This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Projects Summit 2013/Working Sessions/001"

From OWASP
Jump to: navigation, search
 
(8 intermediate revisions by 2 users not shown)
Line 31: Line 31:
 
|-
 
|-
  
| summit_session_objective_name1= Review all projects in the OWASP Projects Inventory.
+
| summit_session_objective_name1= Planning to sponsor 2 "senior developers" to attend the hack-a-thon and take the lead role on the development effort, they will be involved in the architecture aspect of the project and goal-building and attendees will be able to choose a component from the architecture to work on.  
  
| summit_session_objective_name2 = Re-assign them stages based on their review.
+
| summit_session_objective_name2 = We will purchase a prize for the developer/team that accomplishes the most quality work scored based on complexity of the component(s) they will be working on. The judges for the prizes will be Jeff Williams, Kevin Wall and Chris Schmidt.  
  
| summit_session_objective_name3 = Update the new inventory on the wiki, Salesforce, Spreadsheets.  
+
| summit_session_objective_name3 = There will be a set of guidelines for entries – primarily, backwards compatibility and/or clear upgrade path from ESAPI 2.x, testability, and distribution model of the component.  
  
 
| summit_session_objective_name4 =  
 
| summit_session_objective_name4 =  
Line 43: Line 43:
 
|-
 
|-
  
| working_session_date_and_time = Monday, November 18th: 1PM - 3PM
+
| working_session_date_and_time = Monday to Thursday, November 18-21: 9am to 11am.
  
 
|-
 
|-
Line 58: Line 58:
 
[[Image:NEW-PROJECTS-BANNER2.jpg]]
 
[[Image:NEW-PROJECTS-BANNER2.jpg]]
  
===Chair: Samantha Groves===
+
===Chair: Chris Schmidt===
Samantha Groves is the Project Manager at OWASP. Samantha has led many projects in her career, some of which include website development, brand development, sustainability and socio-behavioural research projects, competitor analysis, event organisation and management, volunteer engagement projects, staff recruitment and training, and marketing department organisation and strategy implementation projects for a variety of commercial and not-for-profit organisations.  
+
Chris is currently the Project Leader for the OWASP ESAPI Projects and also serves on the OWASP Global Projects Committee. He has been involved with OWASP for 4 years and has spoken at many OWASP events about the benefits of the Enterprise Security API as well as participated in Leadership discussions amongst the organization.
 +
During the day, Chris is an Application Security Engineer and Senior Software Engineer for Aspect Security where he has been since fall 2010. Prior to joining the team at Aspect Security he spent 5 years as 'Black Ops Beef' for ServiceMagic Inc with the official title of Software Engineer. Before getting involved in software professionally, Chris worked in hardware as a Senior Field Service Engineer providing hardware and software support for PC’s, Servers, Midrange Systems and Peripherals for 9 years.
  
===Operational Manager: Dinis Cruz===
+
===Operational Manager: Kevin Wall===
Dinis Cruz is a Security Consultant based in London (UK) and specialized in: ASP.NET/J2EE Application Security, Application Security audits and .NET Security Curriculum Development.
+
Experienced Application Security developer, OWASP ESAPI Project co-owner.
For the past couple years Dinis has focused on the field of Static Source Code Analysis and Dynamic Website Assessments (aka penetration testing), and is the main developer of the OWASP O2 Platform which is an Open Source project that is focused on 'Automating Security Consultants Knowledge/Workflows' and 'Allowing non-security experts to access and consume Security Knowledge'. Dinis is currently focused on making the O2 Platform the industry standard for consuming, instrumenting and data-sharing between: the multiple WebAppSec tools, the Security consultants and the final users (from management to developers).
 
 
|-
 
|-
  
|summit_session_deliverable_name1 = Review all projects in the active inventory.  
+
|summit_session_deliverable_name1 = Identify the primary goals to deem the hack-a-thon a success.
  
|summit_session_deliverable_name2 = Assign them an appropriate stage designation based on the review.  
+
|summit_session_deliverable_name2 = Layout the overall architecture vision for ESAPI 3.0.  
  
|summit_session_deliverable_name3 = Update the inventory based on reviews.  
+
|summit_session_deliverable_name3 = Lay down the infrastructure (Git, Continuous Integration, Testing Framework, etc.).  
  
|summit_session_deliverable_name4 = Create banners that show what stage each project is on. To be placed on the wiki.  
+
|summit_session_deliverable_name4 = Design the specification for the components that will be required.  
  
|summit_session_deliverable_name5 =  
+
|summit_session_deliverable_name5 = Close down all inactive ESAPI Projects.
  
 
|summit_session_deliverable_name6 =  
 
|summit_session_deliverable_name6 =  
Line 84: Line 84:
 
|-
 
|-
  
| summit_session_leader_name1 = Samantha Groves
+
| summit_session_leader_name1 = Chris Schmidt
| summit_session_leader_email1 = Samantha.Groves@owasp.org
+
| summit_session_leader_email1 = Chris.Schmidt@owasp.org
 
| summit_session_leader_username1 =  
 
| summit_session_leader_username1 =  
  
Line 98: Line 98:
 
|-
 
|-
  
| operational_leader_name1 = Dinis Cruz
+
| operational_leader_name1 = Kevin Wall
| operational_leader_email1 = Dinis.Cruz@owasp.org
+
| operational_leader_email1 = kevin.w.wall@gmail.com
 
| operational_leader_username1 =  
 
| operational_leader_username1 =  
  
Line 107: Line 107:
 
|-
 
|-
  
| summit_session_attendee_name1 = Dennis Groves
+
| summit_session_attendee_name1 = Chris Schmidt
| summit_session_attendee_email1 = Dennis.Groves@owasp.org
+
| summit_session_attendee_email1 = Chris.Schmidt@owasp.org
 
| summit_session_attendee_username1 =  
 
| summit_session_attendee_username1 =  
 
| summit_session_attendee_company1=
 
| summit_session_attendee_company1=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed1=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed1=
  
| summit_session_attendee_name2 = Dinis Cruz
+
| summit_session_attendee_name2 = Kevin Wall
| summit_session_attendee_email2 = Dinis.Cruz@owasp.org
+
| summit_session_attendee_email2 = kevin.w.wall@gmail.com
 
| summit_session_attendee_username2 =  
 
| summit_session_attendee_username2 =  
 
| summit_session_attendee_company2=
 
| summit_session_attendee_company2=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed2=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed2=
  
| summit_session_attendee_name3 = Samantha Groves
+
| summit_session_attendee_name3 = Jeff Williams
| summit_session_attendee_email3 = Samantha.Groves@owasp.org
+
| summit_session_attendee_email3 = Jeff.Williams@owasp.org
 
| summit_session_attendee_username3 =  
 
| summit_session_attendee_username3 =  
 
| summit_session_attendee_company3=  
 
| summit_session_attendee_company3=  
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed3=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed3=
 
+
| summit_session_attendee_name4 =  
| summit_session_attendee_name4 = Johanna Curiel
+
| summit_session_attendee_email4 =  
| summit_session_attendee_email4 = [email protected]
 
 
| summit_session_attendee_username4 =  
 
| summit_session_attendee_username4 =  
 
| summit_session_attendee_company4=
 
| summit_session_attendee_company4=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed4=
 
| summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed4=
  
| summit_session_attendee_name5 = Seba
+
| summit_session_attendee_name5 =  
| summit_session_attendee_email5 = [email protected]
+
| summit_session_attendee_email5 =  
 
| summit_session_attendee_username5 =  
 
| summit_session_attendee_username5 =  
 
| summit_session_attendee_company5=  
 
| summit_session_attendee_company5=  

Latest revision as of 19:28, 14 November 2013

Global Summit 2013 Home Page
Global Summit 2013 Tracks

Working Session.jpg ESAPI Hackathon
Please see/use the 'discussion' page for more details about this Working Session
Working Sessions Operational Rules - Please see here the general frame of rules.
WORKING SESSION IDENTIFICATION
Short Work Session Description Coordinate a Hackathon where ESAPI Project Goals are worked on and delivered based on the roadmap.
Related Projects (if any)


Email Contacts & Roles Chair
Chris Schmidt @

 Operational Manager
Kevin Wall @ 		Mailing list
Google Groups: owasp-project-summit-2013
WORKING SESSION SPECIFICS
Objectives
  1. Planning to sponsor 2 "senior developers" to attend the hack-a-thon and take the lead role on the development effort, they will be involved in the architecture aspect of the project and goal-building and attendees will be able to choose a component from the architecture to work on.
  2. We will purchase a prize for the developer/team that accomplishes the most quality work scored based on complexity of the component(s) they will be working on. The judges for the prizes will be Jeff Williams, Kevin Wall and Chris Schmidt.
  3. There will be a set of guidelines for entries – primarily, backwards compatibility and/or clear upgrade path from ESAPI 2.x, testability, and distribution model of the component.

Venue/Date&Time/Model Venue/Room
AppSec USA 2013: Times Square, New York City 		Date & Time
Monday to Thursday, November 18-21: 9am to 11am.


Discussion Model
participants and attendees

WORKING SESSION OPERATIONAL RESOURCES
Projector, whiteboards, markers, Internet connectivity, power

WORKING SESSION ADDITIONAL DETAILS

NEW-PROJECTS-BANNER2.jpg

Chair: Chris Schmidt

Chris is currently the Project Leader for the OWASP ESAPI Projects and also serves on the OWASP Global Projects Committee. He has been involved with OWASP for 4 years and has spoken at many OWASP events about the benefits of the Enterprise Security API as well as participated in Leadership discussions amongst the organization. During the day, Chris is an Application Security Engineer and Senior Software Engineer for Aspect Security where he has been since fall 2010. Prior to joining the team at Aspect Security he spent 5 years as 'Black Ops Beef' for ServiceMagic Inc with the official title of Software Engineer. Before getting involved in software professionally, Chris worked in hardware as a Senior Field Service Engineer providing hardware and software support for PC’s, Servers, Midrange Systems and Peripherals for 9 years.

Operational Manager: Kevin Wall

Experienced Application Security developer, OWASP ESAPI Project co-owner.

WORKING SESSION OUTCOMES / DELIVERABLES
Proposed by Working Group 'Delivered by Working Group

Identify the primary goals to deem the hack-a-thon a success.

After the Meeting - fill in here.

Layout the overall architecture vision for ESAPI 3.0.

After the Meeting - fill in here.

Lay down the infrastructure (Git, Continuous Integration, Testing Framework, etc.).

After the Meeting - fill in here.

Design the specification for the components that will be required.

After the Meeting - fill in here.

Close down all inactive ESAPI Projects.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

After the Meeting - fill in here.

Working Session Participants

(Add you name by clicking "edit" on the tab on the upper left side of this page)

WORKING SESSION PARTICIPANTS
Name Company Notes & reason for participating, issues to be discussed/addressed

{{{summit_session_attendee_company21}}}
 {{{summit_session_attendee_notes,_reason_for_participating_and_issues_to_be discussed21}}}
Chris Schmidt @


Kevin Wall @


Jeff Williams @





















































Retrieved from "https://wiki.owasp.org/index.php?title=Projects_Summit_2013/Working_Sessions/001&oldid=163252"