This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
AppSec Europe 2006/Agenda
From OWASP
Revision as of 12:36, 30 May 2006 by Esheridan (talk | contribs) (→OWASP Europe 2006 Conference Schedule)
OWASP Training Courses
The tutorials and the conference itself will be held at KU in the College De Valk. The specific rooms are specified below.
T1. Foundations of Web Application Security - One Day Course - May 29th, 2006 |
---|
This powerful one day course focuses on the most common web application security problems, including the OWASP Top Ten. The course will introduce and demonstrate hacking techniques, illustrating how application vulnerabilities can be exploited so students really understand how to avoid introducing such vulnerabilities into their code. Read more here! This class will be held in room DV3 01.08 |
T2. WebServices and XML Security - One Day Course - May 29th, 2006 |
Many enterprises are currently developing new Web Services and/or adding and acquiring Web Services functionality into existing applications -- now is the time to build security into the system! Read more here! This class will be held in room DV3 01.10 |
OWASP Europe 2006 Conference Schedule
Day 1 - May 30, 2006 | ||
---|---|---|
Track 1: Auditorium Zeger Van Hee (Room DV1 91.56) | Track 2: Auditorium 2 (Room DV1 91.54) | |
08:00 - 09:00 | Registration and Coffee | |
09:00 - 09:10 | Welcome to AppSec Europe 2006: Dave Wichers, OWASP Conferences Chair | |
09:10 - 10:00 | Keynote: OWASP 2.0 - A new vision for OWASP: Enabling organizations to develop, maintain, and acquire applications they can trust - Andrew Van Der Stock, Security Engineer - NAB and OWASP Guide Project Lead | |
10:00 - 11:10 | Panel: "Should companies be emulating Microsoft’s Security Development Lifecycle (SDL)?”
Moderator: Johan Peeters, Program Director secappdev.org Panelists: Dinis Cruz, Andrew Van Der Stock, Pravir Chandra - Chief Security Architect - Secure Software, Alex Lucas - Security Engineer - Microsoft | |
11:10 - 11:30 | Break | |
11:30 - 12:30 | OWASP Process Project – Pravir Chandra, Chief Security Architect, Secure Software | Can (Automated) Testing Tools Really Find the OWASP Top 10?, Erwin Geirnaert, Partner ZION Security |
12:30 - 13:45 | Lunch | |
13:45 - 15:00 | Bootstrapping a Software Security Assurance Process – Sebastien Deleersnyder, OWASP Belgium Chapter Lead | AJAX Security – Andrew Van Der Stock, Security Engineer - NAB and OWASP Guide Project Lead |
15:00 - 15:20 | Break | |
15:20-16:30 | From Theory to Reality: Seven Practical Steps to Delivering More Secure Software – Roger Thornton, CTO Fortify | HTTP Message Splitting, Smuggling and Other Animals [1]- Amit Klein, Internationally Recognized Web Application Security Researcher and OWASP Israel Chapter Leader |
16:30-16:50 | Break | |
16:50 - 18:00 | Panel: "The role of Sandboxing in creating secure .Net and Java applications.”
Organizer: Dinis Cruz Panelists: Stephen de Vries - Corsaire, Roger Thornton - CTO Fortify | |
18:00 - 19:00 | Walking Tour of Leuven on the way to the Faculty Club | |
18:40 - 19:20 | Chapter Leads Meeting at the Faculty Club: Led by Sebastien Deleersnyder | |
19:00 - 21:00 | Social Gathering: Dinner and Drinks at the Faculty Club | |
Day 2 - October 12, 2005 | ||
08:00 - 09:00 | Coffee | |
09:00 - 09:50 | Keynote Day 2: Ira Winkler - Secrets of Superspies | |
09:50 - 10:50 | Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets | |
10:50 - 11:10 | Break | |
11:10 - 12:30 | Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 (ppt) and OWASP Membership Plan (ppt) (video both) | Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities |
12:30 - 13:45 | Lunch | |
13:45 - 15:00 | Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project | Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications |
15:00 - 15:20 | Break | |
15:20 - 16:30 | Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program (ppt / video) | Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab (ppt / video) |
16:30 - 16:50 | Break | |
15:20 - 16:30 | John Steven - Cigital - Building a Scalable Software Security Practice within your Organization | Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications (ppt / video) |