Revision as of 07:18, 22 September 2008

OWASP Asia Conference 2007 (OWASP Asia 2007) - September 27, 2007

OWASP AppSec Asia Conference 2007 Schedule – September 27th

Day One [Conference Program]: Thursday 27th September, 2007

Opening Remark

Dr. Ching-Chi Hsu (Vice President, III Taiwan) (1:40pm-1:50pm)

Bio: Dr. Hsu was a professor of the Department of Information Engineering of National Taiwan University for several years and became the Chairman of the Department in 2000. After over 25 years serving at National Taiwan University, Dr. Hsu was promoted as the President of Kai Nan University. Nowadays, Dr. Hsu is the Executive Vice President of the Institute for Information Industry, which provides the innovative R&D, software technologies and interoperability standards for Taiwan ICT industries on fostering development of the ICT industry.

David Chang (Secretary General, Information Service Industry Association of R.O.C (CISA) Taiwan) (1:50pm-2:00pm)

Bio: N/A

Talk Session I: Changing Faces in Web Attacks

Jeremiah Grossman (Founder and CTO, WhiteHat Security) (2:00pm-2:30pm)

Talk Title: The Next Challenge to Web Security: Business Logic Flaws

Previous Talks:BlackHat Briefings, Defcon, ISACA, CSI, OWASP, Vanguard, ISSA

Publications:XSS Attacks

Bio: N/A

Daniel Hsu (Manager Security Service - North East Asia, Global Security, American Express) (2:30pm-3:00pm)

Talk Title: From a user perspective, what are CSOs' real concerns?

Previous Talks: Asia Security Weeks, SecuTech Expo

Bio: Daniel Hsu have been in corporate security professional field for over a decade. After his successful naval career, he has been the head and/or founder of the corporate security department for UPS (East Asia), FarEasTone Telecom (Corporate), Taipei 101 (Corporate) and American Express (North & East Asia). Daniel is a regular contributor and editorial advisor to several security professional magazines. He has his own column in Taiwan's Information Security Management magazine, and is the editor of the Chinese version Introduction to Security Management book. He is a veteran lecturer/speaker in several local and international security related conferences and seminars. He serves as the Chairperson of Taiwan Chapter, ASIS International since 2003. He has been elected and served as Steering Committee Member for Asia Crisis & Security Group since 2006. Daniel is the first Taiwanese who's been accredited the Certified Protection Professional (CPP) credential from ASIS International. Daniel holds MSc in Maritime Operations at LJMU, UK and EMBA in Risk Management at NCCU, Taiwan ROC. He is also a licensed naval engineer and airplane pilot.

Jack Yu (Editor-In-Chief, InfoSecurity Magazine Taiwan) (3:00pm-3:30pm)

Talk Title: Live in Battle: The NetArmy and Cross-Straight Digital Warfare

Bio: N/A

Talk Session II: Current Best Practices and Solutions

Mike Shema (Lead Security Researcher, Qualys) (4:00pm-4:30pm)

Talk Title: Automated Tools: Are They Any Good for Enterprises?

Previous Talks:BlackHat 2004, RSA 2005, IT Underground 2006, and SACIS 2007. Training at BlackHat conferences in the U.S. and Europe

Publications:Author of 9 best-selling books

Bio: Mr. Shema is the co-author of Hacking Exposed: Web Applications, The Anti-Hacker Toolkit, and the author of Hack Notes: Web Application Security. Mr. Shema worked for several years as a consultant and trainer at Foundstone where he conducted information security assessments across a variety of technologies and industries. He also worked at NT Objectives to develop assessment and mitigation strategies for all aspects of web application security. While his security background ranges across network penetration testing, wireless auditing, code review, and training, Mr. Shema primarily focuses on web application security. Mr. Shema is currently employed by Qualys, developing tools that automate the web application audit process.

Wayne Huang, (Founder and CEO, Armorize Technologies)(4:30pm-5:00pm)

Talk Title: Secure Web Developing using Static Analysis

Previous Talks: RSA, ACM/W3C WWW, IEEE DSN, IEEE ISSRE, Hacks in Taiwan

Publications: Security in the 21st Century, Several IEEE/ACM papers

Bio: Wayne Huang is first author of two award-winning security papers in the International WWW Conference (2003, 2004) and the co-author of "Computer Security in the 21st Century". Wayne is the founder and CEO of Armorize Technologies. He received the Microsoft Research Fellowship in 2005. He is a Ph.D. candidate at EE, National Taiwan University. He was the first author of many well-cited papers on web application security.

Round Table Panel Discussion (5:00pm-5:30pm)

Free Registration

Please email to [email protected] and provide the following information:

1. Name:
2. Company:
3. Title:
4. Email:
5. Phone:

Venue

NTUH International Convention Center, Taipei, Taiwan