This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "AsiaTour2014"
From OWASP
(→Tokyo) |
(→행사 프로그램) |
||
| (87 intermediate revisions by 7 users not shown) | |||
| Line 8: | Line 8: | ||
* October 22: Wuhan, China <br> | * October 22: Wuhan, China <br> | ||
* October 25: ChengDu, China <br> | * October 25: ChengDu, China <br> | ||
| + | * November 1: Hong Kong<br> | ||
* November 4: Kuala Lumpur, Malaysia <br> | * November 4: Kuala Lumpur, Malaysia <br> | ||
* November 6: Harbin, China <br> | * November 6: Harbin, China <br> | ||
| − | * November 7: Singapore, Singapore <br> | + | * November 7: Singapore, Singapore - cancelled (due to cancelled venue)<br> |
* November 29: Tokyo, Japan <br> | * November 29: Tokyo, Japan <br> | ||
| − | * December | + | * December 2: Bangkok, Thailand <br> |
| − | + | * December 19: Seoul, Korea <br> | |
| − | |||
| − | * | ||
| − | |||
| − | |||
| Line 58: | Line 55: | ||
== '''基本信息Info''' == | == '''基本信息Info''' == | ||
| − | '''沙龙主题 Subject:''' | + | '''沙龙主题 Subject:''' Web及无线安全技术研讨会暨OWASP亚洲巡回演讲黑龙江站会议 |
| − | '''沙龙时间 Date:''' | + | '''沙龙时间 Date:''' 11月6日8:30-15:30 |
| − | '''沙龙地点 Venue:''' | + | '''沙龙地点 Venue:''' 黑龙江省哈尔滨市红旗大街175号 农垦大厦 二楼大会议室 |
== '''沙龙议程Agenda''' == | == '''沙龙议程Agenda''' == | ||
| + | |||
| + | 8:30—9:00 参会人员报到 | ||
| + | |||
| + | 9:00—9:45 《无线安全的战略拐点》讲解 ----杨哲(ZerOne无线安全研究组织负责人) | ||
| + | |||
| + | 9:45—9:50 现场提问、讨论 | ||
| + | |||
| + | 9:50-10:35《一体化云安全监控平台探讨》讲解---- 权小文(Web应用安全厂商WebRay创始人) | ||
| + | 10:35-10:40 现场提问、讨论 | ||
| + | |||
| + | 10:40-10:50 会议休息 | ||
| + | |||
| + | 10:50-11:35《云安全防护》讲解---- 梁伟(北京知道创宇信息技术有限公司) | ||
| + | |||
| + | 11:35-11:40 现场提问、讨论 | ||
| + | |||
| + | 11:40-12:25《全生命周期的防护机制及先进防御思路》讲解----袁明坤(杭州安恒信息技术有限公司安全服务部技术总监) | ||
| + | |||
| + | 12:25-12:30 现场提问、讨论 | ||
| + | |||
| + | 12:30-13:30 午餐 | ||
| + | |||
| + | 13:30-15:00 OWASP技术交流研讨会: | ||
| + | |||
| + | ''1. OWASP中国介绍; | ||
| + | |||
| + | 2. OWASP研究项目介绍; | ||
| + | |||
| + | 3. 项目合作的沟通与探讨'' | ||
== '''演讲嘉宾 Speaker Bio''' == | == '''演讲嘉宾 Speaker Bio''' == | ||
| + | '''演讲嘉宾:'''杨哲(Longas), OWASP中国区专家组成员, ZerOne无线安全研究组织leader,《无线网络安全攻防实战》系列书籍作者,CNCERT/xKungfoo/CDG GHRC会议演讲者。 | ||
| + | |||
| + | 议题:无线安全的战略拐点 | ||
| + | |||
| + | 议题简介:结合多年来研究的国内外无线安全攻击技术及安全事件,配合大量实际案例由浅及深地为不同行业已经或可能遭遇的无线安全威胁趋势提出具体分析和展望. | ||
| + | |||
| + | 演讲提纲: | ||
| + | 1. 拓宽的目标群; | ||
| + | 2. 2015: 杀人的物联网; | ||
| + | 3. 潜在的双重约束; | ||
| + | 4. 建立隐形防线. | ||
| + | |||
| + | |||
| + | '''演讲嘉宾:'''权小文,Web应用安全厂商WebRay 创始人,CTO。拥有2项网络安全相关的发明专利,14年信息安全从业经验,曾服务于Juniper等著名安全公司。 | ||
| + | |||
| + | 议题简介:0day漏洞、更高对抗技术都会使得常规安全控制手段逐渐失效,传统的封锁与安全防护机制,也存在失效的时候,安全是对抗,不可能完全防范,因此基于预警-响应-防护-善后的一体化防护策略显得尤为重要。本次针对Web安全问题,探讨一体化防护思路。 | ||
| + | |||
| + | |||
| + | '''演讲嘉宾:'''梁伟,OWASP中国区专家组成员,国内知名信息安全专家。专注信息安全工作13年,在能源、运营商和金融等行业提出过先进的安全解决方案,对渗透、应急等技术积累了丰富的经验。目前专注于大数据形式下的安全思路,致力于为用户打造基于数据能力的一体化Web安全解决方案。 | ||
| + | |||
| + | |||
| + | '''演讲嘉宾:'''袁明坤,OWASP浙江区域负责人,OWASP中国区专家组成员。在IT安全、安全测试和网络安全架构设计和实施方面拥有10年工作经验,同时也是浙江省安全协会专家委员会副主任,负责的OWASP开源项目有:webgoat,hacking lab,Mobile Security。 | ||
== '''活动报名 Registration''' == | == '''活动报名 Registration''' == | ||
| + | |||
| + | 请查看OWASP中国网站: http://www.owasp.org.cn | ||
=Wuhan= | =Wuhan= | ||
| Line 152: | Line 202: | ||
== '''活动报名Registration:''' == | == '''活动报名Registration:''' == | ||
请提供OWASP中国区会员编号+姓名)邮件到member@owasp.org.cn报名, 邮件标题请注明“参加OWASP***区域活动” | 请提供OWASP中国区会员编号+姓名)邮件到member@owasp.org.cn报名, 邮件标题请注明“参加OWASP***区域活动” | ||
| + | |||
| + | |||
| + | = Hong Kong = | ||
| + | |||
| + | '''Please register here: | ||
| + | [https://www.facebook.com/events/351049275069652/ https://www.facebook.com/events/351049275069652/] | ||
| + | ''' | ||
| + | |||
| + | |||
| + | == Date: Nov-1 (Saturday) at 09:45–13:00== | ||
| + | == Venue R407, Hong Kong Polytechnic University, Hunghom== | ||
| + | |||
| + | == Agenda== | ||
| + | * 1. 1000 - 1100: SQLi and CTF for fun and profit (Speakers: Ace Seven King and Anthony Lai) (bring your laptop encouraged for the CTF) | ||
| + | * 2. 1100-1120: Turbo Talk: Web Hack Tricks (Speaker: Kenneth Tse) | ||
| + | * 3. 1135-1230: Secure Coding with OWASP (Speaker: Tobias Gondrom) | ||
| + | |||
| + | Please send your registration with the following details via Facebook message in OWASP Hong Kong Chapter page.: | ||
| + | * Name: | ||
| + | * Email: | ||
| + | * Company/Party: | ||
| + | * Whether you are OWASP Hong Kong Chapter member?:Y/N | ||
| + | (if N, the event is free and open to everyone, but we would welcome you to support us and register for an OWASP membership with 20 USD online: | ||
| + | https://myowasp.force.com/MemberAppstep1?region=AsiaPac | ||
| + | or here: https://www.owasp.org/index.php/Membership | ||
| + | |||
| + | Please pick "APAC", chapter allocation: Hong Kong. The fund will be kept by OWASP HQ, and 40% will be allocated to Hong Kong Chapter, so that we could invite more guest in the future or even hold the conference) | ||
| + | |||
| + | See you on Saturday and thank you so much for your support. | ||
| + | |||
| + | '''Please register here: | ||
| + | [https://www.facebook.com/events/351049275069652/ https://www.facebook.com/events/351049275069652/] | ||
| + | ''' | ||
=Kuala Lumpur= | =Kuala Lumpur= | ||
| Line 166: | Line 249: | ||
==Event Program:== | ==Event Program:== | ||
| − | * 8. | + | Agenda |
| − | * 9.00a.m - 9.15a.m - Opening Speech By OWASP Malaysia | + | * 8.00a.m - 9.00a.m - Arriving all OWASPrians |
| − | * 9.15a.m - 10.15a.m - | + | * 9.00a.m - 9.15a.m - Opening Speech By OWASP Malaysia |
| − | * | + | * 9.15a.m - 10.15a.m - Opening Ceremony by Prof. Dr. Shamsul bin Sahibuddin (Dean of Advanced Informatics School, UTM) |
| − | * 10. | + | * 9.45a.m - 10.15a.m - Social Activity |
| − | * | + | * 10.15.a.m - 11.15a.m Tobias Gondrom (OWASP Foundation) |
| − | * | + | * 10.15 .m - 10.45a.m - Wann Senn (Regal Paradigm) |
| − | * 12. | + | * 11.45a.m - 12.15p.m - Amir Haris Ahmad (Localhost) |
| − | * | + | * 12.15p.m - 1.00p.m - Megat Muazzam Abdul Mutalib (CyberSecurity Malaysia) |
| + | * 1.00p.m - Networking & End | ||
| + | |||
==Please register here :== | ==Please register here :== | ||
| Line 182: | Line 267: | ||
Thank you. | Thank you. | ||
| + | |||
| + | We had some 50 attendees and even got featured on TV in Malaysia: :-) | ||
| + | * [http://www.astroawani.com/videos/show/kini-trending/owasp-jadi-rakan-strategik-utm-untuk-keselamatan-it-44313 Owasp jadi rakan strategik UTM untuk keselamatan IT] | ||
| + | * [http://www.astroawani.com/videos/show/kini-trending/cabaran-membina-aplikasi-yang-lebih-selamat-44308 Cabaran membina aplikasi yang lebih selamat] | ||
| + | |||
| + | |||
| + | Ps.: and here fyi the link to the FB page of the event: <br> | ||
| + | [https://www.facebook.com/events/1485385931721797/?ref=4 https://www.facebook.com/events/1485385931721797/?ref=4] | ||
=Singapore= | =Singapore= | ||
| Line 187: | Line 280: | ||
{{:AsiaTour2014 SIN Agenda}} | {{:AsiaTour2014 SIN Agenda}} | ||
| − | = | + | =Japan= |
== OWASP Asia Tour in Japan == | == OWASP Asia Tour in Japan == | ||
OWASPは、アジアパシフィック地域での活動の活性化のため、OWASP Asia Tour 2014というイベントを行います。<br /> | OWASPは、アジアパシフィック地域での活動の活性化のため、OWASP Asia Tour 2014というイベントを行います。<br /> | ||
| Line 193: | Line 286: | ||
URL: https://www.owasp.org/index.php/AsiaTour2014 | URL: https://www.owasp.org/index.php/AsiaTour2014 | ||
| − | + | == 11/28-29 OWASP KANSAI presents: 神戸ITフェスティバルBOOTH and TALK == | |
| − | + | [https://www.owasp.org/index.php/Kansai OWASP KANSAIチャプター]は、[神戸ITフェスティバル http://kobe-it-fes.org/]に、ブース出展と講演をいたします。 | |
| + | * 11/28-29 OWASPブースが終日設置されます。 | ||
| + | * 11/28 13:00 パネルディスカッション (OWASP KANSAI Chapter Leader 斉藤太一 & OWASP KANSAI Board Member 三木剛) | ||
| + | * 11/28 16:00 講演[http://kobe-it-fes.org/kif2014/seminar/entry-197.html '''「他人事ではないWebセキュリティ」'''] (OWASP KANSAI Chapter Leader/OWASP Japan Advisory Board はせがわようすけ) | ||
| + | ** 最近ではWebセキュリティを侵害するような事件が連日のようにメディアを賑わせていますが、何から手を付ければいいのか、どこまでを守ればいいのかといった指針についてはなかなか誰も教えてくれません。 | ||
| + | OWASP Kansaiは、そういった問題点や疑問、技術や知識を相互に教えあい支えあうコミュニティです。OWASP - Open Web Application Security Project - はWebアプリケーションセキュリティをとりまく課題を解決することを目的とする国際的なオープンなコミュニティであり、OWASP KansaiはそのOWASPの日本で2番目の支部です。本セッションでは、現在のWebセキュリティを取り巻く状況を改めて振り返り、Webセキュリティのためにそれぞれの立場で行うべきことを考えたいと思います。 | ||
| − | + | ===Meeting Venue Sponsor=== | |
| + | {{MemberLinks|link=http://kobe-it-fes.org/kif2014/information/access.html|logo=kobei-it-fes.png}} | ||
| + | 神戸ITフェスティバルは入場無料です。<br /> | ||
| + | 会場へのアクセス:http://kobe-it-fes.org/kif2014/information/access.html | ||
| − | == | + | == 11/29 OWASP DAY IN TOKYO == |
| + | * 11/29土曜日午後に"OWASP DAY"として都内で開催予定です。 | ||
| + | * [https://www.owasp.org/index.php/Kansai OWASP KANSAIチャプター]による「神戸ITフェスティバル」のOWASPブースとの中継も!? | ||
| + | |||
| + | ===Meeting Venue Sponsor=== | ||
{{MemberLinks|link=http://www.iij.ad.jp/|logo=Iij_l.png}} | {{MemberLinks|link=http://www.iij.ad.jp/|logo=Iij_l.png}} | ||
| − | == | + | ===Registration Open!! === |
| − | + | 登録受付、始まりました:http://owasp.doorkeeper.jp/events/17661 | |
| + | |||
| + | ===Agenda=== | ||
| + | |||
| + | 今回は、OWASPなんて知らなかった方々にもやさしいトピックから、週中なかなか時間がとれない話題が満載です。 | ||
| + | * OWASPボードメンバー:TobiasさんによるOWASP紹介 | ||
| + | * 最近のOWASP Project | ||
| + | * special talk: 最近の暗号化技術について | ||
| + | * OWASP CISO Survey 2014 とって出し | ||
| + | * Proxy Wars: 3つのローカルプロキシーのリレープレゼン (about 1 Hour) | ||
| + | * スマートフォンアプリケーションにおける脆弱性やチートのリスクマネジメント | ||
| + | * OWASP Top 10 | ||
| + | * ... | ||
| + | |||
| + | === Program ...Coming Soon === | ||
* 12:30 Venue Open | * 12:30 Venue Open | ||
* 13:00 Opening Session | * 13:00 Opening Session | ||
| − | * | + | * ... |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
* 17:30 dismiss | * 17:30 dismiss | ||
| − | + | ※ OWASPのミーティングにおけるスピーカーは、[https://www.owasp.org/index.php/Speaker_Agreement OWASP Speaker Agreement] に同意することが前提となります。 | |
| − | + | スピーカーへの金銭的報酬はありません。また、コンテンツはオープンにできるものとなります。特別な表記がない限り、1セッションは30分となります。 | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | + | ===Volunteer Staff needed === | |
| − | + | * 通訳のボランティアを若干名募集しております。ご連絡ください。 | |
| − | + | ==Contact== | |
| − | + | asiatour2014 at owaspjapan.org | |
| − | + | OWASP Japan chapter | |
| + | https://owasp.org/index.php/Japan | ||
=Seoul= | =Seoul= | ||
| + | |||
| + | == '''OWASP Asia Tour in Korea''' == | ||
| + | OWASP 본부와 OWASP 코리아 챕터에서는 오는 12월 19일(금)에 애플리케이션/소프트웨어 보안 분야의 주제로 아래와 같이 'OWASP Asia Tour - Korea 2014' 컨퍼런스를 개최합니다. 한국의 소프트웨어/애플리케이션 개발자, 보안전문가, 모바일 전문가 분들의 많은 관심과 참여를 바랍니다.<br /> | ||
| + | |||
| + | * 일자: 2014년 12월 19일(금), 12:30 – 18:00 | ||
| + | * 장소: [http://thek-hotel.co.kr/main_sh.asp 더K서울호텔] 별관3층 동강 A 홀 | ||
| + | ** 주소 : 서울시 서초구 바우뫼로 12길 70 | ||
| + | * 정원: 50명 | ||
| + | |||
| + | == '''OWASP Asia Tour in Korea''' 등록 == | ||
| + | |||
| + | 컨퍼런스 등록비는 다음과 같습니다. 컨퍼런스 참여를 원하시는 분은 [https://docs.google.com/a/owasp.org/forms/d/19hUwKoKHqgrumE7XNnnzKp-trKOxLHU1Mj6ntedAu2c/edit 여기]를 클릭해서 등록해주시기 바랍니다. | ||
| + | |||
| + | * 등록비: | ||
| + | <pre> | ||
| + | * 12월 12일(금)까지 등록/입금시 : OWASP 국내외 유료회원: 5만원, 비회원(회원가입) 7만원 | ||
| + | * 12월 12일(금)이후 등록/입금시 : OWASP 국내외 유료회원: 7만원, 비회원(회원가입) 9만원 | ||
| + | * 학생 : 3만원(12월 12일(금)까지 등록/입금시), 5만원(12월 12일(금)이후 등록/입금시) | ||
| + | </pre> | ||
| + | * 맥주파티 참가비(별도) : 10,000원 | ||
| + | * 입금처 : 국민은행, 계좌번호 :515502-01-430643 <br /> | ||
| + | * 문의처 : 김보성(bosung.kim.zeak@gmail.com), 성윤기 이사(yune.sung@owasp.org)<br /> | ||
| + | |||
| + | =='''Sponsor'''== | ||
| + | * [http://www.ensecure.co.kr/ (주)엔시큐어] | ||
| + | |||
| + | == '''행사 프로그램''' == | ||
| + | |||
| + | OWASP Asia Tour - Korea 2014 컨퍼런스는 아래와 같이 진행됩니다.(시간은 변경될 수 있습니다.) | ||
| + | <br> | ||
| + | * '''12:30 - 13:00 : 등록(Registration)''' | ||
| + | <br> | ||
| + | |||
| + | * '''13:00 - 13:30 : OWASP 코리아 챕터 보고(Welcome and OWASP Korea speaking)'''(Speaker : 성윤기 이사, OWASP 코리아 챕터) | ||
| + | *'''발표 요약''' : 이번 시간에는 2014년 OWASP/OWASP 코리아 챕터 소개 및 OWASP 활동 결과와 2015년 OWASP 활동 방향에 대해서 발표합니다. | ||
| + | <br> | ||
| + | * '''13:30 - 14:00 : "Keynote Session: 전자정부 SW 개발보안 의무화 정책 추진 방향"'''(Speaker : 김해숙 박사, 행정자치부) | ||
| + | * '''발표 요약''' : 이번 발표에서는 전자정부 정보시스템 구축운영지침에서 SW 개발보안 의무화 내용을 살펴보고, SW 개발보안 의무화를 지원하기 위한 정부의 노력 및 성과,구축단계의 의무화 이후 추진 방향에 대해서 설명합니다. | ||
| + | |||
| + | * '''Speaker's Bio''' : 현재 행정자치부 SW 개발보안 담당 사무관 | ||
| + | <br> | ||
| + | * '''14:10 - 15:00 : "New Browser Security Technologies - protecting against MitM"'''(Speaker : Tobias Gondrom, OWASP) | ||
| + | |||
| + | *'''Abstract''' : "This talk shows new browser security technologies to protect against Insufficient Transport Layer Protection with topics of HSTS(HTTP Strict Transport Security), Key Pinning, and New Protection against XSS and Clickjacking: X-Frame-Options and CSP(Defensive and technical). | ||
| + | |||
| + | *'''Speaker's Bio''' : Tobias Gondrom is a global board member of OWASP (Open Web Application Security Project) and CEO at Thames Stanley, a boutique Global CISO and Information Security & Risk Management Advisory based in Hong Kong, United Kingdom and Germany. He has over 15 years of experience leading global teams in information security, software development, application security, cryptography, electronic signatures and global standardization organizations working for independent software vendors and large global corporations in the financial, technology and government sector. And he holds the most senior business degree from London Business School, the Sloan Masters in Leadership and Strategy. | ||
| + | <br> | ||
| + | * '''15:00 - 15:30 : 커피 브레이크(Coffee Break)''' | ||
| + | <br> | ||
| + | * '''15:30 - 16:20 : "전자금융 모바일앱 개인정보 권한에 대한 이슈"'''(Speaker : 조용현, 시큐아이) | ||
| + | |||
| + | *'''발표 요약''' : "2014년 1분기 국내 스마트폰 기반의 모바일 뱅킹 등록 고객수는 4,034만명으로 2013년말 대비 8.5%(316만명) 증가했고, 하루 평균 거래액은 1조6276억원으로 집계되었습니다. 또한 2014년 스마트폰 뱅킹 악성앱 발견건수는 1,440건으로 소액결제, 스마트폰 공인인증서 탈취, 정상적인 은행 앱을 악성 앱으로 바꾸는 등의 악성코드가 크게 증가한 것으로 나타났습니다. 이렇게 금융 스마트폰 앱 사용자수 및 거래액이 증가와 함께 스마트폰 악성코드 등도 늘어나면서 앱을 사용하는 금융소비자들에게 피해가 날로 확산되고 있습니다. 본 발표에서는 은행, 증권, 카드사들을 중심으로 금융 스마트폰 앱 설치 시 요구하는 개인정보 수집 권한에 대한 실태조사 내용을 다룹니다. 이 조사 결과를 토대로 포렌식 관점에서 개인정보 권한의 위협이 이용자의 접근매체 위변조에 어떠한 영향을 끼칠수 있는지, 모바일 전자금융 사고시 조사/분석의 범위 등에 대해 연구하고, 이러한 위험를 최소화 하기 위한 개선방안을 제시하고자 합니다. | ||
| + | |||
| + | *'''Speaker's Bio''' : 前육군 사이버범죄수사대 디지털포렌식 분석관, 비씨카드 정보보안실, 신한카드 정보보호팀 | ||
| + | <br> | ||
| + | * '''16:30 - 17:20 : "Mobile Application Security: Threats, Pitfalls, and Solutions"''' (Speaker : 김병조, Veracode Korea) | ||
| + | |||
| + | *'''발표 요약''' : 이번 발표에서는 모바일 애플리케이션을 1. Business to Consumer apps, 2. Commercial enterprise apps, 3. Public app 등 아래 3가지로 분류하고,각 분류된 앱에 대한 워협 및 위험을 알아보고 이를 해결할 수 있는 방안을 제시합니다. | ||
| + | |||
| + | *'''Speaker's Bio''' : 김병조 발표자는 10년간의 Business Application SI영업대표를 거쳐, 2004년부터 취약점 분석, 악성코드 분석 등 보안 연구 사업을 전개하고 있으며, 2007년부터 Application Security 전문회사인 미국 Veracode 한국대표로 활동하고 있다. | ||
| + | <br> | ||
| + | * '''17:20 - 17:30 : 마감(Closing session)''' | ||
| + | <br> | ||
| + | * '''18:30 - 21:00 : 맥주 파티(Beer Party)''' : 양재동 [http://map.naver.com/?query=%EC%96%91%EC%9E%AC%EB%8F%99+%EC%95%84%EC%9D%B4%EB%A6%AC%EC%89%AC%ED%8E%8D%EB%B7%B0&type=SITE_1&siteOrder= 'Irish Pub View'](02-522-0445) | ||
| + | <br> | ||
| + | OWASP 컨퍼런스의 발표자는 [https://www.owasp.org/index.php/Speaker_Agreement 'OWASP Speaker Agreement']에 동의 하는 것을 전제로 합니다. 발표자에 대한 금전적인 보상은 없습니다. 또한 발표 자료는 공개할 수 있습니다. | ||
| + | |||
| + | == '''발표자 모집''' == | ||
| + | |||
| + | OWASP Asia Tour - Korea 2014 컨퍼런스는 아래의 주제에 대해 발표자를 모집하고 있습니다. 발표를 원하시는 분은 11월 28일(금)까지 발표 주제를 제출해 주시기 바랍니다. 발표 주제는 [https://docs.google.com/a/owasp.org/forms/d/1S4WjR_1UqgJRvK3_Ye60GmM81--tDdw05RWatA2FH8U/edit 여기]를 클릭해서 제출해 주시기 바랍니다 [https://docs.google.com/a/owasp.org/forms/d/1S4WjR_1UqgJRvK3_Ye60GmM81--tDdw05RWatA2FH8U/edit Topic proposal].<br /> | ||
| + | |||
| + | * 모바일 보안(Mobile Security) | ||
| + | * OWASP 프로젝트(OWASP Project) | ||
| + | * 소프트웨어/애플리케이션이션 보안 기술(Software/Application Security Defense) | ||
| + | * 소프트웨어/애플리케이션이션 공격 기법(Software/Application Security Offense (Vulnerabilities & Exploits)) | ||
| + | * 웹 및 모바일 앱 보안(Web and Mobile Application Security) | ||
| + | * 암호기술(Cryptography) | ||
| + | * 핵심기반시설 보안(Critical Infrastructure Security) | ||
| + | * 기업 보안(Enterprise End to End Security) | ||
| + | * 정부 보안연구과제(Government Initiatives & Government Case Studies) | ||
| + | * 정책, 거버넌스, SDLC 등 (Effective case studies in Policy, Governance, Architecture or Life Cycle) | ||
| + | |||
| + | == '''자원봉사자 모집''' == | ||
| + | |||
| + | OWASP 코리아 챕터에서는 'OWASP Asia Tour - Korea 2014'컨퍼런스 컨퍼런스의 원활한 운영을 위해 자원봉사자를 모집하고자 하오니, 적극적이고, 활발하신 분들의 많은 관심과 지원 바랍니다. <br /> | ||
| + | 자원봉사자 지원은 [https://docs.google.com/a/owasp.org/forms/d/1iAmwS7aKytH5A-49vt1oba8hExMRbXWKEqm9-iLV0fs/edit 여기]를 클릭해서 12월 5일(금)까지 지원해 주시기 바랍니다.<br /> | ||
| + | |||
| + | == '''OWASP 코리아 챕터''' == | ||
| + | |||
| + | 추가적인 사항은 아래 OWASP코리아 홈페이지 또는 코리아챕터 페이스북을 방문해 주시기 바랍니다.<br /> | ||
| + | |||
| + | * OWASP 코리아 : [http://www.owasp.or.kr http://www.owasp.or.kr] | ||
| + | * OWASP 코리아 챕터 페이스북 : [https://www.facebook.com/groups/owaspk/ https://www.facebook.com/groups/owaspk/] | ||
{{:AsiaTour2014 KOR Agenda}} | {{:AsiaTour2014 KOR Agenda}} | ||
| Line 248: | Line 440: | ||
{{:AsiaTour2014 BKK Agenda}} | {{:AsiaTour2014 BKK Agenda}} | ||
| + | 08.30 – 09.00 น. ลงทะเบียน <br> | ||
| + | 09.00 – 09.30 น. กล่าวเปิดงาน<br> | ||
| + | 09.30 – 10.30 น. Java and Mobile Secure Coding โดย Tobias Gondrom<br> | ||
| + | 10.30 – 11.00 น. พักเบรก<br> | ||
| + | 11.00 – 12.00 น. Java and Mobile Secure Coding โดย Tobias Gondrom<br> | ||
| + | 12.00 – 13.00 น. พักรับประทานอาหารกลางวัน<br> | ||
| + | 13.00 – 14.00 น. Java and Mobile Secure Coding โดย Tobias Gondrom<br> | ||
| + | 14.00 – 14.30 น. พักเบรก<br> | ||
| + | 14.30 – 16.00 น. เสวนาในหัวข้อ "Application Security in Action” โดย<br> | ||
| + | ผู้ร่วมเสวนา<br> | ||
| + | ดร. กิตติ โฆษะวิสุทธิ์ VP, head of security management <br> | ||
| + | ณครินทร์ เลิศนามวงศ์ กรรมการผู้จัดการ บริษัท อินโนเวชั่น พลัส จำกัด<br> | ||
| + | <br> | ||
| + | ผู้ดำเนินรายการ <br> | ||
| + | กิติศักดิ์ จิรวรรณกูล OWASP Thailand Chapter Leader<br> | ||
| − | + | More information: https://www.facebook.com/events/868769733157670/ | |
=SPONSORS= | =SPONSORS= | ||
| Line 276: | Line 483: | ||
| − | Make your company part of the conversation. Become a sponsor of the tour today! [https://www.owasp.org/images/ | + | Make your company part of the conversation. Become a sponsor of the tour today! [https://www.owasp.org/images/8/8d/Asia_Tour_2014_Sponsorship_Opportunities.pdf '''SPONSOR OPPORTUNITIES'''] |
| − | |||
=TEAM= | =TEAM= | ||
| Line 288: | Line 494: | ||
* Onn Chee (Singapore) <br> | * Onn Chee (Singapore) <br> | ||
* Fazli (Malaysia) <br> | * Fazli (Malaysia) <br> | ||
| + | * Yosuke Hasegawa & Taichi Saito (Kansai) | ||
* [[User:Riotaro OKADA|Riotaro OKADA]] and [[User:Sen UENO|Sen Ueno]] (Japan) <br> | * [[User:Riotaro OKADA|Riotaro OKADA]] and [[User:Sen UENO|Sen Ueno]] (Japan) <br> | ||
* Yune (Korea) <br> | * Yune (Korea) <br> | ||
| Line 300: | Line 507: | ||
<headertabs /> | <headertabs /> | ||
| + | |||
| + | [https://www.owasp.org/index.php/AsiaTour2014#tab=SPONSORS '''Join Sponsorship'''] | ||
{{:AsiaTour2014 Sponsors}} | {{:AsiaTour2014 Sponsors}} | ||
Latest revision as of 13:22, 18 December 2014
- October 22: Wuhan, China
- October 25: ChengDu, China
- November 1: Hong Kong
- November 4: Kuala Lumpur, Malaysia
- November 6: Harbin, China
- November 7: Singapore, Singapore - cancelled (due to cancelled venue)
- November 29: Tokyo, Japan
- December 2: Bangkok, Thailand
- December 19: Seoul, Korea
Asia Tour Objective
The OWASP Asia Tour objective is to raise awareness about application security in the Asia region, so that people and organizations can make informed decisions about true application security risks. Everyone is free to participate in OWASP and all of our materials are available under a free and open software license.
We are proposing a chapters conference driven model in which the sessions are free for everybody and the costs are supported by a mix of funding i.e. OWASP Foundation, local chapter budget, external sponsorship, etc. 1-day training sessions are also offered in some tour stops. These sessions’ fees are $ 200USD for OWASP members and $ 250 USD for non-members (group discounts may apply).
Who Should Attend the Asia Tour?
- Application Developers
- Application Testers and Quality Assurance
- Application Project Management and Staff
- Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Deputies, Associates and Staff
- Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance
- Security Managers and Staff
- Executives, Managers, and Staff Responsible for IT Security Governance
- IT Professionals Interesting in Improving IT Security
- Anyone interested in learning about or promoting Web Application Security
Special offer - Become an OWASP Member
As part of the OWASP Asia Tour, you could become an OWASP Member by ONLY paying 20 U$D (normal price is 50 U$D). Show your support and become an OWASP member today! Please use discount code Asia when registering as member to avail this special discount.
QUESTIONS
- If you have any questions about the Asia Tour, please send an email to tobias.gondrom@owasp.org or laura.grau@owasp.org
