This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP AppSec Asia 2008 - Taiwan"

From OWASP
Jump to: navigation, search
Line 127: Line 127:
 
  | style="width:40%; background:#EEF0F7; color:#4A4AFF" align="center" |  '''[https://www.owasp.org/index.php/Alexander_Meisel_(OWASP_Germany) Alex], [https://www.owasp.org/index.php/Chenxi_Wang%2C_Ph.D._(Forrester_Research) Chenxi], [https://www.owasp.org/index.php/Dhruv_Soi_(OWASP_Delhi_Chapter_Leader) Dhruv], [https://www.owasp.org/index.php/Fyodor_(Guard-Info) Fyodor],  [https://www.owasp.org/index.php/KK_Mookhey_(OWASP_Mumbai) KK], [https://www.owasp.org/index.php/Robert_%22RSnake%22_Hansen_(SecTheory) Robert], Tim Bass, [https://www.owasp.org/index.php/Wayne_Huang%2C_OWASP_Taiwan_Chapter Wayne], [https://www.owasp.org/index.php/YM_Chen%2C_Director%2C_McAfee_Foundstone YM]<br>'''
 
  | style="width:40%; background:#EEF0F7; color:#4A4AFF" align="center" |  '''[https://www.owasp.org/index.php/Alexander_Meisel_(OWASP_Germany) Alex], [https://www.owasp.org/index.php/Chenxi_Wang%2C_Ph.D._(Forrester_Research) Chenxi], [https://www.owasp.org/index.php/Dhruv_Soi_(OWASP_Delhi_Chapter_Leader) Dhruv], [https://www.owasp.org/index.php/Fyodor_(Guard-Info) Fyodor],  [https://www.owasp.org/index.php/KK_Mookhey_(OWASP_Mumbai) KK], [https://www.owasp.org/index.php/Robert_%22RSnake%22_Hansen_(SecTheory) Robert], Tim Bass, [https://www.owasp.org/index.php/Wayne_Huang%2C_OWASP_Taiwan_Chapter Wayne], [https://www.owasp.org/index.php/YM_Chen%2C_Director%2C_McAfee_Foundstone YM]<br>'''
 
|-
 
|-
==fsg==
 

Revision as of 09:48, 7 October 2008

Welcome to OWASP AppSec Asia 2008! We'd like to thank Delhi, Mumbai, Singapore Taiwan, Thailand, and Vietnam Chapters for helping out with the conference and for attending the conference. We are working with other chapters across Asia to see if we can invite more chapters. If you represent an Asia chapter and are interested in attending, please email Wayne.

OWASP AppSec Asia 2008, Conference Schedule (Oct 27th - Oct 28th)

(2008/10/27) - Day 1

08:30 - 09:30 Door opens for registration
TIME SESSION SPEAKER
09:30- 09:40 Opening welcome and an introduction to this year’s program

Wayne Huang, Conference Chair
09:40-09:50 Welcome by Institute for Information Industry


09:50-10:00 Welcome by Information Security Consortium, Information Service Industry Association



10:00-11:00 What's Next? Strategies for Web Application Security

YM Chen, Director, McAfee Foundstone

11:10-12:00 Web-based Malware obfuscation: the kung-fu and the detection
Wayne Huang, OWASP Taiwan Chapter

12:00 - 13:00 Lunch
TIME SESSION SPEAKER
13:00 - 13:40 Why Webmail systems are hard to secure--using real case studies

Charmi Lin, Taiwan Information & Communication Security Technology Center
13:50 - 14:40 Proxy Caches and Web Application Security--using the recent Google Docs 0-day as an example

Tim Bass, OWASP Thailand Chapter
14:40 - 15:00 Coffee Break
TIME SESSION SPEAKER
15:00 - 15:40 How bad can Web vulnerabilities be—case study on a 50 million personal records breach

PK (Taiwan Criminal Investigation Bureau)
15:50 - 16:40 Tiny coding errors, big losses: real stories of website 0wnage

Fyodor (Guard-Info)
16:50 - 17:40 Crossing the Chasm: Anatomy of Client-Side and Browser-Based Attacks

Dhruv Soi (OWASP Delhi Chapter Leader), Pukhraj Singh (OWASP Delhi Chapter)
17:40 - 18:40 Asia Chapter Leader’s Meeting

Delhi, Mumbai, Singapore Taiwan, Thailand, and Vietnam Chapter Leaders

(2008/10/28) - Day 2

TIME SESSION SPEAKER
10:00- 11:00 New 0-Day Browser Exploits: Clickjacking - yea, this is bad...

Robert "RSnake" Hansen (SecTheory)
11:00- 12:00 Web 2.0, Consumerization, and Application Security

Chenxi Wang, Ph.D. (Forrester Research)
12:00 - 13:00 Lunch
TIME SESSION SPEAKER
13:00 - 13:50 Good Business Penetration Testing

KK Mookhey (OWASP Mumbai)
14:00 - 14:50 Best Practices Guide: Web Application Firewalls

Alexander Meisel (OWASP Germany)
14:50 - 15:10 Coffee Break
TIME SESSION SPEAKER
15:10 - 16:00 The HTTP Botnet Research: Focusing on HTTP based DDoS Botnets

Steven Adair (ShadowServer Foundation)
16:10 - 17:00 Panel: Manual auditing or automated tools? Blackbox, whitebox, or WAF?

Alex, Chenxi, Dhruv, Fyodor, KK, Robert, Tim Bass, Wayne, YM