This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Summit 2011"

From OWASP
Jump to: navigation, search
Line 198: Line 198:
 
|-
 
|-
 
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 0900 - 1000 <br>  
 
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 0900 - 1000 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" | Registration, Meet &amp; Greet<br>
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Registration, Meet &amp; Greet<br>
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1100 - 1200<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1100 - 1200 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
 
Board Welcome &amp; Kickoff  
 
Board Welcome &amp; Kickoff  
 +
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1200 - 1300<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1100 - 1200 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
 
Lunch  
 
Lunch  
 +
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1300 - 1320<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1300 - 1320 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Projects
+
Projects  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1330 - 1350<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1330 - 1350 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
 
Industry  
 
Industry  
 +
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1400 - 1420<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1400 - 1420<br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Membership
+
Membership  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1430 - 1450<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1430 - 1450<br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Connections
+
Connections  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1500 - 1520<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1500 - 1520 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Break
+
Coffee Break  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1530 - 1450<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1530 - 1450 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Chapters
+
Chapters  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1600 - 1620<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1600 - 1620 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Education
+
Education  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1630 - 1730<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1630 - 1730 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
TBD
+
TBD  
 +
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1730 - 1800<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1730 - 1800 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
Wrap up of the Day
+
Wrap up of the Day <br>  
|-
+
 
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1900 - 2100<br>  
 
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |
 
Dinner
 
 
|-
 
|-
align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2100 - 0000<br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1900 - 2100 <br>  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Dinner <br>
Evening Event TBD
 
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1200 - 1300
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2100 - 0000 <br>
| align="center" style="width: 22.5%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Lunch
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" |  
| align="center" style="width: 22.5%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
+
Evening Event TBD<br>  
| align="center" style="width: 22.5%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
+
 
| align="center" style="width: 22.5%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |
+
<br>  
 +
 
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 15:00 - 17:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Securing WebGoat with ModSecurity<br>Stephen Craig Evans
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 15:00 - 17:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Securing WebGoat with ModSecurity<br>Stephen Craig Evans
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>  
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>
 
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | <br>
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 19:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(242, 242, 242);" colspan="4" | Summit Briefing<br>Dinis Cruz and Summit Organization Team
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(242, 242, 242);" colspan="4" |  
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 20:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" | Dinner
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" |  
 
|}
 
|}
  
Line 279: Line 286:
 
{| border="0" align="center" style="width: 80%;"
 
{| border="0" align="center" style="width: 80%;"
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="5" | Agenda for Tuesday, November 4th, 2008
+
| align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="5" | Agenda for Wednesday, February 9th, 2011
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 08:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" | Registration
+
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Working Sessions
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 09:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 0900 - 1100
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(242, 242, 242);" colspan="4" | Summit Keynote<br>Dinis Cruz and Summit Organization Team
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Browser Working Group
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Projects - Assesment Criteria &amp; Orphaned Projects<br>
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1100 - 1300
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | '''Documents'''
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Browser Working Group
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | '''Tools'''
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 09:30
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1300 - 1400
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | [[:Category:OWASP Testing Project|'''OWASP Testing Guide - SoC 08''']]<br>[http://www.owasp.org/images/2/2c/OWASP_EU_Summit_2008_OWASP_Testing_Guide_v3.ppt PowerPoint Presentation]<br>Matteo Meucci
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Lunch
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | [[:Category:OWASP JSP Testing Tool Project|'''OWASP JSP Testing Tool - SoC 08''']]<br>Jason Li
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Lunch<br>  
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Lunch<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 09:45
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1330 - 1530
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | [[:Category:OWASP Code Review Project|'''OWASP Code Review Project - SoC 08''']]<br>[https://www.owasp.org/images/5/59/Code_Review_Eoin.pptx PowerPoint Presentation]<br>Eoin Keary
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Browser Working Group
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | [[:Category:OWASP Orizon Project|'''OWASP Orizon Project - SoC 08''']]<br>[https://www.owasp.org/images/9/9b/OWASP_EU_Summit_2008_The_Owasp_Orizon_Project.ppt PowerPoint Presentation]<br>Paolo Perego
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Projects - Funding, Marketing, &amp; Commerical Services<br>  
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1530 - 1400
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | [[:Category:OWASP ASDR Project|'''OWASP Application Security Desk Reference - SoC 08''']]<br>Leonardo Cavallari Militelli
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Coffee Break
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | [[:Category:OWASP Live CD 2008 Project|'''OWASP Live CD - SoC 08''']]<br>Matt Tesauro
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Coffee Break<br>  
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Coffee Break<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:15
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1400 - 1900
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | [[:OWASP Spanish|'''OWASP Spanish Project - SoC 08''']]<br>Juan Carlos Calderon
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Browser Working Group
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | [[:Category:OWASP WebScarab Project|'''OWASP WebScarab Project''']]<br>[https://www.owasp.org/images/8/88/OWASP_EU_Summit_2008_WebScarab_treasures.ppt PowerPoint Presentation]<br>Rogan Dawes
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>  
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:30
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1900 - 2100
| align="center" style="background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="5" | Coffee Break
+
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Dinner
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:45
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2100 - 0000
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | .NET ESAPI<br>Alex Smolen
+
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Evening Event TBD
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | <br>
 
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 11:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(242, 242, 242);" colspan="4" | Working Sessions Briefing<br>Dinis Cruz
+
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | '''Documents'''
 +
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | '''Tools'''
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% white;" | <br>
+
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 90%; background: none repeat scroll 0% 0% white;" colspan="4" | Working Sessions
+
| align="center" style="background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" |  
|}
+
| align="center" style="background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" |
 
 
{| border="0" align="center" style="width: 80%;"
 
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% white;" colspan="5" | <br>
+
| align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="5" | Agenda for Thursday, February 10th, 2010
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 11:15 - 13:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" |  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(179, 255, 153);" | [[:OWASP Working Session - OWASP Documentation Projects|'''Documentation Projects/Guides Integration and Unified 4.0 Version''']]<br>[https://www.owasp.org/images/9/92/Final_OWASP_Guidelines_Ideas_List_.docx WS Conclusions]<br>Eduardo Neves
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Main Room
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(179, 255, 153);" | [[:OWASP Working Session - Browser Security|'''OWASP Intrinsic Security Working Group - Browser Security''']]<br>Arshan Dabirsiaghi
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Working Sessions<br>  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(179, 255, 153);" | [[:OWASP Working Session - OWASP Tools Projects|'''Tools Projects''']]<br>[https://www.owasp.org/images/5/51/EUSummit08_OWASP_Tools_Working_Session_Suggestions.doc WS Conclusions]<br>Matt Tesauro
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Working Sessions<br>
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 13:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 0900 - 1100
| align="center" style="background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" | Lunch
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | XSS - Frameworks
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% white;" | <br>
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1100 - 1300
| align="center" style="width: 90%; background: none repeat scroll 0% 0% white;" colspan="4" | Training Sessions
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | XSS- Awarness, Resources &amp; Partnerships
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | TBD
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 14:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1300- 1330
| align="center" style="background: none repeat scroll 0% 0% rgb(192, 160, 160);" | '''The Art and Science of Threat Modeling Web Applications'''<br>[http://uk.youtube.com/watch?v=r04EOuukvMQ Video]<br>Mano Paul
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Lunch
| align="center" style="background: none repeat scroll 0% 0% rgb(192, 160, 160);" | '''Web Server Hardening SELinux'''<br>[https://www.owasp.org/images/d/db/SELinux-course-OWASP.pdf PDF Presentation]<br>Pavol Luptak
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |  
| align="center" style="background: none repeat scroll 0% 0% rgb(192, 160, 160);" | '''Offensive WebApp Hacking'''<br>[http://www.youtube.com/watch?v=cl6BHhi2Dys Video - LDAP, XML and SQL injection]<br>[http://www.carlosserrao.net/files/owasp/owaspdemo02.swf Video - LDAP injection demo]<br>[http://www.carlosserrao.net/files/owasp/owaspdemo04.swf XML injection demo]<br>[http://www.carlosserrao.net/files/owasp/owaspdemo03.swf Video - SQL injection demo ]<br>Marco Slaviero
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |  
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 15:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1330 - 1415
| align="center" style="background: none repeat scroll 0% 0% rgb(192, 160, 160);" | '''Phishing attack'''<br>[http://www.youtube.com/watch?v=uf9hw-qvx-I Video]<br>Matt Teasuro &amp; Brad Causey
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Projects
| align="center" style="background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="2" | '''Clickjacking'''<br>[http://www.youtube.com/watch?v=H9srYh0HMP4 Video]<br>[http://www.carlosserrao.net/files/owasp/owaspdemo01.swf Demonstration]<br>Arshan Dabirsiaghi
+
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |
 +
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" |
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 16:00
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1415 - 1530
| align="center" style="background: none repeat scroll 0% 0% rgb(194, 194, 194);" colspan="4" | Coffee Break
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Memberships
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% white;" | <br>
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1530 - 1600
| align="center" style="width: 90%; background: none repeat scroll 0% 0% white;" colspan="4" | Working Sessions
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Coffee Break
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 16:30
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1600 - 1645
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(179, 255, 153);" colspan="4" | [[:OWASP Working Session Enterprise Security API Project|'''OWASP Enterprise Security API Project (ESAPI)''']]<br>[http://uk.youtube.com/watch?v=-D_bymZ-8vI Video]<br>[https://www.owasp.org/images/7/70/ESAPI_Ideas_List.docx WS Conclusions]<br>Jeff Williams
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Chapters
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 18:30
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1645- 1730
| align="center" style="background: none repeat scroll 0% 0% rgb(179, 255, 153);" colspan="2" | [[:OWASP Working Session - OWASP ASDR|'''OWASP Application Security Desk Reference - ASDR''']]<br>Leonardo Cavallari
+
| align="center" style="width: 90%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" | Connections
| align="center" style="background: none repeat scroll 0% 0% rgb(179, 255, 153);" | [[:OWASP Working Session - .NET Project|'''.NET Project''']]<br>Dinis Cruz
 
|}
 
 
 
<br>
 
 
 
{| border="0" align="center" style="width: 80%;"
 
 
|-
 
|-
| align="center" style="background: none repeat scroll 0% 0% rgb(64, 88, 160); color: white;" colspan="5" | Agenda for Wednesday, November 5th, 2008
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 1900 - 2100
 +
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Dinner
 
|-
 
|-
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 09:15
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 2100 - 0000
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(242, 242, 242);" colspan="4" | Daily Briefing<br>Dinis Cruz
+
| align="center" style="width: 80%; background: none repeat scroll 0% 0% rgb(192, 160, 160);" colspan="4" | Evening Event TBD
 
|-
 
|-
| style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>  
+
| align="center" style="width: 10%; background: none repeat scroll 0% 0% rgb(123, 138, 189);" | <br>  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | '''Standards and Education'''  
+
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(255, 223, 128);" colspan="2" | '''Documents'''  
| align="center" style="width: 30%; background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | '''Tools'''
+
| align="center" style="width: 45%; background: none repeat scroll 0% 0% rgb(160, 192, 224);" colspan="2" | '''Tools'''
 
|-
 
|-
 
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:00  
 
| align="center" style="background: none repeat scroll 0% 0% rgb(123, 138, 189);" | 10:00  

Revision as of 03:36, 15 November 2010


Welcome

OWASPGlobalSummitLogo-3THISONEHASTHEMOSTVOTESSOFAR.jpg

Dear OWASP Leaders and appsec community,


The Summit will be held February 8th-11th in (Cascais) Lisbon, Portugal. This will be the place where appsec experts meet, discuss, work, socialize, and set the roadmap for OWASP in coming years.

The Summit Activates *You*

Whereas the OWASP AppSec conferences are great places to listen to interesting talks, go for training, and meet with OWASP people, the Global Summit is the place where we all sit down together and take the time to discuss and work out plans, projects and solutions for the appsec future.

Examples of topics:

  • How should we support the OWASP projects?
  • How can we work with browser vendors to enhance security (see "Browser Day" tab above)?
  • How should the community reach out to developers and education institutions?
  • How often should we publish the OWASP Top 10?
  • How can OWASP support your chapter?

Organizing Committee

Lorna Alamri, Brad Causey, Justin Clarke, Paulo Coimbra, Dinis Cruz, Martin Knobloch, Dave Wichers, John Wilander, Jason Li, Tara Causey, Sarah Baso .

Who's Invited?

As an OWASP leader you are automatically invited to the summit, but we also welcome leading experts from industry and academia. Together we can create a more secure web. Check the "How Do I Join?" tab above for more info.


Operational guidelines

Following the first meeting of the Summit 2011 Organizational team, here are the current proposed operational guidelines:

  1. the summit is an annual event
  2. outside OWASP conference
  3. the summit should take place in January not later then begin of February
  4. the summit takes 3 to 4 days
  5. budget aim is US$ 150'000 US$ where 50'000 from OWASP and US$100'000 from sponsors
  6. attendees targets are:
    1. OWASP Funded:
      1. Board
      2. Committee Members
    2. Chapter / sponsor Funded:
      1. Chapter Leaders
    3. Project Leaders
  7. venue / location criteria (no decision on the venue)
    1. 1 key organizer in close contact with the venue
    2. hosting 30 to 100 people
    3. US$2'000 a head (flight/accommodation/food/beers)
    4. conference facilities
      1. multiple meeting rooms
      2. one big meeting room e.g. auditorium
      3. hotel with the conference facilities or conference venue within walking distance
      4. apartments if possible (to share apartments/rooms and save money)
      5. 4 to 5 star hotel
      6. local food supplier for apartment crashing
      7. has to be negotiated with the hotel
      8. max 50 km's form international airport
      9. sufficient Internet access!

Success factors (what indicates the summit as success)

  1. break even
  2. the summits are the place to go to discus about and working on Web Application Security
  3. review of the past year
  4. working sessions on committees, projects and industry sectors (e.g. browsers and frameworks)
    1. universities / education sessions
    2. committee member election
    3. board election
    4. strategic OWASP issues
    5. road map and action plans for the next 12 month

Other local Summit(s):

  • The conferences are free to organize small, conference bound summit
  • this are not sponsored by OWASP of OWASP summit budget


Agenda (draft)

Browser Day

One of the great challenges of application security is browser security. The browser is becoming our de facto runtime platform for applications and it comprises a whole ecosystem of plugins and web technologies.Therefore we will spend a full day working together with the leading browser vendors to penetrate current problems, new ideas, and how security fits in alongside other requirements from developers and endusers.Do not miss this chance to influence what's important in browser security in the coming years.

  • Sandboxing. Is sandboxing the right way forward? Can sandboxing be harmonized with the origin policies for cookies, scripting, and ajax – i e share the same compartmentalization? How should we apply sandboxing to plugins?
  • Securing plugins. Should browsers ship with default plugins? Should plugins be auto-updated? Can plugins or versions of plugins be blacklisted centrally?
  • Enduser warnings. How should browsers signal invalid SSL certs to the enduser? Are we helping security right now? What to do about 50 % of users clicking through warnings?
  • Blacklisting. Can we cooperate better on blacklisting? Does it work between cultures, i e can we have the same process for reporting throughout the world?
  • OS integration. More and more features in browsers get integrated with the underlying operating system. Processes, fonts, filesystem, 3D graphics. How do we secure this?
  • JavaScript. How do we secure the universally deployed web application language? Much focus has been on execution performance but what about security? Will EcmaScript 5 strict-mode be supported anytime soon (currently no support)? Are (more) secure "dialects" such as FBJS and Caja the way to go? What's happening in EcmaScript Harmony?
  • New HTTP headers. Are new opt-in HTTP headers the right way to add security features? For example Strict Transport Security, x-frame-options, origin and Content Security Policy.

XSS Eradication

We will have a half day working session on Cross Site Scripting - specifically how OWASP can make 2011 the year of XSS... going away. How we help bring this about through contributing our knowledge to cornerstone projects, how we can raise the awareness through advocacy, and what we can do to ensure that OWASP and other freely available resources and made available to the wider community, and that they are aware of them.

Enterprise Web Defense Roundtable

How are enterprises defending web applications. Discussion of best practices, effective methods, and new ideas to enhance web application defense. (Session Leader: Michael Coates, Mozilla)

University Outreach

This summit will be the place to bring OWASP Educational Supporters together! What security major and minor educations are out there? How can OWASP participate and influence their curricula? How can the relationship between Universities and OWASP be standardized? What does OWASP have to offer Universities and what can they, in turn, expect from each other?

OWASP Projects

We will have a session on how OWASP should support, grow, and manage projects. This includes:
-Assessment criteria
-Orphaned projects
-Funding
-Marketing
-Commercial services


OWASP Around the World

OWASP is a fast growing global community. How should we support and manage this growth? During this session we'll look into issues of:

More Topics

You know how OWASP works – it's all up to you. Please edit this tab and enter topics we should cover during the Global Summit 2011! If you want you can add your name after each suggestion and we can work out the details with you.

  • Discussion on Douglas Crockford's bold statement that we should stop HTML5 development, fix XSS, and then start over. Is he right? How is OWASP active in the HTML5 development? Check this webcast, jump to 20:50 to hear the XSS part. /John Wilander
  • [Your topic here]

How Do I Join? / Mailing list

As an OWASP leader you are automatically invited to the summit.

The first thing to do is to join the Summit 2011 mailing list.

On the mailing list you'll get first hand information on how to register, exact dates, updates to the agenda, funding for your trip etc.

If you are a leading appsec expert from industry or academia but not yet an OWASP leader you can just contact John.Wilander at owasp.org and we'll try to get you in.

Social Events

It goes without saying – the summit is all about meeting people. So there will be a constant mixture of workshops, dinners, beers and wine. We like to think of the summit as a very social event in itself.

Venue

A Day in Lisbon, Portugal:

Cascais2.jpg

Click this link to see all the City of Lisbon has to offer, which is only a short train ride from the resort.
http://www.golisbon.com/portugal/cities/cascais.html
or
http://www.travel-in-portugal.com/Cascais/
Lisbon - Spreading out along the right bank of the Tagus, its downtown, the Baixa, is located in the 18th-century area around Rossio. East of the arcade Praça do Comércio, are the medieval quarters of Alfama and Mouraria, crowned by the magnificent St. George's Castle. To the west lie Bairro Alto and Madragoa, with their typical streets, and on the western extreme is Belém, with its Belém Tower, (the sentinel over the Tagus river that protects the entrance into Lisbon), the Jerónimos Monastery (masterpieces of Manueline architecture and classified in UNESCO's International Heritage list) and the Cultural Center of Belém.
Museums:
Ancient Art, Chiado (Contemporary Art), Tile, Archaeology, Ethnology, Coach, Costume, Theater, Maritime, Military, City, Gulbenkian, Modern Art Center, and the Ricardo Espirito Santo Silva Foundation. Palaces open to the public: Ajuda and Fronteira. Churches: Cathedral (with Treasury); São Vicente de Fora; Conceição Velha (Manueline), São Roque and Sacred Art; Madre Deus; Santa Engrácia Pantheon (Baroque), and the Estrela Basilica.
Shopping: Downtown; Avenida de Roma, Praça de Londres, Avenida Guerra Junqueiro, and Amoreiras.
Nightlife: Bairro Alto and Avenida 24 de Julho.
Guided Tours


Sponsoring

We will welcome a few sponsors of this very special event, typically organization that participate in the summit. If you are interested in supporting the global summit, please contact Lorna.Alamri at owasp.org.


Attendees that qualify to be sponsored by OWASP
Some leaders that are active within OWASP may qualify to have all or partial transportation and lodging paid for by OWASP.
To be considered for qualification, you must meet one or more of the following criteria:

  1. Member of the OWASP Board
  2. Active member of a Global Committee (as determined by the OWASP Board)
  3. Operational personnel that are necessary for the operation of the Summit

Current sponsorship budget is $50,000 for the Summit.

If you feel you might qualify, please contact Brad Causey or Jason Li. If you do not meet these criteria, and still feel that you should be sponsored, please contact Brad Causey @ or Jason Li @


Applying for Chapter or Project Sponsorship

Application for OWASP Chapter or Project Funding

WorkflowProcesstoApplyforChapterorProjectFunding.png


Confirmed Summit Attendees

Dinis Cruz (Board)
Tom Brennan (Board)
Eoin Keary (Board)
Jeff Williams (Board)
Seba Deleersnyder (Board)
Dave Wichers (Board)
Matt Tesauro (Board)
Paulo Coimbra (OWASP)
Alison Shrader (OWASP)
Kate Hartmann (OWASP)
Larry Casey (OWASP)


Letters and Summit Materials

Summit 2011 Presentation for AppSec DC
Application for OWASP Chapter or Project Funding

Template Letter - 2011 Global Summit Basic Invitation
Template Letter - 2011 Global Summit University Outreach Invitation
Template Letter - 2011 Global Summit Government Invitation
Template Letter - 2011 Global Summit Request for Employer Funding and Sponsorship
Template Letter - 2011 Global Summit Request for Employer Funding, Version 2

Schedule (Draft)

Agenda for Tuesday, February the 8th, 2011
0900 - 1000
Registration, Meet & Greet
1100 - 1200

Board Welcome & Kickoff

1100 - 1200

Lunch

1300 - 1320

Projects

1330 - 1350

Industry

1400 - 1420

Membership

1430 - 1450

Connections

1500 - 1520

Coffee Break

1530 - 1450

Chapters

1600 - 1620

Education

1630 - 1730

TBD

1730 - 1800

Wrap up of the Day

1900 - 2100
Dinner
2100 - 0000

Evening Event TBD







Agenda for Wednesday, February 9th, 2011
Working Sessions
0900 - 1100 Browser Working Group Projects - Assesment Criteria & Orphaned Projects
TBD
1100 - 1300 Browser Working Group TBD
TBD
1300 - 1400 Lunch Lunch
Lunch
1330 - 1530 Browser Working Group Projects - Funding, Marketing, & Commerical Services
TBD
1530 - 1400 Coffee Break Coffee Break
Coffee Break
1400 - 1900 Browser Working Group TBD
TBD
1900 - 2100 Dinner
2100 - 0000 Evening Event TBD

Documents Tools
Agenda for Thursday, February 10th, 2010
Main Room Working Sessions
Working Sessions
0900 - 1100 XSS - Frameworks TBD
1100 - 1300 XSS- Awarness, Resources & Partnerships TBD
1300- 1330 Lunch
1330 - 1415 Projects
1415 - 1530 Memberships
1530 - 1600 Coffee Break
1600 - 1645 Chapters
1645- 1730 Connections
1900 - 2100 Dinner
2100 - 0000 Evening Event TBD

Documents Tools
10:00 OWASP Positive Security Project - SoC 08
Eduardo Neves
OWASP Access Control Rules Tester - SoC 08
PowerPoint Presentation
Andrew Petukhov
10:15 OWASP Education Project - SoC 08
Sebastien Deleersnyder, Martin Knobloch
OWASP Teachable Static Analysis Workbench - SoC 08
PowerPoint Presentation
Dmitry Kozlov
10:30 OWASP Internationalization Project - Soc 08
Juan Carlos Calderon
OWASP AppSensor - SoC 08
PowerPoint Presentation
Michael Coates
10:45 PASSWD Project: Metrics and Vulnerabilities
PowerPoint Presentation
Lucilla Mancini
OWASP Backend Security Project - SoC 08
PowerPoint Prsentation
Carlo Pelliccioni
11:00 OWASP Open Review Project
Dan Cornell
OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project - SoC 08
PowerPoint Presentation
Dmitry Kozlov
11:15 OWASP Global Committee Elections
11:30 Coffee Break

Working Sessions
12:45 Education Project
WS Conclusions
Sebastien Deleersnyder
Testing Guide
Matteo Meucci
Web Application Framework Security
Arshan Dabirsiaghi
14:45 Lunch (During Working Sessions)

Training Sessions
15:00 Flash Player Security
Peleus Uhley
OWASP Top 10
Video
Sebastien Deleersnyder and Martin Knobloch
Uncovering WebScarab's Secret Treasures
PowerPoint Presentation
Rogan Dawes
Hacking the Orizon
PowerPoint Presentation Training Sessions
Paolo Perego
17:00 Coffee Break

Working Sessions
17:30 Code Review Guide
Eoin Keary
EU Funding for OWASP Projects
Carlos Serrao
OWASP Certification
Tom Brennan
Software Assurance Maturity Model
Pravir Chandra
19:00 OWASP Website
WS Conclusions
PPT Presentation
Fabio Cerullo
Metrics & Vulnerabilities
Word Presentation
Lucilla Mancini
OWASP Orizon
Paolo Perego


Agenda for Thursday, November 6th, 2008
09:15 Daily Briefing
Dinis Cruz

Technology Tools
10:00 OWASP Classic ASP Security Project - SoC 08
Juan Carlos Calderon
OWASP Source Code Review - SoC 08
PowerPoint Presentation
James Walden
10:15 OWASP Ruby on Rails Security Project - SoC 08
PDF Presentation
Heiko Webers
OWASP OpenPGP Extensions for HTTP - Enigform and mod openpgp - SoC 08
Arturo Alberto Busleiman
10:30 OWASP Webslayer Project
Christian Martorella
OWASP Securing WebGoat using ModSecurity Project - SoC 08
Stephen Evans and Christian Folini
11:00 OWASP Skavenger Project - SoC 08
Matthias Rohr
OWASP AntiSamy Project - SoC 08
Marcin Wielgoszewski
11:15 Coffee Break

Working Sessions
11:30 OWASP Top 10 - 2009
Dave Wichers
OWASP Intra Governmental Affairs
David Campbell
SAMM v2 OWASP Website
Fabio Cerullo
Handling Web MalWare
13:00 Lunch (During Working Sessions)

Training Sessions
14:00 Ajax Security Auditing Flash Applications
Peleus Uhley
WebApp Assessment
Vicente Aguilera Diaz
Mod Security
Lucas C. Ferreira

Working Sessions
16:30 OWASP Strategic Planning and Business Models compatible with OWASP values
Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, Tom Brennan & Kate Hartmann and Paulo Combra
18:30 Two-way Internationalization of OWASP Content
Juan Carlos Calderon & Sebastien Deleersnyder
OWASP Best Practices for Chapter Leaders
WS Conclusions
Georg Hess
OWASP Live CD & DVD
Matt Tesauro
20:00 Gala Dinner
22:00 OWASP Band


Agenda for Friday, November 7th, 2008
10:00 Daily Briefing
Dinis Cruz
10:15 OWASP AppSec Agenda 2009: Working Session Outcomes

Documentation Projects/Guides Integration and Unified 4.0 Version
Eduardo Neves

Browser Security
Arshan Dabirsiaghi

ESAPI
Jeff Williams

Tools Projects
Matt Tesauro

Code Review Guide
Eoin Keary

OWASP Certification
Tom Brennan

Software Assurance Maturity Model
Pravir Chandra

Top 10 2009
Dave Wichers

Intra Governmental Affairs
David Campbell

Best Practices for Chapter Leaders
Georg Hess
11:15 Coffee Break and Vote (put your dots on the wall)
11:30 Live CD & DVD
Matt Tesauro

ADSR
Leonardo Cavallari

Education Project
Sebastien Deleersnyder

Web Application Framework Security
Arshan Dabirsiaghi

Testing Guide
Matteo Meucci

OWASP Censorship
Tom Brennan

EU Funding for OWASP Projects
Carlos Serrao

OWASP Website
Fabio Cerullo

OWASP Orizon
Paolo Perego

Handling Web MalWare

2-Way Internationalization
Juan Carlos Calderon

Portuguese Public & Private Organizations
Carlos Serrao

Winter of Code 2009
Dinis Cruz and Sebastien Deleersnyder
13:00 Lunch
14:00 Board Meeting
17:00 Announcement of Summit Procedings