This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Denver"

From OWASP
Jump to: navigation, search
(Next Meeting)
Line 9: Line 9:
 
** J2EE
 
** J2EE
 
* Performing security-oriented code reviews
 
* Performing security-oriented code reviews
* Advanced SQL injection attacks
 
 
* HTTP message spliting attacksCommon mistakes and best practices for
 
* HTTP message spliting attacksCommon mistakes and best practices for
 
* Authentication: single-sign-on, identity managment, LDAP injection attacks, etc
 
* Authentication: single-sign-on, identity managment, LDAP injection attacks, etc
Line 16: Line 15:
 
* Return on Security Investment (ROSI) calculations
 
* Return on Security Investment (ROSI) calculations
  
== January 2007 Meeting ==
+
== February 2007 Meeting ==
  
The next meeting will be on January 17, 6:30PM at EchoStar Satellite's headquarters south of the DTC. The classroom we are meeting in can easily hold 50 people; far more if we crowd in. This should make for more breathing room than last month. If you think you may attend, please RSVP to [[email protected]] with your name and company. Directions can be found [http://maps.google.com/maps?f=d&hl=en&saddr=I-25+(N)+%26+E+Lincoln+Ave,+Parker,+CO+80134&daddr=9601+S.+Meridian+Blvd+Englewood,+co+80112&ie=UTF8&sll=39.54211,-104.86157&sspn=0.022107,0.058365&z=14&om=1 here]. Come to the main entrance and tell the security guard you are with the OWASP meeting. If you get lost, call David Byrne at (desk) 720-514-5675 or (cell) 303-912-2612.
+
The next meeting will be on February 21, 6:30PM at EchoStar Satellite's headquarters south of the DTC. If you think you may attend, please RSVP to [[email protected]] with your name and company. Directions can be found [http://maps.google.com/maps?f=d&hl=en&saddr=I-25+(N)+%26+E+Lincoln+Ave,+Parker,+CO+80134&daddr=9601+S.+Meridian+Blvd+Englewood,+co+80112&ie=UTF8&sll=39.54211,-104.86157&sspn=0.022107,0.058365&z=14&om=1 here]. Come to the main entrance and tell the security guard you are with the OWASP meeting. If you get lost, call David Byrne at (desk) 720-514-5675 or (cell) 303-912-2612.
  
Michael Walter will be giving a presentation on security in the SDLC and David Ferguson with [http://www.fishnetsecurity.com/ FishNet Security] (and the leader of the Kansas City OWASP chapter) will be presenting on session managment and web services.
+
Buck Watia from [http://www.verisign.com/ Verisign] will be presenting on Advanced SQL Injection.  
  
The [http://www.southseascorp.com/ South Seas Corporation] will be providing food & drink.
+
[http://www.fishnetsecurity.com/ FishNet Security] will be providing food & drink.
  
 
== Past Meetings ==
 
== Past Meetings ==
  
 
[[Denver November 2006 meeting|November 2006]]
 
[[Denver November 2006 meeting|November 2006]]
 +
[[Denver January 2007 meeting|January 2007]]

Revision as of 18:03, 18 February 2007

OWASP Denver

Welcome to the Denver chapter homepage. The chapter leaders are David Byrne and Andy Lewis.


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


Future Meetings

Below is a list of potential topics for future meetings. If you are interested in presenting, or at least contributing to the content of a presentation on any topic, please send David Byrne an e-mail. Feel free to submit ideas for other topics as well.

  • Common security mistakes and best practices for
    • AJAX
    • .Net
    • J2EE
  • Performing security-oriented code reviews
  • HTTP message spliting attacksCommon mistakes and best practices for
  • Authentication: single-sign-on, identity managment, LDAP injection attacks, etc
  • Payment Card Industry (PCI) compliance, relating to web apps
  • Sarbanes Oxley (SOX) compliance, relating to web apps
  • Return on Security Investment (ROSI) calculations

February 2007 Meeting

The next meeting will be on February 21, 6:30PM at EchoStar Satellite's headquarters south of the DTC. If you think you may attend, please RSVP to [[email protected]] with your name and company. Directions can be found here. Come to the main entrance and tell the security guard you are with the OWASP meeting. If you get lost, call David Byrne at (desk) 720-514-5675 or (cell) 303-912-2612.

Buck Watia from Verisign will be presenting on Advanced SQL Injection.

FishNet Security will be providing food & drink.

Past Meetings

November 2006 January 2007

Retrieved from "https://wiki.owasp.org/index.php?title=Denver&oldid=16516"