|
|
| (One intermediate revision by one other user not shown) |
| Line 1: |
Line 1: |
| − | [http://www.owasp.org/index.php/Summit_2011 ''' Global Summit 2011 Home Page''']<br> | + | #REDIRECT [[Summit_2011_Working_Sessions/Session001]] |
| − | [http://www.owasp.org/index.php/Summit_2011_Schedule ''' Global Summit 2011 Schedule''']<br>
| |
| − | [http://www.owasp.org/index.php/Summit_2011_Working_Sessions ''' Global Summit 2011 Working Sessions'''] | |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(179, 179, 179); color: white;" | <font color="black">'''Working Sessions Operational Rules''' - [[:Working Sessions Methodology|'''Please see here the general frame of rules''']].</font>
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font color="white">'''WORKING SESSION IDENTIFICATION'''</font>
| |
| − | |-
| |
| − | | align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Work Session Name'''
| |
| − | | align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | <font color="black"><span style="font-weight: bold;">Browser Working Group</span></font>
| |
| − | |-
| |
| − | | align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Short Work Session Description'''
| |
| − | | align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | One of the great challenges of application security is browser security. The browser is becoming our de facto runtime platform for applications and it comprises a whole ecosystem of plug-ins and web technologies. Therefore we will spend a full day working together with the leading browser vendors to penetrate current problems, new ideas, and how security fits in alongside other requirements from developers and end-users. Do not miss this chance to influence what's important in browser security in the coming years. <br>
| |
| − | |-
| |
| − | | align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Related Projects (if any)'''
| |
| − | | align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_Sandboxing Sandboxing], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_Securing_Plugins Securing Plugins], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_Enduser_Warnings Enduser Warnings], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_Blacklisting Blacklisting], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_OS_Integration OS Integration], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_JavaScript JavaScript], [http://www.owasp.org/index.php/Working_Sessions_Browser_Working_Group_New_HTTP_Headers New HTTP Headers]
| |
| − | |-
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Email Contacts & Roles'''
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Chair'''<br>[mailto:[email protected] '''John Wilander'''] | |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Secretary'''<br>
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Mailing list'''<br>[http://www.owasp.org/index.php/Summit_2011#tab=How_Do_I_Join.3F_.2F_Mailing_list '''Subscription Page''']
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font color="white">'''WORKING SESSION SPECIFICS'''</font>
| |
| − | |-
| |
| − | | align="center" style="width: 15%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Objectives'''
| |
| − | | align="left" colspan="6" style="width: 85%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | <font color="black"></font><font color="black"></font><font color="black">
| |
| − | #Work on and discuss how to enhance enduser security in web applications,
| |
| − | #Work on and discuss browser-based countermeasures against XSS, CSRF, man-in-the-middle, man-in-the-browser and full remote access exploits.</font>
| |
| − | | |
| − | |-
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | '''Venue/Date&Time/Model'''
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Venue'''<br>[http://www.owasp.org/index.php/Summit_2011 OWASP Global Summit Portugal 2011]
| |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| |
| − | '''Date&Time'''
| |
| − | | |
| − | | align="center" style="width: 25%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | '''Discussion Model'''<br>Open Space, demo-driven discussion, round-table discussions (i e not a PowerPoint race ;)
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | <font color="black"></font> <br>
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font color="white">'''WORKING SESSION OPERATIONAL RESOURCES'''</font>
| |
| − | |-
| |
| − | | align="center" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" | Projector, whiteboards, markers, Internet connectivity, post-it notes, power
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% white; color: white;" | <font color="black"></font> <br>
| |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="7" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | <font color="white">'''WORKING SESSION ADDITIONAL DETAILS'''</font>
| |
| − | |-
| |
| − | | align="left" style="width: 100%; background: none repeat scroll 0% 0% rgb(204, 204, 204);" |
| |
| − | *'''Related resources:''' [[OWASP Working Session - Browser Security Letters]]
| |
| − | *'''Browser vendors invited:'''Apple, Google, Microsoft, Mozilla, Opera
| |
| − | | |
| − | |}
| |
| − | | |
| − | {| border="0" align="center" style="width: 100%;"
| |
| − | |-
| |
| − | ! align="center" colspan="3" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" | '''WORKING SESSION OUTCOMES'''
| |
| − | |-
| |
| − | | align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(108, 130, 181);" | Statements, Initiatives or Decisions
| |
| − | | align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Proposed by Working Group'''
| |
| − | | align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(179, 179, 179);" | '''Approved by OWASP Board'''
| |
| − | |-
| |
| − | | align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>
| |
| − | | align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | Enhanced cooperation between browser vendors.
| |
| − | | align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
| |
| − | |-
| |
| − | | align="center" style="width: 7%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>
| |
| − | | align="center" style="width: 46%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | A new role for OWASP in this area.
| |
| − | | align="center" style="width: 47%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" | After the Board Meeting - fill in here.
| |
| − | |}
| |
| − | | |
| − | == Working Session Participants ==
| |
| − | | |
| − | {{:Template:Summit 2011 Working Sessions Attendee/Columns}}
| |
| − | {{:Summit_2011_Attendee/Attendee024 | Summit 2011 Working Sessions Attendee/Rows_Browser_Security}}
| |
| − | {{:Summit_2011_Attendee/Attendee010 | Summit 2011 Working Sessions Attendee/Rows_Browser_Security}}
| |
| − | | |
| − | |}
| |
| − | <br>
| |
| − | | |
| − | [[Category:OWASP_Working_Session]]
| |
| − | [[Category:Summit_2011]]
| |
