This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

2017 BASC Homepage

Revision as of 21:41, 30 September 2017 by Tom Conner (talk | contribs)

Jump to: navigation, search
Home | Agenda | Presentations | Workshops | Speakers | Register | Twitter 32.png
Platinum Sponsors

Black Duck Software MIT Lincoln Laboratory Veracode

Gold Sponsors



Silver Sponsors

Qualys bugcrowd

Sponsorships are available: See Sponsorship Kit
Please help us keep BASC free by viewing and visiting all of our sponsors.


This is the homepage for the 2017 Boston Application Security Conference (BASC). *Note that the conference will be free but training and workshops may incur a fee*. Conference will take place 8:30am to 6:30pm on Saturday, October 14th at

The BASC will be a free, one day, informal conference, aimed at increasing awareness and knowledge of application security in the greater Boston area. While many of the presentations will cover state-of-the-art application security concepts, the BASC is intended to appeal to a wide-array of attendees. Application security professionals, professional software developers, software quality engineers, computer science students, and security software vendors should be able to come to the BASC, learn, and hopefully enjoy themselves at the same time.


Please Register Now

Registration is required for breakfast, lunch, and the evening social time. We will do everything possible to accommodate late registrants but the facility and food are limited.


Writing Code to Save the World

Chris Poulin, Booz Allen Hamilton

Chris Poulin.png

Every application that you create, every line of code that you type, has the potential to do good or cause harm. Your app may allow banks to transfer funds used to find a cure for cancer, optimize processing of food so that it's affordable to the poor and starving, and even an instant messaging app--ostensibly just a social distraction--can allow repressed citizens to mount a revolution. At the same time, a single line of poorly written code or a mistake in the implementation of an authentication mechanism, can reroute millions of dollars away from a cancer research lab into the pockets of cybercriminal, allow terrorists to taint the food supply, or enable the continued crimes against humanity by an autocratic regime. The OWASP provides guidance on how to write more secure code, and you'll get plenty of training and hands-on practice at BASC; beyond coding hygiene, how can you solve the problem of security by writing applications that solve the larger problems? Chris Poulin explores the potential to not just write secure code, but to create apps that solve the bigger security issues.

Chris Poulin is Principal/Director in Booz Allen Hamilton’s Strategic Innovations Group, where he leads the Internet of Things security strategy in Booz Allen’s Dark Labs, as well as dabbles in Machine Intelligence. He joins BAH from IBM, where he lead their X-Force research teams and built the first prototype Watson for cybersecurity. Despite his recent roles in large enterprises, he has an entrepreneurial background, having founded, built, and sold a boutique information security consulting firm, FireTower, Inc., and served as the Chief Security Officer for Q1 Labs, a startup in the Security Intelligence space. Chris started his security career in the U.S. Air Force over 30 years ago, where he managed global networks and developed software for the intelligence community.

The Details

OWASP Boston Chapter

BASC is presented by the OWASP Boston chapter.

You can find out more about this conference at the 2017 BASC Homepage
or by emailing [email protected]
Twitter 32.png