This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Norway"
(→Medlemsmøte: 18. Oktober, kl 17:00) |
(→Medlemsmøter 2012) |
||
| Line 21: | Line 21: | ||
=== Neste møte === | === Neste møte === | ||
| + | |||
| + | ==== Medlemsmøte: 7. Februar, kl 17:00 ==== | ||
| + | '''Ansvarlig:''' Erlend Oftedal , | ||
| + | '''Påmelding/lokasjon/agenda:''' [[http://www.meetup.com/OWASP-Norway/events/98525562/ Påmelding på meetup.com]] | ||
| + | '''Tema:''' Crossing Domains by Crossing Origins | ||
| + | |||
| + | |||
| + | |||
| + | === Tidligere møter === | ||
==== Medlemsmøte: 18. Oktober, kl 17:00 ==== | ==== Medlemsmøte: 18. Oktober, kl 17:00 ==== | ||
| Line 27: | Line 36: | ||
'''Tema:''' Sikkerhet i det norske eValg-systemet | '''Tema:''' Sikkerhet i det norske eValg-systemet | ||
| − | |||
==== Medlemsmøte: 24. april, kl 19:30 ==== | ==== Medlemsmøte: 24. april, kl 19:30 ==== | ||
Revision as of 13:34, 16 January 2013
Welcome to the OWASP Norway Local Chapter
Welcome to the local Norway chapter homepage. The chapter leader is Erlend Oftedal. <paypal>Norway</paypal>
Se hvem som sitter i Norway Chapter styret og les Norway Chapter vedtekter. OWASP Norway Chapter er registrert i Bønnøysund med organisasjonsnummer 994 253 085.
Participation
OWASP chapter meetings are free and open to anyone interested in application security. We encourage members to give presentations on specific topics and to contribute to the local chapter by sharing their knowledge with others. Prior to participating with OWASP please review the Chapter Rules.
To join the chapter mailing list, please visit our mailing list homepage. The list is used to discuss the meetings and to arrange meeting locations. You can also review the email archives to see what folks have been talking about. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.
Medlemsmøter 2012
OWASP Norway - Hall of fame
Forslagskasse for tema
Hvis du ikke er på e-postlista så meld deg på!
Neste møte
Medlemsmøte: 7. Februar, kl 17:00
Ansvarlig: Erlend Oftedal , Påmelding/lokasjon/agenda: [Påmelding på meetup.com] Tema: Crossing Domains by Crossing Origins
Tidligere møter
Medlemsmøte: 18. Oktober, kl 17:00
Ansvarlig: Erlend Oftedal , Påmelding/lokasjon/agenda: [Påmelding på meetup.com] Tema: Sikkerhet i det norske eValg-systemet
Medlemsmøte: 24. april, kl 19:30
Ansvarlig: Erlend Oftedal , Sponsor: -, Adresse: Mesh Norway, Tordenskiolds gate 3, Påmelding: klikk her
Tema denne gang er sikkerhet i mobile applikasjoner. Det blir først en introduksjon, deretter kommer Martin Knobloch fra OWASP Nederland for å snakke om iGoat og GoatDroid, for så å dele erfaringer fra en code review.
Slides:
OWASP Mobile Top 10 - Ståle Pettersen
OWASP Mobile - Martin Knobloch
Medlemsmøte: 19. mars, kl 17:00
Ansvarlig: Erlend Oftedal , Sponsor: F5, Adresse: The Dubliner, Påmelding: klikk her
| "Web Application Access Control Design Excellence", Jim Manico Access Control is a necessary security control at almost every layer within a web application. This talk will discuss several of the key access control anti-patterns commonly found during website security audits. These access control anti-patterns include hard-coded security policies, lack of horizontal access control, and "fail open" access control mechanisms. In reviewing these and other access control problems, we will discuss and design a positive access control mechanism that is data contextual, activity based, configurable, flexible, and deny-by-default - among other positive design attributes that make up a robust web-based access-control mechanism. |
