vital to most commercial and non-commercial apps around. Mario de Boer is the project leader.
- The OWASP Summer of Code 2008 is doing its way up the ladder.
- 34 SoC’s projects pages, the Current Season of Code Projects, have been set up.
- 70 reviewers were matched with 34 SoC’s projects.
- Having reached the stage of 50% completion, 7 project have already been reviewed, namely:
Latest additions to the WIKI
New Pages
Chapter News
Paypal now Accepted
Chapter pages are being updated with the new link to paypal. This will allow your chapter sponsors to make donations to your chapter or project directly. Because the funds will be managed through the OWASP Foundation, your local chapter or project may take advantage of the non-profit status! Reimbursement of expenses will be processed through submission of an expense report. Please contact Alison McNamee with any questions.
New Chapter Pages
OWASP references in the Media
NSA: http://www.nsa.gov/notices/notic00004.cfm?Address=/snac/support/I733-034R-2007.pdf
FFIEC: http://www.occ.treas.gov/ftp/bulletin/2008-16.html
FTC: http://www.ftc.gov/bcp/conline/pubs/buspubs/security.shtm
NIST: http://csrc.nist.gov/publications/PubsSPs.html
DHS: https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition.pdf
Application Security News
Application Security News Feed
This news feed is moderated by OWASP and will feature high-quality posts focused on application security that advance the field, provide useful insight, or are useful educational resources.
<owaspfeed/>