Difference between revisions of "OWASP EU Summit 2008"

Revision as of 17:07, 27 November 2008


'THE OWASP AGENDA FOR 2009'	Summit media coverage

KEY RESULTS FROM THE OWASP SUMMIT

ALGARVE, PORTUGAL, November 7, 2008 – The Open Web Application Security Project (OWASP) today announced results from the annual OWASP Summit. Over 80 application security experts from over 20 countries joined forces to identify, coordinate, and prioritize our 2009 efforts to create a more secure Internet.

OWASP is a free and open community that focuses on improving application security. There is overwhelming evidence that the vast majority of web applications contain security holes that are increasingly putting people and organizations at serious risk. Securing web applications is an extraordinarily difficult technical challenge that demands a concerted effort.

“OWASP came together for a week and produced a stunning amount of new ideas,” said OWASP Chair Jeff Williams. “Our community is growing and organizing into a powerful movement that will affect software development worldwide. This summit marks a major milestone our efforts to improve application security.” - Watch Video

Key results from the OWASP Summit include:

UPDATED OWASP PRINCIPLES

• Free & Open

• Governed by rough consensus & running code

• Abide by a code of ethics (see ethics)

• Not-for-profit

• Not driven by commercial interests

• Risk based approach

UPDATED CODE OF ETHICS

• Support the implementation of and promote compliance with standards, procedures, controls for application security

• Have objectivity, due diligence and professional care in accordance with established standards

• Responsible disclosure

• New Free Tools and Guidance - OWASP announced the release of Live CD 2008, many new testing tools, static analysis tools, the Enterprise Security API (ESAPI v1.4), AntiSamy, the Application Security Verification Standard (ASVS), guidance for Ruby on Rails and Classic ASP, international versions of our materials, and much more.

• New Outreach Programs – OWASP has expanded its outreach efforts by building relationships with technology vendors, framework providers, and standards bodies. In addition, we piloted a new program to provide free one-day seminars at universities and developer conferences worldwide.

• New Global Committee Structure – OWASP recognized the extraordinary contribution of our most active leaders by engaging them to lead a set of six new committees. Each democratically established committee will focus on a key function or geographic region, such as OWASP projects, conferences, local chapters, membership and industry outreach.

How to Join a Global Committee - Applications being accepted until January 9th 2009 for a 24 month term

Global Education Committee

Global Chapter Committee

Global Conferences Committee

Global Industry Committee

Global Projects and Tools Committee

Global Membership Committee

TOOLS AND PROJECTS APPROVED OR LAUNCHED DURING THE SUMMIT

OWASP is proud to launch the following new or updated tools:

• Application Security Verification Standard, Mike Boberski

• AppSensor, Michael Coates

• Access Control Rules Tester, Andrew Petukhov

• AntiSamy .NET, Arshan Dabirsiaghi

• Application Security Tool Benchmarking Environment and Site Generator refresh, Dmitry Kozlov

• Code Crawler, Alessio Marziali

• JSP Testing Tool, Jason Li

• Live CD 2008, Matt Tesauro

• OpenPGP Extensions for HTTP – Enigform and mod_openpgp, Arturo ‘Buanzo’

• Orizon Project, Paolo Perego

• Python Static Analysis, Georgy Kilmov

• Skavenger, Matthias Rohr

• Teachable Static Analysis Workbench, Dmitry Kozlov & Igor Konnov

Find them all at the PROJECTS PAGE

OWASP is proud to launch the following new or updated documents or resources:

• Application Security Desk Reference (ASDR), Leonardo Cavallari

• Backend Security Project, Carlo Pelliccioni

• Classic ASP Security Project, Juan Carlos Calderon

• Code review guide, V1.1, Eoin Keary

• Education Project, Martin Knobloch

• Internationalization Guidelines – Spanish project, Juan Carlos Calderon

• Positive Security Project, Eduardo V.C. Neves

• Ruby on Rails Security Guide V2, Heiko Webers

• Securing WebGoat using ModSecurity, Stephen Craig Evans

• Source Code Review Projects, James Walden

• Testing Guide V3, Matteo Meucci

Find them all at the PROJECTS PAGE

EVENT AGENDA

Agenda for Monday, November 3rd, 2008
13:00	Lunch
	Training Sessions
15:00 - 17:00	Securing WebGoat with ModSecurity Stephen Craig Evans	WebSec Apps for Managers and Executives Mano Paul	OWASP Testing Guide Matteo Meucci
19:00	Summit Briefing Dinis Cruz and Summit Organization Team
20:00	Dinner

Agenda for Tuesday, November 4th, 2008
08:00	Registration
09:00	Summit Keynote Dinis Cruz and Summit Organization Team
	Documents	Tools
09:30	OWASP Testing Guide Matteo Meucci	OWASP JSP Testing Tool Jason Li
09:45	OWASP Code Review Guide Eoin Keary	OWASP Orizon Project Paolo Perego (a.k.a. thesp0nge)
10:00	OWASP Application Security Desk Reference (ADSR) Leonardo Cavallari Militelli	OWASP Live CD Matt Tesauro
10:15	OWASP Spanish Project Juan Carlos Calderon	WebScarab-NG Rogan Dawes
10:30	Coffee Break
10:45	.NET ESAPI Alex Smolen
11:00	Working Sessions Briefing Dinis Cruz
	Working Sessions


11:15 - 13:00	Documentation Projects/Guides Integration and Unified 4.0 Version Eduardo Neves	Browser Security Arshan Dabirsiaghi	Tools Projects Matt Tesauro
13:00	Lunch
	Training Sessions
14:00	The Art and Science of Threat Modeling Web Applications Mano Paul	Web Server Hardening SELinux Pavol Luptak	Offensive WebApp Hacking Marco Slaviero
16:00	Coffee Break
	Working Sessions
16:30	ESAPI Jeff Williams
18:30	ASDR Leonardo Cavallari		.NET Project Dinis Cruz

Agenda for Wednesday, November 5th, 2008
09:15	Daily Briefing Dinis Cruz
	Standards and Education		Tools
10:00	OWASP Positive Security (SoC 08) Eduardo Vianna de Camargo Neves		OWASP Access Control Rules Tester Project Andrew Petukhov
10:15	OWASP Education Sebastien Deleersnyder, Martin Knobloch		OWASP Teachable Static Analysis Workbench Dmitry Kozlov
10:30	OWASP Internationalization Guidelines Juan Carlos Calderon		OWASP AppSensor Michael Coates
10:45	PASSWD:Metrics and Vulnerabilities Lucilla Mancini		OWASP Backend Security Project Carlo Pelliccioni
11:00	OWASP Open Review Project Dan Cornell		OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project Dmitry Kozlov
11:15	OWASP Global Committee Elections
11:30	Coffee Break
	Working Sessions
12:45	OWASP Working Session Education Project Sebastien Deleersnyder	Testing Guide Matteo Meucci	Web Application Framework Security Arshan Dabirsiaghi
14:45	Lunch (During Working Sessions)
	Training Sessions
15:00	Flash Player Security Peleus Uhley	OWASP Top 10 Sebastien Deleersnyder and Martin Knobloch	Uncovering WebScarab's Secret Treasures Rogan Dawes	Hacking the Orizon Paolo Perego
17:00	Coffee Break
	Working Sessions
17:30	Code Review Guide Eoin Keary	EU Funding for OWASP Projects Carlos Serrao	OWASP Certification Tom Brennan	Software Assurance Maturity Model Pravir Chandra
19:00	OWASP Website Fabio Cerullo	Metrics & Vulnerabilities Lucilla Mancini	OWASP Orizon Paolo Perego

Agenda for Thursday, November 6th, 2008
09:15	Daily Briefing Dinis Cruz
	Technology		Tools
10:00	OWASP Classic ASP Security Project Juan Carlos Calderon		OWASP Source Code Review James Walden
10:15	OWASP Ruby on Rails Security Project Heiko Webers		OWASP Enigmaform and mod_Openpgp Arturo Alberto Busleiman
10:30	OWASP Webslayer Project Christian Martorella		OWASP Securing WebGoat using ModSecurity Stephen Evans and Christian Folini
11:00	OWASP Skavenger Project Matthias Rohr		OWASP AntiSamy.NET Marcin Wielgoszewski
11:15	Coffee Break
	Working Sessions
11:30	Top 10 2009 Dave Wichers	Intra Governmental Affairs David Campbell	SAMM v2	Web Site	Handling Web MalWare
13:00	Lunch (During Working Sessions)
	Training Sessions
14:00	Ajax Security	Auditing Flash Applications Peleus Uhley		WebApp Assessment Vicente Aguilera Diaz	Mod Security Lucas C. Ferreira
	Working Sessions
16:30	Strategic Planning and Business Models compatible with OWASP values Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, Tom Brennan & Kate Hartmann and Paulo Combra
18:30	2-Way Internationalization Juan Carlos Calderon & Sebastien Deleersnyder		Best Practices for Chapter Leaders Georg Hess		Live CD & DVD Matt Tesauro
20:00	Gala Dinner
22:00	OWASP Band

Agenda for Friday, November 7th, 2008
10:00	Daily Briefing Dinis Cruz
10:15	OWASP AppSec Agenda 2009: Working Session Outcomes
	Documentation Projects/Guides Integration and Unified 4.0 Version Eduardo Neves
	Browser Security Arshan Dabirsiaghi
	ESAPI Jeff Williams
	Tools Projects Matt Tesauro
	Code Review Guide Eoin Keary
	OWASP Certification Tom Brennan
	Software Assurance Maturity Model Pravir Chandra
	Top 10 2009 Dave Wichers
	Intra Governmental Affairs David Campbell
	Best Practices for Chapter Leaders Georg Hess
11:15	Coffee Break and Vote (put your dots on the wall)
11:30	Live CD & DVD Matt Tesauro
	ADSR Leonardo Cavallari
	Education Project Sebastien Deleersnyder
	Web Application Framework Security Arshan Dabirsiaghi
	Testing Guide Matteo Meucci
	OWASP Censorship Tom Brennan
	EU Funding for OWASP Projects Carlos Serrao
	OWASP Website Fabio Cerullo
	OWASP Orizon Paolo Perego
	Handling Web MalWare
	2-Way Internationalization Juan Carlos Calderon
	Portuguese Public & Private Organizations Carlos Serrao
	Winter of Code 2009 Dinis Cruz and Sebastien Deleersnyder
13:00	Lunch
14:00	Board Meeting
17:00	Announcement of Summit Procedings

VENUE & TRAVEL ARRANGEMENTS

The OWASP European Summit 2008 will be hosted at the 5 start Resort in Algarve Portugal (Grande Real Santa Eulália Resort & Hotel). We suggest the hotel booking and the travel arrangements be handled via Diplomata Tours, the assigned travel agency.

The venue address:

Praia de Santa Eulália

PO Box 2445

Albufeira, Portugal

8200-916

Google Maps Link

Nearest Airport: Faro

U.S. Absentee Voting Information

U.S. citizens attending the Summit on 4 November (Election Day) may vote absentee. You may find the information you need here, here or here, or on your home state/territory or foreign embassy/consulate web site. These links are provided for your information only; OWASP does not endorse any political party, candidate, etc. and is not able to provide you with instructions or assistance in voting or registering.

ARCHIVE DATA

Summit Brochure 6 page brochure or this 33 page brochure.

FORMER AGENDA

Click here to see.

Difference between revisions of "OWASP EU Summit 2008"

Revision as of 17:07, 27 November 2008

KEY RESULTS FROM THE OWASP SUMMIT

UPDATED OWASP PRINCIPLES

UPDATED CODE OF ETHICS

TOOLS AND PROJECTS APPROVED OR LAUNCHED DURING THE SUMMIT

OWASP is proud to launch the following new or updated documents or resources:

EVENT AGENDA

VENUE & TRAVEL ARRANGEMENTS

U.S. Absentee Voting Information

SPONSORS

FORMER AGENDA

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools

@@ Line 134: / Line 134: @@
   | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Monday, November 3rd, 2008
   |-
-  | style="width:10%; background:#7B8ABD" | 13:00
+  | style="width:10%; background:#7B8ABD" align="center"| 13:00
-  | colspan="4" style="width:90%; background:#B36B00" align="center" | Lunch
+  | colspan="4" style="width:90%; background:#C2C2C2" align="center" | Lunch
   |-
-  | style="width:10%; background:#7B8ABD" |
+  | style="width:10%; background:white" align="center"|
-  | colspan="4" style="width:90%; background:#c0e0e0" align="center" | Training Sessions
+  | colspan="4" style="width:90%; background:white" align="center" | Training Sessions
   |-
-  | style="width:10%; background:#7B8ABD" | 15:00 to 17:00
+  | style="width:10%; background:#7B8ABD" align="center"| 15:00 - 17:00
-  | style="width:33%; background:#c0e0e0" align="center" |  Securing WebGoat with ModSecurity<br>Stephen Craig Evans
+  | style="width:30%; background:#c0a0a0" align="center" |  Securing WebGoat with ModSecurity<br>Stephen Craig Evans
-  | style="width:33%; background:#c0e0e0" align="center" |  WebSec Apps for Managers and Executives<br>Mano Paul
+  | style="width:30%; background:#c0a0a0" align="center" |  WebSec Apps for Managers and Executives<br>Mano Paul
-  | style="width:34%; background:#c0e0e0" align="center" |  OWASP Testing Guide<br>Matteo Meucci
+  | style="width:30%; background:#c0a0a0" align="center" |  OWASP Testing Guide<br>Matteo Meucci
   |-
-  | style="width:10%; background:#7B8ABD" | 19:00
+  | style="width:10%; background:#7B8ABD" align="center" | 19:00
-  | colspan="4" style="width:90%; background:#FFFF00" align="center" | Summit Briefing<br>Dinis Cruz and Summit Organization Team
+  | colspan="4" style="width:90%; background:#F2F2F2" align="center" | Summit Briefing<br>Dinis Cruz and Summit Organization Team
   |-
-  | style="width:10%; background:#7B8ABD" | 20:00
+  | style="width:10%; background:#7B8ABD" align="center" | 20:00
-  | colspan="4" style="width:90%; background:#B36B00" align="center" | OWASPers Dinner
+  | colspan="4" style="width:90%; background:#C2C2C2" align="center" | Dinner
   |-
   |}
@@ Line 157: / Line 157: @@
   | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Tuesday, November 4th, 2008
   |-
-  | style="width:10%; background:#7B8ABD" | 08:00
+  | style="width:10%; background:#7B8ABD" align="center" | 08:00
-  | colspan="4" style="width:80%; background:#FFBFEF" align="center" | Registration
+  | colspan="4" style="width:80%; background:#C2C2C2" align="center" | Registration
   |-
-  | style="width:10%; background:#7B8ABD" | 09:00
+  | style="width:10%; background:#7B8ABD" align="center"| 09:00
-  | colspan="4" style="width:90%; background:#FFFF00" align="center" | Summit Keynote<br>Dinis Cruz and Summit Organization Team
+  | colspan="4" style="width:80%; background:#F2F2F2" align="center" | Summit Keynote<br>Dinis Cruz and Summit Organization Team
   |-
-  | style="width:10%; background:#7B8ABD" |
+  | style="width:10%; background:#7B8ABD" align="center" |
-  | colspan="2" style="width:45%; background:#80FF80" align="center" |  Documents
+  | colspan="2" style="width:45%; background:#FFDF80" align="center" |  '''Documents'''
-  | colspan="2" style="width:45%; background:#80FF80" align="center" |  Tools
+  | colspan="2" style="width:45%; background:#a0c0e0" align="center" |  '''Tools'''
+ |-
+ | style="background:#7B8ABD" align="center" | 09:30
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Testing Guide<br>Matteo Meucci
+ | colspan="2" style="background:#a0c0e0" align="center" | OWASP JSP Testing Tool<br>Jason Li
+ |-
+ | style="background:#7B8ABD" align="center" | 09:45
+ | colspan="2" style="background:#FFDF80" align="center" | [https://www.owasp.org/index.php/Image:Code_Review_Eoin.pptx OWASP Code Review Guide]<br>Eoin Keary
+ | colspan="2" style="background:#a0c0e0" align="center" |  [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_The_Owasp_Orizon_Project.ppt OWASP Orizon Project]<br>Paolo Perego (a.k.a. thesp0nge)
   |-
-  | style="background:#7B8ABD" | 09:30
+  | style="background:#7B8ABD" align="center" | 10:00
-  | colspan="2" style="background:#80FF80" align="center" | OWASP Testing Guide<br>Matteo Meucci
+  | colspan="2" style="background:#FFDF80" align="center" | OWASP Application Security Desk Reference (ADSR)<br>Leonardo Cavallari Militelli
-  | colspan="2" style="background:#80FF80" align="center" | OWASP JSP Testing Tool<br>Jason Li
+  | colspan="2" style="background:#a0c0e0" align="center" | OWASP Live CD<br>Matt Tesauro
   |-
-  | style="background:#7B8ABD" | 09:45
+  | style="background:#7B8ABD" align="center" | 10:15
-  | colspan="2" style="background:#80FF80" align="center" | [https://www.owasp.org/index.php/Image:Code_Review_Eoin.pptx OWASP Code Review Guide]<br>Eoin Keary
+  | colspan="2" style="background:#FFDF80" align="center" | OWASP Spanish Project<br>Juan Carlos Calderon
-  | colspan="2" style="background:#80FF80 " align="center" |  [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_The_Owasp_Orizon_Project.ppt OWASP Orizon Project]<br>Paolo Perego (a.k.a. thesp0nge)
+  | colspan="2" style="background:#a0c0e0" align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_WebScarab_treasures.ppt WebScarab-NG]<br>Rogan Dawes
   |-
-  | style="background:#7B8ABD" | 10:00
+  | style="background:#7B8ABD" align="center"| 10:30
- | colspan="2" style="background:#80FF80" align="center" | OWASP Application Security Desk Reference (ADSR)<br>Leonardo Cavallari Militelli
+  | colspan="5" style="background:#C2C2C2" align="center" | Coffee Break
-  | colspan="2" style="background:#80FF80 " align="center" | OWASP Live CD<br>Matt Tesauro
   |-
-  | style="background:#7B8ABD" | 10:15
+  | style="background:#7B8ABD" align="center"| 10:45
-  | colspan="2" style="background:#80FF80" align="center" | OWASP Spanish Project<br>Juan Carlos Calderon
+  | colspan="2" style="background:#FFDF80" align="center" | .NET ESAPI<br>Alex Smolen
-  | colspan="2" style="background:#80FF80 " align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_WebScarab_treasures.ppt WebScarab-NG]<br>Rogan Dawes
+  | colspan="2" style="background:#a0c0e0" align="center" |
   |-
-  | style="background:#7B8ABD" | 10:30
+  | style="width:10%; background:#7B8ABD" align="center" | 11:00
-  | colspan="5" style="background:#B36B00" align="center" | Coffee Break
+  | colspan="4" style="width:90%; background:#F2F2F2" align="center" | Working Sessions Briefing<br>Dinis Cruz
   |-
-  | style="background:#7B8ABD" | 10:45
+  | style="width:10%; background:white" align="center"|
-  | colspan="2" style="background:#80FF80" align="center" | .NET ESAPI<br>Alex Smolen
+  | colspan="4" style="width:90%; background:white" align="center" | Working Sessions
-  | colspan="2" style="background:#80FF80" align="center" | JBroFuzz<br>Yiannis
+  |}
+{| style="width:80%" border="0" align="center" |
+ | colspan="5" align="center" style="background:white" |
   |-
-  | style="background:#7B8ABD" | 11:00
+  | style="width:10%; background:#7B8ABD" align="center" | 11:15 - 13:00
-  | colspan="6" style="background:#FFFF00" align="center" | Working Sessions Briefing<br>Dinis Cruz
+  | style="width:30%; background:#B3FF99" align="center" |  Documentation Projects/Guides Integration and Unified 4.0 Version<br>Eduardo Neves
+ | style="width:30%; background:#B3FF99" align="center" |  Browser Security<br>Arshan Dabirsiaghi
+ | style="width:30%; background:#B3FF99" align="center" |  Tools Projects<br>Matt Tesauro
   |-
-  | style="background:#7B8ABD" |
+  | style="background:#7B8ABD" align="center" | 13:00
-  | colspan="6" style="background:#7B8ABD" align="center" | Working Sessions
+  | colspan="4" style="background:#C2C2C2" align="center" | Lunch
   |-
-  | style="width:10%; background:#7B8ABD" | 11:15 - 13:00
+  | style="width:10%; background:white" align="center"|
- | style="width:30%; background:#7B8ABD" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version<br>Chair: Eduardo Neves
+  | colspan="4" style="width:90%; background:white" align="center" | Training Sessions
-  | style="width:30%; background:#7B8ABD" align="center" | Browser Security<br>Chair: Arshan Dabirsiaghi<br>Secretary:  Kuai Hinojosa
- | style="width:30%; background:#7B8ABD" align="center" | Tools Projects<br>Chair: Matt Tesauro
   |-
-  | style="background:#7B8ABD" | 13:00 || colspan="4" style="background:#B36B00" align="center" | Lunch
+  | style="background:#7B8ABD" align="center" | 14:00
-|-
+ | style="background:#c0a0a0" align="center" | The Art and Science of Threat Modeling Web Applications<br>Mano Paul
- | style="background:#7B8ABD" | 14:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions
+ | style="background:#c0a0a0" align="center" | [https://www.owasp.org/index.php/Image:SELinux-course-OWASP.pdf Web Server Hardening SELinux]<br>Pavol Luptak
-|-
+ | style="background:#c0a0a0" align="center" | Offensive WebApp Hacking<br>Marco Slaviero
-| style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | The Art and Science of Threat Modeling Web Applications
-Mano Paul
-| style="background:#c0e0e0" align="center" | [https://www.owasp.org/index.php/Image:SELinux-course-OWASP.pdf Web Server Hardening SELinux]
-Pavol Luptak
-| style="background:#c0e0e0" align="center" | Offensive WebApp Hacking
-Marco Slaviero
   |-
-  | style="background:#7B8ABD" | 16:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break
+  | style="background:#7B8ABD" align="center" | 16:00
+ | colspan="4" style="background:#C2C2C2" align="center" | Coffee Break
   |-
-| style="background:#7B8ABD" |  || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions
+ | style="width:10%; background:white" align="center"|
+ | colspan="4" style="width:90%; background:white" align="center" | Working Sessions
   |-
-  | style="background:#7B8ABD" | 16:30 || colspan="4" style="background:#7B8ABD " align="center" |  ESAPI
+  | style="width:10%; background:#7B8ABD" align="center" | 16:30
-Chair:  Jeff Williams
+ | colspan="4" style="width:90%; background:#B3FF99" align="center" |  ESAPI<br>Jeff Williams
-Secretary:  Arshan Dabirsiaghi
+  |-
-|-
+  | style="background:#7B8ABD" align="center" | 18:30
-  | style="background:#7B8ABD" | 18:30 || colspan="2" style="background:#7B8ABD" align="center" | ASDR
+ | colspan="2" style="background:#B3FF99" align="center" | ASDR<br>Leonardo Cavallari
-Chair:  Leonardo Cavallari
+ | style="background:#B3FF99" align="center" | .NET Project<br>Dinis Cruz
-| style="background:#7B8ABD " align="center" | .NET Project
-Chair:  Dinis Cruz
 |}
@@ Line 231: / Line 234: @@
   | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Wednesday, November 5th, 2008
   |-
-  | style="width:10%; background:#7B8ABD" | 09:15 || colspan="4" style="width:80%; background:#FFFF00" align="center" | Daily Briefing:
+  | style="width:10%; background:#7B8ABD" align="center"| 09:15
-Dinis Cruz
+ | colspan="4" style="width:80%; background:#F2F2F2" align="center" | Daily Briefing<br>Dinis Cruz
+ |-
+ | style="width:10%; background:#7B8ABD" |
+ | colspan="2" style="width:30%; background:#FFDF80" align="center" |  '''Standards and Education'''
+ | colspan="2" style="width:30%; background:#a0c0e0" align="center" |  '''Tools'''
+ |-
+ | style="background:#7B8ABD" align="center" | 10:00
+  | colspan="2" style="background:#FFDF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Positive_Security_Project '''OWASP Positive Security (SoC 08)''']<br>Eduardo Vianna de Camargo Neves
+| colspan="2" style="background:#a0c0e0" align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_AcCoRuTe.pptx OWASP Access Control Rules Tester Project]<br>Andrew Petukhov
   |-
-  | style="width:10%; background:#7B8ABD" |  || colspan="2" style="width:30%; background:#80FF80" align="center" |  Standards and Education
+  | style="background:#7B8ABD" align="center" | 10:15
-(Room 1)
+  | colspan="2" style="background:#FFDF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Education_Project '''OWASP Education''']<br>Sebastien Deleersnyder, Martin Knobloch
-  | colspan="2" style="width:30%; background:#80FF80" align="center" |  Tools
+  | colspan="2" style="background:#a0c0e0" align="center" | [https://www.owasp.org/index.php/Image:Teachable_static_analysis_workbench.pptx OWASP Teachable Static Analysis Workbench]<br>Dmitry Kozlov
-(Room 2)
   |-
-  | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Positive_Security_Project '''OWASP Positive Security (SoC 08)''']
+  | style="background:#7B8ABD" align="center" | 10:30
-Eduardo Vianna de Camargo Neves
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Internationalization Guidelines<br>Juan Carlos Calderon
-| colspan="2" style="background:#80FF80" align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_AcCoRuTe.pptx OWASP Access Control Rules Tester Project]
+ | colspan="2" style="background:#a0c0e0" align="center" | [http://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor]<br>Michael Coates
-Andrew Petukhov
   |-
-  | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Education_Project '''OWASP Education''']
+  | style="background:#7B8ABD" align="center" | 10:45
-Sebastien Deleersnyder, Martin Knobloch
+ | colspan="2" style="background:#FFDF80" align="center" | [https://www.owasp.org/index.php/Image:PASSWD.ppt PASSWD:Metrics and Vulnerabilities]<br>Lucilla Mancini
-  | colspan="2" style="background:#80FF80 " align="center" | [https://www.owasp.org/index.php/Image:Teachable_static_analysis_workbench.pptx OWASP Teachable Static Analysis Workbench]
+  | colspan="2" style="background:#a0c0e0" align="center" | OWASP Backend Security Project<br>Carlo Pelliccioni
-Dmitry Kozlov
   |-
-  | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Internationalization Guidelines
+  | style="background:#7B8ABD" align="center" | 11:00
-Juan Carlos Calderon
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Open Review Project<br>Dan Cornell
-  | colspan="2" style="background:#80FF80 " align="center" | [http://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor]
+  | colspan="2" style="background:#a0c0e0" align="center" | [https://www.owasp.org/index.php/Image:Site_generator.pptx OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project]<br>Dmitry Kozlov
-Michael Coates
   |-
-  | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:#80FF80" align="center" | [https://www.owasp.org/index.php/Image:PASSWD.ppt PASSWD:Metrics and Vulnerabilities]
+  | style="background:#7B8ABD" align="center" | 11:15
-Lucilla Mancini
+  | colspan="4" style="background:#f2984c" align="center" | OWASP Global Committee Elections
-  | colspan="2" style="background:#80FF80 " align="center" | OWASP Backend Security Project
-Carlo Pelliccioni
   |-
-  | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Open Review Project
+  | style="background:#7B8ABD" align="center" | 11:30
-Dan Cornell
+  | colspan="4" style="background:#C2C2C2" align="center" | Coffee Break
- | colspan="2" style="background:#80FF80 " align="center" | [https://www.owasp.org/index.php/Image:Site_generator.pptx OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project]
-Dmitry Kozlov
-|-
- | style="background:#7B8ABD" | 11:15 || colspan="4" style="background:#80FF80" align="center" | OWASP Global Committee Elections
-(Room 1)
-|-
-  | style="background:#7B8ABD" | 11:30 || colspan="4" style="background:#B36B00" align="center" | Coffee Break
-|-
- | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions
-|-
- | style="background:#7B8ABD" | 12:45 || style="background:#7B8ABD" align="center" | [[OWASP Working Session Education Project|OWASP Working Session Education Project]]<br>Chair: Sebastien Deleersnyder<br>(Room 1)
- | style="background:#7B8ABD" align="center" | ''Testing Guide''
-Chair:  Matteo Meucci
-(Room 2)
- | colspan="2" style="background:#7B8ABD" align="center" | ''Web Application Framework Security''
-Chair:  Arshan Dabirsiaghi
-Secretary:  Kuai Hinojosa
-(Room 3)
-|-
- | style="background:#7B8ABD" | 14:45 || colspan="4" style="background:#B36B00" align="center" | Lunch During Working Sessions
-|-
- | style="background:#7B8ABD" | 15:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions
-|-
-| style="background:#7B8ABD" | 15:00|| style="background:#c0e0e0" align="center" | Flash Player Security
-Peleus Uhley
-(Room 1)
-| style="background:#c0e0e0" align="center" | OWASP Top 10
-Sebastien Deleersnyder and Martin Knobloch
-(Room 2)
-| style="background:#c0e0e0" align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_WebScarab_treasures.ppt Uncovering WebScarab's Secret Treasures]
-Rogan Dawes
-(Sala Bella Vista)
-| style="background:#c0e0e0" align="center" | [http://www.owasp.org/index.php/Image:Hacking_the_Owasp_Orizon.ppt Hacking the Orizon]
-Paolo Perego
-(Room 3)
   |-
-  | style="background:#7B8ABD" | 17:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break
+  | style="width:10%; background:white" align="center"|
+ | colspan="4" style="width:90%; background:white" align="center" | Working Sessions
   |-
-| style="background:#7B8ABD" |  || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions
+ | style="background:#7B8ABD" align="center" | 12:45
+  | style="background:#B3FF99" align="center" | [[OWASP Working Session Education Project|OWASP Working Session Education Project]]<br>Sebastien Deleersnyder
+ | style="background:#B3FF99" align="center" | Testing Guide<br>Matteo Meucci
+ | colspan="2" style="background:#B3FF99" align="center" | Web Application Framework Security<br>Arshan Dabirsiaghi
   |-
- | style="background:#7B8ABD" | 17:30 || style="background:#7B8ABD " align="center" |  Code Review Guide
+  | style="background:#7B8ABD" align="center" | 14:45
-Chair:  Eoin Keary
+  | colspan="4" style="background:#C2C2C2" align="center" | Lunch (During Working Sessions)
-(Room 2)
-  | style="background:#7B8ABD " align="center" |  EU Funding for OWASP Projects
-Chair:  Carlos Serrao
-(Sala Bella Vista)
-  | style="background:#7B8ABD " align="center" | OWASP Certification
-Chair:  Tom Brennan
-(Room 1)
- | style="background:#7B8ABD " align="center" | Software Assurance Maturity Model
-Chair:  Pravir Chandra
-(Room 3)
   |-
-  | style="background:#7B8ABD" | 19:00 || style="background:#7B8ABD " align="center" | OWASP Website
+ | style="width:10%; background:white" align="center"|
-Chair:  Favio Cerull
+ | colspan="4" style="width:90%; background:white" align="center" | Training Sessions
-(Room 1)
+ |-
-  | style="background:#7B8ABD " align="center" | Metrics & Vulnerabilities
+ | style="background:#7B8ABD" align="center" | 15:00
-Chair:  Lucilla Mancini
+ | style="background:#c0a0a0" align="center" | Flash Player Security<br>Peleus Uhley
-(Room 2)
+ | style="background:#c0a0a0" align="center" | OWASP Top 10<br>Sebastien Deleersnyder and Martin Knobloch
-  | colspan="2" style="background:#7B8ABD " align="center" | OWASP Orizon
+ | style="background:#c0a0a0" align="center" | [https://www.owasp.org/index.php/Image:OWASP_EU_Summit_2008_WebScarab_treasures.ppt Uncovering WebScarab's Secret Treasures]<br>Rogan Dawes
-Paolo Perego
+ | style="background:#c0a0a0" align="center" | [http://www.owasp.org/index.php/Image:Hacking_the_Owasp_Orizon.ppt Hacking the Orizon]<br>Paolo Perego
-(Room 3)
+ |-
-|}
+  | style="background:#7B8ABD" align="center"| 17:00
+ | colspan="5" style="background:#C2C2C2" align="center" | Coffee Break
+ |-
+ | style="width:10%; background:white" align="center"|
+ | colspan="4" style="width:90%; background:white" align="center" | Working Sessions
+ |-
+ | style="background:#7B8ABD" align="center" | 17:30
+ | style="background:#B3FF99" align="center" | Code Review Guide<br>Eoin Keary
+ | style="background:#B3FF99" align="center" | EU Funding for OWASP Projects<br>Carlos Serrao
+ | style="background:#B3FF99" align="center" | OWASP Certification<br>Tom Brennan
+  | style="background:#B3FF99" align="center" | Software Assurance Maturity Model<br>Pravir Chandra
+ |-
+  | style="background:#7B8ABD" align="center" | 19:00
+ | style="background:#B3FF99" align="center" | OWASP Website<br>Fabio Cerullo
+ | style="background:#B3FF99" align="center" | Metrics & Vulnerabilities<br>Lucilla Mancini
+  | colspan="2" style="background:#B3FF99" align="center" | OWASP Orizon<br>Paolo Perego
+ |}
@@ Line 329: / Line 309: @@
   | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Thursday, November 6th, 2008
   |-
-  | style="width:10%; background:#7B8ABD" | 09:15 || colspan="5" style="width:80%; background:#FFFF00" align="center" | Daily Briefing:
+  | style="width:10%; background:#7B8ABD" align="center"| 09:15
-Dinis Cruz
+ | colspan="5" style="width:80%; background:#F2F2F2" align="center" | Daily Briefing<br>Dinis Cruz
   |-
-  | style="width:10%; background:#7B8ABD" |  || colspan="2" style="width:30%; background:#80FF80" align="center" |  Technology
+  | style="width:10%; background:#7B8ABD" |
-  | colspan="3" style="width:30%; background:#80FF80" align="center" |  Tools
+ | colspan="2" style="width:30%; background:#FFDF80" align="center" |  '''Technology'''
+  | colspan="3" style="width:30%; background:#a0c0e0" align="center" |  '''Tools'''
   |-
-  | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | OWASP Classic ASP Security Project
+  | style="background:#7B8ABD" align="center" | 10:00
-Juan Carlos Calderon
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Classic ASP Security Project<br>Juan Carlos Calderon
-  | colspan="3" style="background:#80FF80" align="center" | OWASP Source Code Review
+  | colspan="3" style="background:#a0c0e0" align="center" | OWASP Source Code Review<br>James Walden
-James Walden
   |-
-  | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80 " align="center" | OWASP Ruby on Rails Security Project
+  | style="background:#7B8ABD" align="center" | 10:15
-Heiko Webers
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Ruby on Rails Security Project<br>Heiko Webers
-  | colspan="3" style="background:#80FF80 " align="center" | OWASP Enigmaform and mod_Openpgp
+  | colspan="3" style="background:#a0c0e0" align="center" | OWASP Enigmaform and mod_Openpgp<br>Arturo Alberto Busleiman
-Arturo Alberto Busleiman (a.k.a. Buanzo)
   |-
-  | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Webslayer Project
+  | style="background:#7B8ABD" align="center" | 10:30
-Christian Martorella
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Webslayer Project<br>Christian Martorella
-  | colspan="3" style="background:#80FF80 " align="center" | OWASP Securing WebGoat using ModSecurity
+  | colspan="3" style="background:#a0c0e0" align="center" | OWASP Securing WebGoat using ModSecurity<br>Stephen Evans and Christian Folini
-Stephen Evans and Christian Folini
   |-
-  | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Skavenger Project
+  | style="background:#7B8ABD" align="center" | 11:00
-Matthias Rohr
+ | colspan="2" style="background:#FFDF80" align="center" | OWASP Skavenger Project<br>Matthias Rohr
-  | colspan="3" style="background:#80FF80 " align="center" | OWASP AntiSamy.NET
+  | colspan="3" style="background:#a0c0e0" align="center" | OWASP AntiSamy.NET<br>Marcin Wielgoszewski
-Marcin Wielgoszewski
   |-
-  | style="background:#7B8ABD" | 11:15 || colspan="5" style="background:#B36B00" align="center" | Coffee Break
+  | style="background:#7B8ABD" align="center"| 11:15
-|-
+  | colspan="5" style="background:#C2C2C2" align="center" | Coffee Break
- | style="background:#7B8ABD" | || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions
-|-
- | style="background:#7B8ABD" | 11:30 || style="background:#7B8ABD" align="center" | Top 10
-Chair:  Dave Wichers
-Secretary:  Jeff Williams
-(Room 1)
- | style="background:#7B8ABD" align="center" | Intra Governmental Affairs
-Chair:  David Campbell
-(Room 2)
- | style="background:#7B8ABD" align="center" | SAMM v2
-(Room 3)
-| style="background:#7B8ABD" align="center" | Web Site
-:15
-Executive Room
-| style="background:#7B8ABD" align="center" | Handling Web MalWare
-:15
-Sala Bella Vista
-|-
-  | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Lunch During Working Sessions
-|-
- | style="background:#7B8ABD" | 14:00 || colspan="5" style="background:#c0e0e0" align="center" | Training Sessions
-|-
-| style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | Ajax Security
-(Room 1)
-| colspan="2" style="background:#c0e0e0" align="center" | Auditing Flash Applications
-Peleus Uhley
-(Room 2)
-| style="background:#c0e0e0" align="center" | WebApp Assessment
-Vicente Aguilera Diaz
-(Room 3)
-| style="background:#c0e0e0" align="center" | Mod Security
-Lucas C. Ferreira
-(Executive Room)
   |-
-  | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Coffee Break
+  | style="width:10%; background:white" align="center"|
+ | colspan="5" style="width:90%; background:white" align="center" | Working Sessions
   |-
-| style="background:#7B8ABD" |  || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions
+ | style="background:#7B8ABD" align="center" | 11:30
+ | style="background:#B3FF99" align="center" | Top 10 2009<br>Dave Wichers
+ | style="background:#B3FF99" align="center" | Intra Governmental Affairs<br>David Campbell
+  | style="background:#B3FF99" align="center" | SAMM v2
+ | style="background:#B3FF99" align="center" | Web Site
+ | style="background:#B3FF99" align="center" | Handling Web MalWare
   |-
-| style="background:#7B8ABD" | 16:30 || colspan="5" style="background:#7B8ABD " align="center" |  Strategic Planning and Business Models compatible with OWASP values
+ | style="background:#7B8ABD" align="center" | 13:00
-Chair:  Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, and Tom Brennan
+ | colspan="5" style="background:#C2C2C2" align="center" | Lunch (During Working Sessions)
-Secretary:  Kate Hartmann and Paulo Combra
   |-
-  | style="background:#7B8ABD" | 18:30 || style="background:#7B8ABD " align="center" |  2-Way Internationalization
+  | style="width:10%; background:white" align="center"|
-Chair:  Juan Carlos Calderon and Sebastien Deleersnyder
+  | colspan="5" style="width:90%; background:white" align="center" | Training Sessions
-(Room 1)
-  | style="background:#7B8ABD " align="center" |  Best Practices for Chapter Leaders
-Chair:  Georg Hess
-(Room 2)
- | style="background:#7B8ABD " align="center" | Portuguese Public & Private Organizations
-Chair:  Carlos Serrao
-(Room 3)
- | style="background:#7B8ABD " align="center" | Live CD & DVD
-Chair:  Matt Tesauro
-(Sala Bella Vista)
-| style="background:#7B8ABD " align="center" | OWASP Awards
-Chair:  Colin Watson
-(Executive Room)
   |-
-  | style="background:#7B8ABD" | 20:00 || colspan="5" style="background:#B36B00 " align="center" | Gala Dinner - Restaurante de Real
+  | style="background:#7B8ABD" align="center" | 14:00
+ | style="background:#c0a0a0" align="center" | Ajax Security
+ | colspan="2" style="background:#c0a0a0" align="center" | Auditing Flash Applications<br>Peleus Uhley
+ | style="background:#c0a0a0" align="center" | WebApp Assessment<br>Vicente Aguilera Diaz
+ | style="background:#c0a0a0" align="center" | Mod Security<br>Lucas C. Ferreira
   |-
-  | style="background:#7B8ABD " | 22:00 || colspan="5" style="background:#B36B00 " align="center" | OWASP Band - LE CLUB
+ | style="width:10%; background:white" align="center"|
+ | colspan="5" style="width:90%; background:white" align="center" | Working Sessions
+ |-
+ | style="background:#7B8ABD" align="center" | 16:30
+ | colspan="5" style="background:#B3FF99" align="center" |  Strategic Planning and Business Models compatible with OWASP values<br>Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, Tom Brennan & Kate Hartmann and Paulo Combra
+ |-
+  | style="background:#7B8ABD" align="center" | 18:30
+ | colspan="2" style="background:#B3FF99" align="center" | 2-Way Internationalization<br>Juan Carlos Calderon & Sebastien Deleersnyder
+ | colspan="2" style="background:#B3FF99" align="center" | Best Practices for Chapter Leaders<br>Georg Hess
+ | colspan="2" style="background:#B3FF99" align="center" | Live CD & DVD<br>Matt Tesauro
+ |-
+ | style="background:#7B8ABD" align="center" | 20:00
+ | colspan="5" style="background:#C2C2C2" align="center" | Gala Dinner
+ |-
+ | style="background:#7B8ABD " align="center" | 22:00
+ | colspan="5" style="background:#C2C2C2" align="center" | OWASP Band
 |}
 {| style="width:80%" border="0" align="center"
-  | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Friday, November 7th, 2008
+  | colspan="2" align="center" style="background:#4058A0; color:white" | Agenda for Friday, November 7th, 2008
+ |-
+ | style="width:10%; background:#7B8ABD" align="center" | 10:00
+ | style="width:80%; background:#F2F2F2" align="center" | Daily Briefing<br>Dinis Cruz
+ |-
+ | style="width:10%; background:#7B8ABD" align="center" | 10:15
+ | style="width:80%; background:#F2F2F2" align="center" | OWASP AppSec Agenda 2009:  Working Session Outcomes
+ |-
+ | style="width:10%; background:#7B8ABD" |
+ | style="width:80%; background:#C2C2C2" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version<br>Eduardo Neves
+ |-
+ | style="width:10%; background:#7B8ABD" |
+ | style="width:80%; background:#C2C2C2" align="center" | Browser Security<br>Arshan Dabirsiaghi
+ |-
+ | style="width:10%; background:#7B8ABD" |
+ | style="width:80%; background:#C2C2C2" align="center" | ESAPI<br>Jeff Williams
   |-
-  | style="width:10%; background:#7B8ABD" | 10:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | OWASP AppSec Agenda 2009:  Working Session Outcomes
+  | style="width:10%; background:#7B8ABD" |
-Dinis Cruz
+ | style="width:80%; background:#C2C2C2" align="center" | Tools Projects<br>Matt Tesauro
   |-
-| style="width:10%; background:#7B8ABD" | 10:15 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Results Presentations
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | Code Review Guide<br>Eoin Keary
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version
-Chair:  Eduardo Neves
   |-
-| style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Browser Security
+  | style="width:10%; background:#7B8ABD" |
-Chair:  Arshan Dabirsiaghi
+  | style="width:80%; background:#C2C2C2" align="center" | OWASP Certification<br>Tom Brennan
-|-
-| style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | ESAPI
-Chair:  Jeff Williams
-|-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Tools Projects
-Chair:  Matt Tesauro
   |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Code Review Guide
+ | style="width:10%; background:#7B8ABD" |
-Chair:  Eoin Keary
+  | style="width:80%; background:#C2C2C2" align="center" | Software Assurance Maturity Model<br>Pravir Chandra
   |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Certification
+ | style="width:10%; background:#7B8ABD" |
-Chair:  Tom Brennan
+  | style="width:80%; background:#C2C2C2" align="center" | Top 10 2009<br>Dave Wichers
   |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Software Assurance Maturity Model
+  | style="width:10%; background:#7B8ABD" |
-Chair:  Pravir Chandra
+  | style="width:80%; background:#C2C2C2" align="center" | Intra Governmental Affairs<br>David Campbell
-|-
+ |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Top 10 2009
+ | style="width:10%; background:#7B8ABD" |
-Chair:  Dave Wichers
+  | style="width:80%; background:#C2C2C2" align="center" | Best Practices for Chapter Leaders<br>Georg Hess
-|-
+ |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Intra Governmental Affairs
+ | style="width:10%; background:#7B8ABD" align="center" | 11:15
-Chair:  David Campbell
+ | style="width:80%; background:#f2984c" align="center" | Coffee Break and Vote (put your dots on the wall)
-|-
+ |-
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Best Practices for Chapter Leaders
+ | style="width:10%; background:#7B8ABD" align="center" | 11:30
-Chair:  Georg Hess
+ | style="width:80%; background:#C2C2C2" align="center" | Live CD & DVD<br>Matt Tesauro
-|-
+ |-
-| style="width:10%; background:#7B8ABD" | 11:15 || colspan="6" style="width:80%; background:#B36B00" align="center" | Coffee Break and vote break (put your dots on the wall)
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | ADSR<br>Leonardo Cavallari
-| style="width:10%; background:#7B8ABD" | 11:30 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Live CD & DVD
+ |-
-Chair:  Matt Tesauro
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | Education Project<br>Sebastien Deleersnyder
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | ADSR
+ |-
-Chair:  Leonardo Cavallari
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | Web Application Framework Security<br>Arshan Dabirsiaghi
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Education Project
+ |-
-Chair:  Sebastien Deleersnyder
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | Testing Guide<br>Matteo Meucci
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Web Application Framework Security
+ |-
-Chair:  Arshan Dabirsiaghi
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | OWASP Censorship<br>Tom Brennan
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Testing Guide
+ |-
-Chair:  Matteo Meucci
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | EU Funding for OWASP Projects<br>Carlos Serrao
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Censorship
+ |-
-Chair:  Tom Brennan
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | OWASP Website<br>Fabio Cerullo
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | EU Funding for OWASP Projects
+  |-
-Chair:  Carlos Serrao
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | OWASP Orizon<br>Paolo Perego
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Website
+ |-
-Chair:  Fabio Cerull
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | Handling Web MalWare
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Orizon
+ |-
-Chair:  Paolo Perego
+ | style="width:10%; background:#7B8ABD" |
-|-
+  | style="width:80%; background:#C2C2C2" align="center" | 2-Way Internationalization<br>Juan Carlos Calderon
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Handling Web MalWare
+ |-
-|-
+ | style="width:10%; background:#7B8ABD" |
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | 2-Way Internationalization
+  | style="width:80%; background:#C2C2C2" align="center" | Portuguese Public & Private Organizations<br>Carlos Serrao
-Chair:  Juan Carlos Calderon
+ |-
-|-
+ | style="width:10%; background:#7B8ABD" align="center" |
-| style="width:10%; background:#7B8ABD" |  || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Portuguese Public & Private Organizations
+ | style="width:80%; background:#C2C2C2" align="center" | Winter of Code 2009<br>Dinis Cruz and Sebastien Deleersnyder
-Chair:  Carlos Serrao
+  |-
-|-
+ | style="width:10%; background:#7B8ABD" align="center" | 13:00
-| style="width:10%; background:#7B8ABD" | 12:45 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Winter of Code 2009
+ | style="width:80%; background:#F2F2F2" align="center" | Lunch
-Chair:  Dinis Cruz and Sebastien Deleersnyder
+ |-
-Secretary:  Paulo Combra
+ | style="width:10%; background:#7B8ABD" align="center"| 14:00
-|-
+ | style="width:80%; background:#f2984c" align="center" | Board Meeting
-| style="width:10%; background:#7B8ABD" | 13:00 || colspan="6" style="width:80%; background:#B36B00" align="center" | Lunch - During Winter of Code
+ |-
-|-
+ | style="width:10%; background:#7B8ABD" align="center" | 17:00
-| style="width:10%; background:#7B8ABD" | 14:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Board Meeting
+ | style="width:80%; background:#f2984c" align="center" | Announcement of Summit Procedings
-|-
+ |}
-| style="width:10%; background:#7B8ABD" | 17:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Announcement of Summit Procedings
-|}
 ==VENUE & TRAVEL ARRANGEMENTS==