Difference between revisions of "OWASP New Zealand Day 2012"

Revision as of 02:58, 30 July 2012

OWASP New Zealand Day 2012
30th and 31st August 2012 - Auckland

Introduction

We are proud to announce the fourth annual OWASP New Zealand Day conference, to be held at the University of Auckland on Friday August 31st, 2012. OWASP New Zealand Day is a one-day conference dedicated to web application security, with an emphasis on secure development techniques to help Kiwi developers build more secure applications.

Based on feedback from last year, the structure of the conference will be slightly different this time.

We will be offering training on the day before the conference (Thursday August 30th) rather than at the same time as the conference.
After lunch on the conference day, we will split to two tracks - one focused on deep technical topics, the other on policy, compliance and risk management.

The fourth OWASP New Zealand Day will be happening thanks to the support provided by the University of Auckland School of Business, which will kindly offer the same conference venue of the last three years. Entry to the event will, as in the past, be free.

For any comments, feedback or observations, please don't hesitate to contact us.

Registration

As with last year, registration will be performed through the RegOnline system. Registrations will be limited to 300 people, so please register using the following link soon to reserve your spot!

Register here! - https://www.regonline.com/owaspnzday2012

Conference Schedule

31st August 2012

08:30	Registration
09:00	Welcome to OWASP New Zealand Day 2012 Adrian Hayes and Nick Freeman (OWASP Leaders)
09:10	How do I get into Security? I'm a webdev! (An introduction to in2securITy) Adam Bell - in2securITy
09:25	Blindsided by Security - The Reality of Web Security for the Visually Impaired Laura Bell - Lateral Security
10:00	Internet Junk Quintin Russ - SiteHost
10:30	Break for Morning Tea
11:00	Defeating Cross-Site Scripting with Content Security Policy Francois Marier - Mozilla
11:20	The Dos and Don'ts of Web Application Frameworks Denis Andzakovic - Security-Assessment.com
11:50	Web Application Firewalls - Going where no WAFs have gone before... Sam Pickles - F5, and Andy Prow - Aura
12:30	Break for Lunch
13:45	Mobile NFC 101 Nick von Dadelszen - Lateral Security	Comply or Die Trying Andrew Kelly
14:45	Going Down to the Wire Kirk Jackson - Xero	Increasing The Value of Penetration Testing Brett Moore- Insomnia Security
15:30		An (Unofficial) OWASP Top 10 for Managers Dean Carter and Shahn Harris - Lateral Security
16:00	Break for Afternoon Tea
16:30	Discussion Panel and Wrap-up

Important dates

CFP & CFT closes: 22nd July 2012 [ CLOSED ]
Conference Agenda due: 30th July 2012
Conference Registration deadline: 20th August 2012
Training Registration deadline: 20th August 2012
Training Day date: 30th August 2012
Conference Day date: 31st August 2012

Conference Venue

The University of Auckland Business School
Owen G Glenn Building
Room: OGGB 260-073 (OGGB4)
Address: 12 Grafton Road
Auckland
New Zealand
Map

Conference Sponsors


ICT and Department of Information Systems and Operations Management

Gold Sponsors:


www.security-assessment.com

Silver Sponsors:


www.insomniasec.com

www.lateralsecurity.com

Topics

The OWASP Days have always offered a forum for discussion and exchange of ideas among researchers and practitioners who present their experiences and discuss issues related to Web Application Security from a higher level to a technical point of view.

Conference topics may include, but are not limited to:

OWASP Project Presentation (i.e Tool Updates/Project Status etc)
Threat modelling of web applications
Privacy Concerns with Applications and Data Storage
Vulnerability analysis of web applications (code review, pentest, static analysis, scanning)
Baseline or Metrics for Application Security
Countermeasures for web application vulnerabilities - secure coding practices
Web application security
Platform or language (e.g. Java, .NET) security features that help secure web applications
Secure application development
How to use databases securely in web applications
Security of Service Oriented Architectures
Access control in web applications
Web services security
Browser security
PCI
Risk management
Security concepts for C*Os, project managers and other non-technical attendees

Conference Committee

Nick Freeman - OWASP New Zealand Leader (Auckland)
Adrian Hayes - OWASP New Zealand Leader (Wellington)
Lech Janczewski - Associate Professor - University of Auckland School of Business

Please direct all enquiries to nick.freeman@owasp.org and adrian.hayes@owasp.org.

Call For Sponsorships

As mentioned above, OWASP New Zealand Day 2012 will be held in Auckland on the 31st of August, 2012. OWASP New Zealand Day is a security conference entirely dedicated to web application security. The conference is once again being hosted by the University of Auckland with their support and assistance. OWASP New Zealand Day 2012 is a free event, but requires sponsor support to help be an instructive and quality event for the New Zealand community. OWASP is strictly non for profit. The sponsorship money will be used to help make OWASP New Zealand Day 2012 a free, compelling and valuable experience for the audience.

The sponsorship funds collected are to be used for things such as:

Refreshments (coffee break/lunch) - we want to keep people refreshed during the day; while we certainly bring good and interesting speakers, we don't want people to go home when they become hungry.
Name tags - we feel that getting to know people within the New Zealand community is important, and name tags make that possible.
Promotion - up to now our events are propagating by word of mouth. We would like to get to a wider audience by advertising our events.
Printed Materials - printed materials will include brochures, tags and lanyards.

Facts

Last year, the event was supported by 5 sponsors and attracted more than 200 participants. Plenty of constructive (and positive!) feedback from the audience was received and we are using this to make the conference more appealing to more people. For more information on last year's event, please visit: https://www.owasp.org/index.php/OWASP_New_Zealand_Day_2011

The OWASP New Zealand community is strong and there are more than 220 people currently subscribed to the mailing-list. OWASP New Zealand Day is expected to attract between 200 and 250 attendees this year.

OWASP regular attendees are IT project managers, IT security managers, IT security consultants, web application architects and developers, QA managers, QA testers and system administrators.

Sponsorships

There are three different levels of sponsorships for the OWASP Day event:

Support Sponsorship: (Covering international speaker travel expenses, media coverage/article/promotion of the event)

Includes:

- Publication of the sponsor logo on the event web site - https://www.owasp.org/index.php/OWASP_New_Zealand_Day_2012

Silver Sponsorship: 1500 NZD

Includes:

- Publication of the sponsor logo on the event web site - https://www.owasp.org/index.php/OWASP_New_Zealand_Day_2012
- The publication of the sponsor logo in the event site, in the agenda, on the flyers, brochure and in all the official communications with the attendees at the conference.
- The possibility to distribute the company brochures, CDs or other materials to the participants during the event.

Gold Sponsorship: 2750 or 3500 NZD (see below)

Includes:

- The publication of the sponsor logo in the event site, in the agenda, on the handouts and in all the official communications with the attendees at the conference.
- The possibility to distribute the company brochures, CDs or other materials to the participants during the event.
- Publication of the sponsor logo on the OWASP New Zealand Chapter page
- Sponsor logo on the OWASP NZ site prior and during the OWASP Day event - https://www.owasp.org/index.php/New_Zealand
- Publication of the sponsor logo on the event web site - https://www.owasp.org/index.php/OWASP_New_Zealand_Day_2012
- Sponsor dedicated space at the conference (sponsor booth) to show products/services to the attendees during coffee breaks, lunch and snack breaks. If a booth is not required, the Gold Sponsorship fee is 2750 NZD instead of 3500 NZD.

Those who are interested in sponsoring OWASP New Zealand 2012 Conference can contact the OWASP New Zealand Board.

Difference between revisions of "OWASP New Zealand Day 2012"

Revision as of 02:58, 30 July 2012

Introduction

Registration

Conference Schedule

Important dates

Conference Venue

Conference Sponsors

Topics

Conference Committee

Registration

Call For Sponsorships

Facts

Sponsorships

Conference Dates

OWASP New Zealand Day 2012 Organising Committee

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools

@@ Line 25: / Line 25: @@
 <center>[https://www.regonline.com/owaspnzday2012 Register here!] - https://www.regonline.com/owaspnzday2012</center>
+= Conference Schedule =
-==Important dates==
-* CFP & CFT closes:		 		22nd July 2012 [ CLOSED ]
-* Conference Agenda due: 			30th July 2012
-* Conference Registration deadline: 		20th August 2012
-* Training Registration deadline: 		20th August 2012
-* Training Day date: 				30th August 2012
-* Conference Day date: 				31st August 2012
-==Conference Venue==
-The University of Auckland Business School<br>
-Owen G Glenn Building<br>
-Room: OGGB 260-073 (OGGB4)<br>
-Address: 12 Grafton Road<br>
-Auckland<br>
-New Zealand<br>
-[http://maps.google.com/maps?oe=UTF-8&ie=UTF8&q=auckland+business+school&fb=1&split=1&cid=0,0,12303692579639430581&ei=6WeqSZr_OZLFkAWR--zbDQ&ll=-36.852308,174.770916&spn=0.01056,0.020621&z=16&iwloc=A Map]<br>
-<center>[[Image:Auckland_business_school_small2.jpg]] [[Image:Room_hall.jpg]]</center>
-==Conference Sponsors==
-<table width="100%" border="0" cellspacing="1" cellpadding="1">
-  <tr>
-    <td valign="bottom" width="50%"><center>[http://www.auckland.ac.nz/ https://www.owasp.org/images/8/82/University_of_Auckland_crest_small.png]</center></td>
-    <td valign="bottom" width="50%"><center>[http://www.security.org.nz/NZISF_NZISForumContent.php https://www.owasp.org/images/5/5a/Nz_information_security_forum.png]</center></td>
-  </tr>
-  <tr>
-    <td valign="top" width="50%"><center>ICT and Department of Information Systems and Operations Management</center></td>
-    <td valign="top" width="50%">&nbsp;</td>
-  </tr>
-</table>
-'''Gold Sponsors:'''
-<table width="100%" border="0" cellspacing="0" cellpadding="0">
-  <tr>
-    <td><center>[http://www.security-assessment.com https://www.owasp.org/images/4/41/SA_Logo_w_DD.gif]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-  <tr>
-    <td><center>[http://www.security-assessment.com www.security-assessment.com]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-</table>
-<br>
-'''Silver Sponsors:'''
-<table width="100%" border="0" cellspacing="0" cellpadding="0">
-  <tr>
-    <td><center>[http://www.insomniasec.com/ https://www.owasp.org/images/e/ef/INSOMNIA.PNG]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-  <tr>
-    <td><center>[http://www.insomniasec.com/ www.insomniasec.com]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-  <tr>
-    <td><center>[http://www.lateralsecurity.com/ https://www.owasp.org/images/f/f4/Lateral_security.jpeg]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-  <tr>
-    <td><center>[http://www.lateralsecurity.com/ www.lateralsecurity.com]</center></td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-    <td>&nbsp;</td>
-  </tr>
-</table>
-==Topics==
-The OWASP Days have always offered a forum for discussion and exchange of ideas among researchers and practitioners who present their experiences and discuss issues related to Web Application Security from a higher level to a technical point of view.
-Conference topics may include, but are not limited to:
-* OWASP Project Presentation (i.e Tool Updates/Project Status etc)
-* Threat modelling of web applications
-* Privacy Concerns with Applications and Data Storage
-* Vulnerability analysis of web applications (code review, pentest, static analysis, scanning)
-* Baseline or Metrics for Application Security
-* Countermeasures for web application vulnerabilities - secure coding practices
-* Web application security
-* Platform or language (e.g. Java, .NET) security features that help secure web applications
-* Secure application development
-* How to use databases securely in web applications
-* Security of Service Oriented Architectures
-* Access control in web applications
-* Web services security
-* Browser security
-* PCI
-* Risk management
-* Security concepts for C*Os, project managers and other non-technical attendees
-==Conference Committee==
-* Nick Freeman - OWASP New Zealand Leader (Auckland)
-* Adrian Hayes -  OWASP New Zealand Leader (Wellington)
-* Lech Janczewski - Associate Professor - University of Auckland School of Business
-Please direct all enquiries to nick.freeman@owasp.org and adrian.hayes@owasp.org.
-= Conference Schedule <span style="color: red">[new]</span> =
 ==Conference Schedule==
 <center>
@@ Line 263: / Line 149: @@
 </table>
 </center>
+==Important dates==
+* CFP & CFT closes:		 		22nd July 2012 [ CLOSED ]
+* Conference Agenda due: 			30th July 2012
+* Conference Registration deadline: 		20th August 2012
+* Training Registration deadline: 		20th August 2012
+* Training Day date: 				30th August 2012
+* Conference Day date: 				31st August 2012
+==Conference Venue==
+The University of Auckland Business School<br>
+Owen G Glenn Building<br>
+Room: OGGB 260-073 (OGGB4)<br>
+Address: 12 Grafton Road<br>
+Auckland<br>
+New Zealand<br>
+[http://maps.google.com/maps?oe=UTF-8&ie=UTF8&q=auckland+business+school&fb=1&split=1&cid=0,0,12303692579639430581&ei=6WeqSZr_OZLFkAWR--zbDQ&ll=-36.852308,174.770916&spn=0.01056,0.020621&z=16&iwloc=A Map]<br>
+<center>[[Image:Auckland_business_school_small2.jpg]] [[Image:Room_hall.jpg]]</center>
+==Conference Sponsors==
+<table width="100%" border="0" cellspacing="1" cellpadding="1">
+  <tr>
+    <td valign="bottom" width="50%"><center>[http://www.auckland.ac.nz/ https://www.owasp.org/images/8/82/University_of_Auckland_crest_small.png]</center></td>
+    <td valign="bottom" width="50%"><center>[http://www.security.org.nz/NZISF_NZISForumContent.php https://www.owasp.org/images/5/5a/Nz_information_security_forum.png]</center></td>
+  </tr>
+  <tr>
+    <td valign="top" width="50%"><center>ICT and Department of Information Systems and Operations Management</center></td>
+    <td valign="top" width="50%">&nbsp;</td>
+  </tr>
+</table>
+'''Gold Sponsors:'''
+<table width="100%" border="0" cellspacing="0" cellpadding="0">
+  <tr>
+    <td><center>[http://www.security-assessment.com https://www.owasp.org/images/4/41/SA_Logo_w_DD.gif]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+  <tr>
+    <td><center>[http://www.security-assessment.com www.security-assessment.com]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+</table>
+<br>
+'''Silver Sponsors:'''
+<table width="100%" border="0" cellspacing="0" cellpadding="0">
+  <tr>
+    <td><center>[http://www.insomniasec.com/ https://www.owasp.org/images/e/ef/INSOMNIA.PNG]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+  <tr>
+    <td><center>[http://www.insomniasec.com/ www.insomniasec.com]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+  <tr>
+    <td><center>[http://www.lateralsecurity.com/ https://www.owasp.org/images/f/f4/Lateral_security.jpeg]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+  <tr>
+    <td><center>[http://www.lateralsecurity.com/ www.lateralsecurity.com]</center></td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+    <td>&nbsp;</td>
+  </tr>
+</table>
+==Topics==
+The OWASP Days have always offered a forum for discussion and exchange of ideas among researchers and practitioners who present their experiences and discuss issues related to Web Application Security from a higher level to a technical point of view.
+Conference topics may include, but are not limited to:
+* OWASP Project Presentation (i.e Tool Updates/Project Status etc)
+* Threat modelling of web applications
+* Privacy Concerns with Applications and Data Storage
+* Vulnerability analysis of web applications (code review, pentest, static analysis, scanning)
+* Baseline or Metrics for Application Security
+* Countermeasures for web application vulnerabilities - secure coding practices
+* Web application security
+* Platform or language (e.g. Java, .NET) security features that help secure web applications
+* Secure application development
+* How to use databases securely in web applications
+* Security of Service Oriented Architectures
+* Access control in web applications
+* Web services security
+* Browser security
+* PCI
+* Risk management
+* Security concepts for C*Os, project managers and other non-technical attendees
+==Conference Committee==
+* Nick Freeman - OWASP New Zealand Leader (Auckland)
+* Adrian Hayes -  OWASP New Zealand Leader (Wellington)
+* Lech Janczewski - Associate Professor - University of Auckland School of Business
+Please direct all enquiries to nick.freeman@owasp.org and adrian.hayes@owasp.org.