Difference between revisions of "AppSec Washington 2005/Agenda"

Latest revision as of 11:48, 20 September 2008

OWASP DC 2005 Conference Schedule

Day 1 - October 11, 2005
	Track 1: Red Auditorium	Track 2: Green Auditorium
08:00 - 09:00	Registration and Coffee
09:00 - 09:10	Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security (video of all 3 talks)
09:10 - 10:00	Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace (ppt)
10:00 - 11:00	Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project (ppt)
11:00 - 11:20	Break
11:20 - 12:30	Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance (ppt, video)	Arian Evans - FishNet Security - The OWASP Tools Survey Project (ppt, video)
12:30 - 13:45	Lunch
13:45 - 15:00	Alex Stamos - iSEC Partners - Web Services Project (ppt) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps (ppt)	Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project (ppt) Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch (ppt)
15:00 - 15:20	Break
15:20-16:40	Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR (video)	Paul Black - NIST - Developing a Reference Dataset (ppt) Rick Kuhn - NIST - Software Fault Interactions (ppt, video of both talks)
16:40-17:00	Break
17:00 - 18:00	Alex Smolen - Parasoft - Application Logic Defense (video)	Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing (ppt, video)
18:00 - 19:00	Bus to Dinner Event at Holiday Inn
19:00 - 21:00	Dinner Even (Optional) at Holiday Inn
Day 2 - October 12, 2005
08:00 - 09:00	Coffee
09:00 - 09:50	Keynote Day 2: Ira Winkler - Secrets of Superspies (ppt)
09:50 - 10:50	Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets (ppt, video of both talks])
10:50 - 11:10	Break
11:10 - 12:30	Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 (ppt) and OWASP Membership Plan (ppt, video)	Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities (ppt)
12:30 - 13:45	Lunch
13:45 - 15:00	Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project (video)	Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications (ppt, video)
15:00 - 15:20	Break
15:20 - 16:30	Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program (ppt)	Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab (ppt, video)
16:30 - 16:50	Break
15:20 - 16:30	John Steven - Cigital - Building a Scalable Software Security Practice within your Organization (video)	Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications (ppt, video)

Difference between revisions of "AppSec Washington 2005/Agenda"

Latest revision as of 11:48, 20 September 2008

OWASP DC 2005 Conference Schedule

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools

@@ Line 1: / Line 1: @@
 == OWASP DC 2005 Conference Schedule ==
-{| style="width:95%" border="0" align="center"
- | align="center" style="background:#4058A0; color:white" | Day 1 - October 11, 2005
- |
-|}
-<html xmlns:v="urn:schemas-microsoft-com:vml"
+{| style="width:80%" border="0" align="center"
-xmlns:o="urn:schemas-microsoft-com:office:office"
+ | colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 1 - October 11, 2005'''
-xmlns:w="urn:schemas-microsoft-com:office:word"
+ |-
-xmlns="http://www.w3.org/TR/REC-html40">
+ | style="width:10%; background:#7B8ABD" | || style="width:40%; background:#BC857A" align="center" | Track 1: Red Auditorium
+ | style="width:40%; background:#BCA57A" | Track 2: Green Auditorium
+ |-
+ | style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; backgrouroond:#C2C2C2" align="left" | Registration and Coffee
+ |-
+ | style="width:10%; background:#7B8ABD" | 09:00 - 09:10 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security ([http://video.google.com/videoplay?docid=-2481289516847680871&q=owasp video of all 3 talks])
+ |-
+ | style="width:10%; background:#7B8ABD" | 09:10 - 10:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace ([http://www.owasp.org/index.php/Image:AppSec2005DC-Joe_Jarzombek-DHS_SwA_Program_Overview.ppt ppt])
+ |-
+ | style="width:10%; background:#7B8ABD" | 10:00 - 11:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project  ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ron_Ross-FISMA.ppt ppt])
+ |-
+ | style="width:10%; background:#7B8ABD" | 11:00 - 11:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
+ |-
+ | style="width:10%; background:#7B8ABD" | 11:20 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jack_Danahy-Business_Case_for_Application_Security.ppt ppt], [http://video.google.com/videoplay?docid=3853779542023264815&q=owasp video])
+ | style="width:40%; background:#BCA57A" align="left" | Arian Evans - FishNet Security - The OWASP Tools Survey Project
+([http://www.owasp.org/index.php/Image:AppSec2005DC-Arian_Evans_Tools-Taxonomy.ppt ppt], [http://video.google.com/videoplay?docid=5758230888370998733&q=owasp video])
+ |-
+ | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
+ |-
+ | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Alex Stamos - iSEC Partners - Web Services Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt ppt]) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps ([http://www.owasp.org/index.php/Image:AppSec2005DC-Alex_Stamos-Attacking_Web_Services.ppt ppt])
+ | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-SAMATE_Project.ppt ppt])
-<head>
+Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch ([http://www.owasp.org/index.php/Image:AppSec2005DC-Mike_Kass-Tools_Taxonomy.ppt ppt])
-<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
+  |-
-<meta name=ProgId content=Word.Document>
+  | style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
-<meta name=Generator content="Microsoft Word 11">
+  |-
-<meta name=Originator content="Microsoft Word 11">
+  | style="width:10%; background:#7B8ABD" | 15:20-16:40 || style="width:40%; background:#BC857A" align="left" | Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video])
-<link rel=File-List href="Day%201_files/filelist.xml">
+  | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - Developing a Reference Dataset ([http://www.owasp.org/index.php/Image:AppSec2005DC-Paul_Black-Reference_Dataset.ppt ppt])
-<!--[if gte mso 9]><xml>
- <o:DocumentProperties>
-  <o:Author>esheridan</o:Author>
-  <o:LastAuthor>esheridan</o:LastAuthor>
-  <o:Revision>1</o:Revision>
-  <o:TotalTime>0</o:TotalTime>
-  <o:Created>2006-05-30T13:47:00Z</o:Created>
-  <o:LastSaved>2006-05-30T13:47:00Z</o:LastSaved>
-  <o:Pages>1</o:Pages>
-  <o:Words>994</o:Words>
-  <o:Characters>5667</o:Characters>
-  <o:Company>Aspect Security</o:Company>
-  <o:Lines>47</o:Lines>
-  <o:Paragraphs>13</o:Paragraphs>
-  <o:CharactersWithSpaces>6648</o:CharactersWithSpaces>
-  <o:Version>11.5606</o:Version>
-  </o:DocumentProperties>
-</xml><![endif]--><!--[if gte mso 9]><xml>
-  <w:WordDocument>
-  <w:ValidateAgainstSchemas/>
-  <w:SaveIfXMLInvalid>false</w:SaveIfXMLInvalid>
-  <w:IgnoreMixedContent>false</w:IgnoreMixedContent>
-  <w:AlwaysShowPlaceholderText>false</w:AlwaysShowPlaceholderText>
-  <w:BrowserLevel>MicrosoftInternetExplorer4</w:BrowserLevel>
- </w:WordDocument>
-</xml><![endif]--><!--[if gte mso 9]><xml>
- <w:LatentStyles DefLockedState="false" LatentStyleCount="156">
-  </w:LatentStyles>
-</xml><![endif]-->
-<style>
-<!--
- /* Style Definitions */
-  p.MsoNormal, li.MsoNormal, div.MsoNormal
-	{mso-style-parent:"";
-	margin:0in;
-	margin-bottom:.0001pt;
-	mso-pagination:widow-orphan;
-	font-size:12.0pt;
-	font-family:"Times New Roman";
-	mso-fareast-font-family:"Times New Roman";}
-h1
-	{mso-margin-top-alt:auto;
-	margin-right:0in;
-	mso-margin-bottom-alt:auto;
-	margin-left:0in;
-	mso-pagination:widow-orphan;
-	mso-outline-level:1;
-	font-size:24.0pt;
-	font-family:"Times New Roman";}
-@page Section1
-	{size:8.5in 11.0in;
-	margin:1.0in 1.25in 1.0in 1.25in;
-	mso-header-margin:.5in;
-	mso-footer-margin:.5in;
-	mso-paper-source:0;}
-div.Section1
-	{page:Section1;}
--->
-</style>
-<!--[if gte mso 10]>
-<style>
-  /* Style Definitions */
- table.MsoNormalTable
-	{mso-style-name:"Table Normal";
-	mso-tstyle-rowband-size:0;
-	mso-tstyle-colband-size:0;
-	mso-style-noshow:yes;
-	mso-style-parent:"";
-	mso-padding-alt:0in 5.4pt 0in 5.4pt;
-	mso-para-margin:0in;
-	mso-para-margin-bottom:.0001pt;
-	mso-pagination:widow-orphan;
-	font-size:10.0pt;
-	font-family:"Times New Roman";
-	mso-ansi-language:#0400;
-	mso-fareast-language:#0400;
-	mso-bidi-language:#0400;}
-</style>
-<![endif]--><!--[if gte mso 9]><xml>
- <o:shapedefaults v:ext="edit" spidmax="2050"/>
-</xml><![endif]--><!--[if gte mso 9]><xml>
- <o:shapelayout v:ext="edit">
-  <o:idmap v:ext="edit" data="1"/>
- </o:shapelayout></xml><![endif]-->
-</head>
-<body lang=EN-US link=blue vlink=blue style='tab-interval:.5in'>
+Rick Kuhn - NIST - Software Fault Interactions ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rick_Kuhn-Software_Fault_Interactions.ppt ppt], [http://video.google.com/videoplay?docid=-5233500471539001436&q=owasp video of both talks])
+ |-
-<div class=Section1>
+ | style="width:10%; background:#7B8ABD" | 16:40-17:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
+  |-
-<div align=center>
+  | style="width:10%; background:#7B8ABD" | 17:00 - 18:00 || style="width:40%; background:#BC857A" align="left" | Alex Smolen - Parasoft - Application Logic Defense ([http://video.google.com/videoplay?docid=4473926180612118549&q=owasp video])
+  | style="width:40%; background:#BCA57A" align="left" | Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing ([http://www.owasp.org/index.php/Image:AppSec2005DC-Dan_Cuthbert-Evolution_of_App_Pen_Testing.ppt ppt], [http://video.google.com/videoplay?docid=4379894308228900017&q=owasp video])
-<table class=MsoNormalTable border=0 cellpadding=0 width=700 style='width:525.0pt;
+ |-
-  mso-cellspacing:1.5pt'>
+ | style="width:10%; background:#7B8ABD" | 18:00 - 19:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Bus to Dinner Event at Holiday Inn
-  <tr style='mso-yfti-irow:0;mso-yfti-firstrow:yes'>
+  |-
-  <td colspan=3 style='background:#4058A0;padding:.75pt .75pt .75pt .75pt'>
+  | style="width:10%; background:#7B8ABD" | 19:00 - 21:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Dinner Even (Optional) at Holiday Inn
-  <h1 align=center style='text-align:center'><span style='color:white'><br>
+  |-
-  Day 1 - October 11, 2005</span></h1>
+  | colspan="3" align="center" style="background:#4058A0; color:white" | '''Day 2 - October 12, 2005'''
-  </td>
+ |-
-  </tr>
+ |-
- <tr style='mso-yfti-irow:1'>
+ | style="width:10%; background:#7B8ABD" | 08:00 - 09:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Coffee
-  <td width="10%" style='width:10.0%;background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
+  |-
-  <p class=MsoNormal><o:p>&nbsp;</o:p></p>
+  | style="width:10%; background:#7B8ABD" | 09:00 - 09:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Keynote Day 2: Ira Winkler - Secrets of Superspies ([http://www.owasp.org/index.php/Image:AppSec2005DC-Ira_Winkler-Secrets_of_Superspies.ppt ppt])
-  </td>
+  |-
-  <td width="40%" style='width:40.0%;background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
+  | style="width:10%; background:#7B8ABD" | 09:50 - 10:50 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeremy_Poteet-In_the_Line_of_Fire.ppt ppt], [http://video.google.com/videoplay?docid=-9110574247136866679&q=owasp video of both talks]])
-  <p class=MsoNormal align=center style='text-align:center'>Track 1: Red
+  |-
-  Auditorium</p>
+  | style="width:10%; background:#7B8ABD" | 10:50 - 11:10 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
-  </td>
+ |-
-  <td width="40%" style='width:40.0%;background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
+ | style="width:10%; background:#7B8ABD" | 11:10 - 12:30 || style="width:40%; background:#BC857A" align="left" | Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_AppSec_Guide_2.0.ppt ppt]) and OWASP Membership Plan ([http://www.owasp.org/index.php/Image:AppSec2005DC-Jeff_Williams-OWASP_Membership.ppt ppt], [http://video.google.com/videoplay?docid=-5332911124544076749&q=owasp video])
-  <p class=MsoNormal align=center style='text-align:center'>Track 2: Green
+ | style="width:40%; background:#BCA57A" align="left" | Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities ([http://www.owasp.org/index.php/Image:AppSec2005DC-Danny_Allan-Identity_Theft_Phishing_and_Pharming.ppt ppt])
-  Auditorium</p>
+ |-
-  </td>
+ | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
-  </tr>
+  |-
-  <tr style='mso-yfti-irow:2'>
+  | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project ([http://video.google.com/videoplay?docid=7947858567235952851&q=owasp video])
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
+ | style="width:40%; background:#BCA57A" align="left" | Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Matt_Fisher-Google_Hacking_and_Worms.ppt ppt], [http://video.google.com/videoplay?docid=2018648061521175729&q=owasp video])
-  <p class=MsoNormal align=center style='text-align:center'>08:00 - 09:00 </p>
+ |-
-  </td>
+ | style="width:10%; background:#7B8ABD" | 15:00 - 15:20 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
+ |-
-  <p class=MsoNormal>Registration and Coffee </p>
+ | style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program ([http://www.owasp.org/index.php/Image:AppSec2005DC-Anthony_Canike-Enterprise_AppSec_Program.ppt ppt])
-  </td>
+  | style="width:40%; background:#BCA57A" align="left" | Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab ([http://www.owasp.org/index.php/Image:AppSec2005DC-Rogan_Dawes-WebScarab.ppt ppt], [http://video.google.com/videoplay?docid=8437304318271455155&q=owasp video])
-  </tr>
+  |-
-  <tr style='mso-yfti-irow:3'>
+  | style="width:10%; background:#7B8ABD" | 16:30 - 16:50 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Break
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
+ |-
-  <p class=MsoNormal align=center style='text-align:center'>09:00 - 09:10 </p>
+ | style="width:10%; background:#7B8ABD" | 15:20 - 16:30 || style="width:40%; background:#BC857A" align="left" | John Steven - Cigital - Building a Scalable Software Security Practice within your Organization ([http://video.google.com/videoplay?docid=-2492965730809426450&q=owasp video])
-  </td>
+ | style="width:40%; background:#BCA57A" align="left" | Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications ([http://www.owasp.org/index.php/Image:AppSec2005DC-Gunnar_Peterson-Identity-Services-in-WebApps.ppt ppt], [http://video.google.com/videoplay?docid=-1807054604513842127&q=owasp video])
-  <td colspan=2 style='background:#F2F2F2;padding:.75pt .75pt .75pt .75pt'>
+|}
-  <p class=MsoNormal>Introduction: Dave Wichers, OWASP Conferences Chair &amp;
-  COO Aspect Security (<a
-  href="http://www.aspectsecurity.com/owasp/OWASP_Intro_DaveWichers_Key_JoeJarzombek_RonRoss.mp4">video</a>)
-  </p>
-  </td>
-  </tr>
-  <tr style='mso-yfti-irow:4'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>09:10 - 10:00 </p>
-  </td>
-  <td colspan=2 style='background:#F2F2F2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS
-  - Software Assurance: Considerations for Advancing a National Strategy to
-  Secure Cyberspace (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Joe_Jarzombek-DHS_SwA_Program_Overview.ppt">ppt</a>
-  / Video) </p>
-  </td>
-  </tr>
-  <tr style='mso-yfti-irow:5'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>10:00 - 11:00 </p>
-  </td>
-  <td colspan=2 style='background:#F2F2F2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Ron Ross - FISMA Project Lead - NIST - Status of the
-  Federal Information Security Management Act (FISMA) Project (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Ron_Ross-FISMA.ppt">ppt</a>
-  / video) </p>
-  </td>
-  </tr>
-  <tr style='mso-yfti-irow:6'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>11:00 - 11:20 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:7'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>11:20 - 12:30 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Jack Danahy - CEO Ounce Labs - The Business Case for
-  Software Security Assurance (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Jack_Danahy-Business_Case_for_Application_Security.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_JackDanahy_The_Business_Case_for_Software_Security_Assurance.mp4">video</a>)
-  </p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Arian Evans - FishNet Security - The OWASP Tools Survey
-  Project (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Arian_Evans_Tools-Taxonomy.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_ArianEvans_Tools_SurveyProject.mp4">video</a>)
-  </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:8'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>12:30 - 13:45 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Lunch</p>
-  </td>
-  </tr>
-  <tr style='mso-yfti-irow:9'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>13:45 - 15:00 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Alex Stamos - iSEC Partners - Web Services Project (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt">ppt</a>)
-  - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Alex_Stamos-Attacking_Web_Services.ppt">ppt</a>)
-  (video both) </p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Paul Black - NIST - The Software Assurance Metrics and
-  Tool Evaluation (SAMATE) Project (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Paul_Black-SAMATE_Project.ppt">ppt</a>)
-  <br>
-  Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security
-  Bugs They Catch (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Mike_Kass-Tools_Taxonomy.ppt">ppt</a>)
-  (video both) </p>
-  </td>
-  </tr>
- <tr style='mso-yfti-irow:10'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>15:00 - 15:20 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break</p>
-  </td>
-  </tr>
-  <tr style='mso-yfti-irow:11'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>15:20 - 16:40</p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR (<a
-  href="http://www.aspectsecurity.com/owasp/OWASP_DinizCruz_Rooting_the_CLR.mp4">video</a>)
-  </p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Paul Black - NIST - Developing a Reference Dataset (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Paul_Black-Reference_Dataset.ppt">ppt</a>)
-  <br>
-  Rick Kuhn - NIST - Software Fault Interactions (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Rick_Kuhn-Software_Fault_Interactions.ppt">ppt</a>)
-  (<a href="http://www.aspectsecurity.com/owasp/OWASP_PaulBlack_RickKuhn.mp4">video
-  both</a>) </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:12'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>16:40 - 17:00 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:13'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>17:00 - 18:00 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Alex Smolen - Parasoft - Application Logic Defense (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1AppSec2005DC-Alex_Smolen-Application_Logic-Attacks_Defense.ppt">ppt</a>
-  / video) </p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Daniel Cuthbert - OWASP Testing Project Lead - The
-  Evolution of Web Application Penetration Testing (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day1/AppSec2005DC-Dan_Cuthbert-Evolution_of_App_Pen_Testing.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_DanielCutbert_Evolution_WebAppPenTest.mp4">video</a>)
-  </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:14'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>18:00 - 19:00 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Bus to Dinner Event at Holiday Inn</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:15'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>19:00 - 21:00 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Dinner Event (Optional) at Holiday Inn</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:16'>
-  <td colspan=3 style='background:#4058A0;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'><o:p>&nbsp;</o:p></p>
-  <h1 align=center style='text-align:center'><span style='color:white'>Day 2 -
-  October 12, 2005</span></h1>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:17'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal><o:p>&nbsp;</o:p></p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>Track 1: Red
-  Auditorium</p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>Track 2: Green
-  Auditorium</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:18'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>08:00 - 09:00 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Coffee</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:19'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>09:00 - 09:50 </p>
-  </td>
-  <td colspan=2 style='background:#F2F2F2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Keynote Day 2: Ira Winkler - Secrets of Superspies (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day2/AppSec2005DC-Ira_Winkler-Secrets_of_Superspies.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_IraWinkler_Secrets_and_Superspies.mp4">video</a>)</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:20'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>09:50 - 10:50 </p>
-  </td>
-  <td colspan=2 style='background:#F2F2F2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Jeremy Poteet - AppDefense - In the Line of Fire:
-  Defending Highly Visible Targets (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day2/AppSec2005DC-Jeremy_Poteet-In_the_Line_of_Fire.ppt">ppt</a>
-  / video)</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:21'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>10:50 - 11:10 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:22'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>11:10 - 12:30</p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Jeff Williams - OWASP Chair &amp; CEO Aspect Security -
-  The OWASP Guide Project v2 (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day2/AppSec2005DC-Jeff_Williams-OWASP_AppSec_Guide_2.0.ppt">ppt</a>)
-  and OWASP Membership Plan (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day2/AppSec2005DC-Jeff_Williams-OWASP_Membership.ppt">ppt</a>)
-  (video both)</p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Danny Allan - Watchfire - Identity Theft, Pfishing, and
-  Pharming: Accountability and Responsibilities (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day2/AppSec2005DC-Danny_Allan-Identity_Theft_Phishing_and_Pharming.ppt">ppt</a>)</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:23'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>12:30 - 13:45 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Lunch</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:24'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>13:45 - 15:00 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools
-  Project</p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Matt Fisher - SPI Dynamics - Worms Now Targeting Web
-  Applications (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day2/AppSec2005DC-Matt_Fisher-Google_Hacking_and_Worms.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/dcVideos/OWASP_MattFisher_WormsNowTargetingWebApps.mp4">video</a>)</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:25'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>15:00 - 15:20 </p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:26'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>15:20 - 16:30 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Tony Canike - The Vanguard Group - Establishing an
-  Enterprise-Wide Application Security Program (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day2/AppSec2005DC-Anthony_Canike-Enterprise_AppSec_Program.ppt">ppt</a>
-  / video)</p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Rogan Dawes - OWASP WebScarab Project Lead - Advanced
-  Features of WebScarab (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day2/AppSec2005DC-Rogan_Dawes-WebScarab.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_RoganDawes_AdvancedFeaturesofWebScarab.mp4">video</a>)</p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:27'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>16:30 - 16:50</p>
-  </td>
-  <td colspan=2 style='background:#C2C2C2;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Break </p>
-  </td>
- </tr>
- <tr style='mso-yfti-irow:28;mso-yfti-lastrow:yes'>
-  <td style='background:#7B8ABD;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal align=center style='text-align:center'>16:50 - 17:50 </p>
-  </td>
-  <td style='background:#BC857A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>John Steven - Cigital - Building a Scalable Software
-  Security Practice within your Organization </p>
-  </td>
-  <td style='background:#BCA57A;padding:.75pt .75pt .75pt .75pt'>
-  <p class=MsoNormal>Gunnar Peterson - Arctec Group - Integrating Identity
-  Services into Web Applications (<a
-  href="../../../../../../../docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_2-Day2/AppSec2005DC-Gunnar_Peterson-Identity-Services-in-WebApps.ppt">ppt</a>
-  / <a
-  href="http://www.aspectsecurity.com/owasp/OWASP_GunnerPeterson_IntegratingIdentityServicesintoWebApps.mp4">video</a>)</p>
-  </td>
- </tr>
-</table>
-</div>
-<p class=MsoNormal><o:p>&nbsp;</o:p></p>
-</div>
-</body>
-</html>