This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
San Antonio
OWASP San Antonio
Welcome to the San Antonio chapter homepage. The chapter leader is Dan Cornell
Participation
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Sponsorship/Membership
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
Local News
San Antonio OWASP Chapter: September 2006 Meeting
Topic: Agile and Secure: Can We Be Both?
Date: 9/27/2006, 11:30am – 1:00pm
Location:
San Antonio Technology Center (Web Room)
3463 Magic Drive
San Antonio, TX 78229
http://maps.google.com/maps?f=q&hl=en&q=3463+Magic+Drive,+San+Antonio,+TX+78229
Abstract: Software development organizations find themselves being pulled in two directions. Agile software development methodologies such as eXtreme Programming and Scrum have allowed organizations to be more responsive to business concerns by involving the customer, increasing the pace of stable releases and decreasing the time required before new features are deployed. In addition, a more aggressive regulatory environment as well as an increased focus on security requires that organizations more reliably produce secure software applications. Traditional approaches to security and compliance are very top-down and document-centric, but these approaches often run counter to the spirit of agile software development methodologies.
This presentation examines the goals of both agility and security and discusses strategies for making the two compatible – or at least for minimizing the conflict between them. First, the fundamentals of secure software development are outlined to provide a baseline that any methodology – traditional or agile – must follow. The practices of agile development are examined from the viewpoint of providing security assurance. Potential modifications to those practices are discussed that provide an approach to creating the artifacts required for compliance and security assurance with a minimum of impact on the typically documentation-light agile development practices. Finally, the unavoidable conflicts between security and agility are discussed and recommendations are provided so that organizations can make the tough decisions appropriate to their environment in order to enforce the requisite amount of security while still remaining responsive to business concerns.
Sodas and snacks will be provided. Feel free to bring a brown-bag lunch.
Please RSVP: E-mail [email protected] or call (210) 572-4400.
Previous News
The slide deck from OWASP San Antonio August 2006 meeting available online here: File:OWASPSanAntonio 2006 08 SingleSignOn.ppt.
The slide deck from OWASP San Antonio June 2006 meeting available online here: File:OWASPSanAntonio 2006 06 Crypto Content.pdf.
The slide deck from OWASP San Antonio May 2006 meeting available online here: File:OWASPSanAntonio 2006 05 ForcefulBrowsing Content.pdf.
The slide deck from OWASP San Antonio September 2004 meeting available online here: File:OWASPSanAntonio 20040922.pdf.
