This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Agenda"
From OWASP
KateHartmann (talk | contribs) |
KateHartmann (talk | contribs) |
||
| Line 2: | Line 2: | ||
| colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Monday, November 3rd, 2008 | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Monday, November 3rd, 2008 | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="4" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="4" style="width:80%; background:#B36B00" align="center" | Lunch |
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | || colspan="4" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | || colspan="4" style="width:80%; background:#c0e0e0" align="center" | Training Sessions |
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 15:00 to 17:00 || style="width:30%; background:# | + | | style="width:10%; background:#7B8ABD" | 15:00 to 17:00 || style="width:30%; background:#c0e0e0" align="center" | Securing WebGoat with ModSecurity |
Stephen Craig Evans | Stephen Craig Evans | ||
| − | | style="width:30%; background:# | + | | style="width:30%; background:#c0e0e0" align="center" | WebSec Apps for Managers and Executives |
Mano Paul | Mano Paul | ||
| − | | style="width:30%; background:# | + | | style="width:30%; background:#c0e0e0" align="center" | OWASP Testing Guide |
Matteo Meucci | Matteo Meucci | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 19:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 19:00 || colspan="4" style="background:#FFFF00" align="center" | Summit Briefing |
Dinis Cruz and Summit Organization Team | Dinis Cruz and Summit Organization Team | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 20:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 20:00 || colspan="4" style="background:#B36B00" align="center" | OWASPers Dinner |
|} | |} | ||
| Line 23: | Line 23: | ||
| colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Tuesday, November 4th, 2008 | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Tuesday, November 4th, 2008 | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 08:00 || colspan="4" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 08:00 || colspan="4" style="width:80%; background:#FFBFEF" align="center" | Registration |
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 09:00 || colspan="4" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 09:00 || colspan="4" style="width:80%; background:#FFFF00" align="center" | Summit Keynote |
Dinis Cruz and Summit Organization Team | Dinis Cruz and Summit Organization Team | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:# | + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Documents |
| − | | colspan="2" style="width:30%; background:# | + | | colspan="2" style="width:30%; background:#80FF80" align="center" | Tools |
|- | |- | ||
| − | | style="background:#7B8ABD" | 09:30 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 09:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Testing Guide |
Matteo Meucci | Matteo Meucci | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80" align="center" | OWASP JSP Testing Tool |
Jason Li | Jason Li | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 09:45 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 09:45 || colspan="2" style="background:#80FF80" align="center" | OWASP Code Review Guide |
Eoin Keary | Eoin Keary | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Orizon Project |
Paolo Perego (a.k.a. thesp0nge) | Paolo Perego (a.k.a. thesp0nge) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:00 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Application Security Desk Reference (ADSR) |
Leonardo Cavallari Militelli | Leonardo Cavallari Militelli | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Live CD |
Matt Tesauro | Matt Tesauro | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80" align="center" | OWASP Spanish Project |
Juan Carlos Calderon | Juan Carlos Calderon | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | WebScarab-NG |
Rogan Dawes | Rogan Dawes | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:30 || colspan="5" style="background:# | + | | style="background:#7B8ABD" | 10:30 || colspan="5" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:#80FF80" align="center" | .NET ESAPI |
Alex Smolen | Alex Smolen | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80" align="center" | JBroFuzz |
Yiannis | Yiannis | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:00 || colspan="6" style="background:# | + | | style="background:#7B8ABD" | 11:00 || colspan="6" style="background:#FFFF00" align="center" | Working Sessions Briefing |
Dinis Cruz | Dinis Cruz | ||
|- | |- | ||
| Line 71: | Line 71: | ||
Chair: Matt Tesauro | Chair: Matt Tesauro | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 13:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 13:00 || colspan="4" style="background:#B36B00" align="center" | Lunch |
|- | |- | ||
| − | | style="background:#7B8ABD" | 14:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 14:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions |
|- | |- | ||
| style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | The Art and Science of Threat Modeling Web Applications | | style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | The Art and Science of Threat Modeling Web Applications | ||
| Line 82: | Line 82: | ||
Marco Slaviero | Marco Slaviero | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 16:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 16:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | || colspan="4" style="background:# | + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 16:30 || colspan="4" style="background:#7B8ABD " align="center" | ESAPI | | style="background:#7B8ABD" | 16:30 || colspan="4" style="background:#7B8ABD " align="center" | ESAPI | ||
| Line 94: | Line 94: | ||
| style="background:#7B8ABD " align="center" | .NET Project | | style="background:#7B8ABD " align="center" | .NET Project | ||
Chair: Dinis Cruz | Chair: Dinis Cruz | ||
| − | |||
| − | |||
|} | |} | ||
| Line 103: | Line 101: | ||
| colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Wednesday, November 5th, 2008 | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Wednesday, November 5th, 2008 | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="4" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="4" style="width:80%; background:#FFFF00" align="center" | Daily Briefing: |
Dinis Cruz | Dinis Cruz | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:# | + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Standards and Education |
(Room 1) | (Room 1) | ||
| − | | colspan="2" style="width:30%; background:# | + | | colspan="2" style="width:30%; background:#80FF80" align="center" | Tools |
(Room 2) | (Room 2) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Positive_Security_Project '''OWASP Positive Security (SoC 08)'''] |
Eduardo Vianna de Camargo Neves | Eduardo Vianna de Camargo Neves | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80" align="center" | OWASP Access Control Rules Tester Project |
Andrew Petukhov | Andrew Petukhov | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Education_Project '''OWASP Education'''] |
Sebastien Deleersnyder, Martin Knobloch | Sebastien Deleersnyder, Martin Knobloch | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Teachable Static Analysis Workbench |
Dmitry Kozlov | Dmitry Kozlov | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Internationalization Guidelines |
Juan Carlos Calderon | Juan Carlos Calderon | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | [http://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor] |
Michael Coates | Michael Coates | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:#80FF80" align="center" | PASSWD:Metrics and Vulnerabilities |
Lucilla Mancini | Lucilla Mancini | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Backend Security Project |
Carlo Pelliccioni | Carlo Pelliccioni | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Open Review Project |
Dan Cornell | Dan Cornell | ||
| − | | colspan="2" style="background:# | + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project |
Dmitry Kozlov | Dmitry Kozlov | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:15 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 11:15 || colspan="4" style="background:#80FF80" align="center" | OWASP Global Committee Elections |
(Room 1) | (Room 1) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:30 || colspan="4" style=" | + | | style="background:#7B8ABD" | 11:30 || colspan="4" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | || colspan="4" style="background:# | + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 12:45 || style="background:#7B8ABD" align="center" | ''Education Project'' | | style="background:#7B8ABD" | 12:45 || style="background:#7B8ABD" align="center" | ''Education Project'' | ||
| Line 154: | Line 152: | ||
(Room 3) | (Room 3) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 14:45 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 14:45 || colspan="4" style="background:#B36B00" align="center" | Lunch During Working Sessions |
|- | |- | ||
| − | | style="background:#7B8ABD" | 15:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 15:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 15:00|| style="background:#c0e0e0" align="center" | Flash Player Security | | style="background:#7B8ABD" | 15:00|| style="background:#c0e0e0" align="center" | Flash Player Security | ||
| Line 171: | Line 169: | ||
(Room 3) | (Room 3) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 17:00 || colspan="4" style="background:# | + | | style="background:#7B8ABD" | 17:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | || colspan="4" style="background:# | + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 17:30 || style="background:#7B8ABD " align="center" | Code Review Guide | | style="background:#7B8ABD" | 17:30 || style="background:#7B8ABD " align="center" | Code Review Guide | ||
| Line 203: | Line 201: | ||
| colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Thursday, November 6th, 2008 | | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Thursday, November 6th, 2008 | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="5" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="5" style="width:80%; background:#FFFF00" align="center" | Daily Briefing: |
Dinis Cruz | Dinis Cruz | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:# | + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Technology |
| − | | colspan="3" style="width:30%; background:# | + | | colspan="3" style="width:30%; background:#80FF80" align="center" | Tools |
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | OWASP Classic ASP Security Project |
Juan Carlos Calderon | Juan Carlos Calderon | ||
| − | | colspan="3" style="background:# | + | | colspan="3" style="background:#80FF80" align="center" | OWASP Source Code Review |
James Walden | James Walden | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80 " align="center" | OWASP Ruby on Rails Security Project |
Heiko Webers | Heiko Webers | ||
| − | | colspan="3" style="background:# | + | | colspan="3" style="background:#80FF80 " align="center" | OWASP Enigmaform and mod_Openpgp |
Arturo Alberto Busleiman (a.k.a. Buanzo) | Arturo Alberto Busleiman (a.k.a. Buanzo) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Webslayer Project |
Christian Martorella | Christian Martorella | ||
| − | | colspan="3" style="background:# | + | | colspan="3" style="background:#80FF80 " align="center" | OWASP Securing WebGoat using ModSecurity |
Stephen Evans and Christian Folini | Stephen Evans and Christian Folini | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:# | + | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Skavenger Project |
Matthias Rohr | Matthias Rohr | ||
| − | | colspan="3" style="background:# | + | | colspan="3" style="background:#80FF80 " align="center" | OWASP AntiSAMI |
Arshan Dabirsiaghi | Arshan Dabirsiaghi | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 11:15 || colspan="5" style=" | + | | style="background:#7B8ABD" | 11:15 || colspan="5" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | || colspan="5" style="background:# | + | | style="background:#7B8ABD" | || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 11:30 || style="background:#7B8ABD" align="center" | Top 10 | | style="background:#7B8ABD" | 11:30 || style="background:#7B8ABD" align="center" | Top 10 | ||
| Line 250: | Line 248: | ||
Sala Bella Vista | Sala Bella Vista | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:# | + | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Lunch During Working Sessions |
|- | |- | ||
| − | | style="background:#7B8ABD" | 14:00 || colspan="5" style="background:# | + | | style="background:#7B8ABD" | 14:00 || colspan="5" style="background:#c0e0e0" align="center" | Training Sessions |
|- | |- | ||
| style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | Ajax Security | | style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | Ajax Security | ||
| Line 266: | Line 264: | ||
(Executive Room) | (Executive Room) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:# | + | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Coffee Break |
|- | |- | ||
| − | | style="background:#7B8ABD" | || colspan="5" style="background:# | + | | style="background:#7B8ABD" | || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions |
|- | |- | ||
| style="background:#7B8ABD" | 16:30 || colspan="5" style="background:#7B8ABD " align="center" | Strategic Planning and Business Models compatible with OWASP values | | style="background:#7B8ABD" | 16:30 || colspan="5" style="background:#7B8ABD " align="center" | Strategic Planning and Business Models compatible with OWASP values | ||
| Line 290: | Line 288: | ||
(Executive Room) | (Executive Room) | ||
|- | |- | ||
| − | | style="background:#7B8ABD" | 20:00 || colspan="5" style="background:# | + | | style="background:#7B8ABD" | 20:00 || colspan="5" style="background:#B36B00 " align="center" | Gala Dinner - Restaurante de Real |
|- | |- | ||
| − | | style="background:#7B8ABD " | 22:00 || colspan="5" style="background:# | + | | style="background:#7B8ABD " | 22:00 || colspan="5" style="background:#B36B00 " align="center" | OWASP Band - LE CLUB |
|} | |} | ||
| Line 299: | Line 297: | ||
| colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Friday, November 7th, 2008 | | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Friday, November 7th, 2008 | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 10:00 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 10:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | OWASP AppSec Agenda 2009: Working Session Outcomes |
Dinis Cruz | Dinis Cruz | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 10:15 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 10:15 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Results Presentations |
|- | |- | ||
| style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version | ||
| Line 334: | Line 332: | ||
Chair: Georg Hess | Chair: Georg Hess | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 11:15 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 11:15 || colspan="6" style="width:80%; background:#B36B00" align="center" | Coffee Break and vote break (put your dots on the wall) |
|- | |- | ||
| style="width:10%; background:#7B8ABD" | 11:30 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Live CD & DVD | | style="width:10%; background:#7B8ABD" | 11:30 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Live CD & DVD | ||
| Line 375: | Line 373: | ||
Secretary: Paulo Combra | Secretary: Paulo Combra | ||
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="6" style="width:80%; background:#B36B00" align="center" | Lunch - During Winter of Code |
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 14:00 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 14:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Board Meeting |
|- | |- | ||
| − | | style="width:10%; background:#7B8ABD" | 17:00 || colspan="6" style="width:80%; background:# | + | | style="width:10%; background:#7B8ABD" | 17:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Announcement of Summit Procedings |
|} | |} | ||
Revision as of 19:50, 18 November 2008
| Agenda for Monday, November 3rd, 2008 | ||||
| 13:00 | Lunch | |||
| Training Sessions | ||||
| 15:00 to 17:00 | Securing WebGoat with ModSecurity
Stephen Craig Evans |
WebSec Apps for Managers and Executives
Mano Paul |
OWASP Testing Guide
Matteo Meucci | |
| 19:00 | Summit Briefing
Dinis Cruz and Summit Organization Team | |||
| 20:00 | OWASPers Dinner | |||
| Agenda for Tuesday, November 4th, 2008 | ||||||
| 08:00 | Registration | |||||
| 09:00 | Summit Keynote
Dinis Cruz and Summit Organization Team | |||||
| Documents | Tools | |||||
| 09:30 | OWASP Testing Guide
Matteo Meucci |
OWASP JSP Testing Tool
Jason Li | ||||
| 09:45 | OWASP Code Review Guide
Eoin Keary |
OWASP Orizon Project
Paolo Perego (a.k.a. thesp0nge) | ||||
| 10:00 | OWASP Application Security Desk Reference (ADSR)
Leonardo Cavallari Militelli |
OWASP Live CD
Matt Tesauro | ||||
| 10:15 | OWASP Spanish Project
Juan Carlos Calderon |
WebScarab-NG
Rogan Dawes | ||||
| 10:30 | Coffee Break | |||||
| 10:45 | .NET ESAPI
Alex Smolen |
JBroFuzz
Yiannis | ||||
| 11:00 | Working Sessions Briefing
Dinis Cruz | |||||
| Working Sessions | ||||||
| 11:15 | Documentation Projects/Guides Integration and Unified 4.0 Version
Chair: Eduardo Neves |
Browser Security
Chair: Arshan Dabirsiaghi Secretary: Kuai Hinojosa |
Tools Projects
Chair: Matt Tesauro | |||
| 13:00 | Lunch | |||||
| 14:00 | Training Sessions | |||||
| The Art and Science of Threat Modeling Web Applications
Mano Paul |
Web Server Hardening SELinux
Pavol Luptak |
Offensive WebApp Hacking
Marco Slaviero | ||||
| 16:00 | Coffee Break | |||||
| Working Sessions | ||||||
| 16:30 | ESAPI
Chair: Jeff Williams Secretary: Arshan Dabirsiaghi | |||||
| 18:30 | ASDR
Chair: Leonardo Cavallari |
.NET Project
Chair: Dinis Cruz | ||||
| Agenda for Wednesday, November 5th, 2008 | ||||
| 09:15 | Daily Briefing:
Dinis Cruz | |||
| Standards and Education
(Room 1) |
Tools
(Room 2) | |||
| 10:00 | OWASP Positive Security (SoC 08)
Eduardo Vianna de Camargo Neves |
OWASP Access Control Rules Tester Project
Andrew Petukhov | ||
| 10:15 | OWASP Education
Sebastien Deleersnyder, Martin Knobloch |
OWASP Teachable Static Analysis Workbench
Dmitry Kozlov | ||
| 10:30 | OWASP Internationalization Guidelines
Juan Carlos Calderon |
OWASP AppSensor
Michael Coates | ||
| 10:45 | PASSWD:Metrics and Vulnerabilities
Lucilla Mancini |
OWASP Backend Security Project
Carlo Pelliccioni | ||
| 11:00 | OWASP Open Review Project
Dan Cornell |
OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project
Dmitry Kozlov | ||
| 11:15 | OWASP Global Committee Elections
(Room 1) | |||
| 11:30 | Coffee Break | |||
| Working Sessions | ||||
| 12:45 | Education Project
Chair: Sebastien Deleersnyder (Room 1) |
Testing Guide
Chair: Matteo Meucci (Room 2) |
Web Application Framework Security
Chair: Arshan Dabirsiaghi Secretary: Kuai Hinojosa (Room 3) | |
| 14:45 | Lunch During Working Sessions | |||
| 15:00 | Training Sessions | |||
| 15:00 | Flash Player Security
Peleus Uhley (Room 1) |
OWASP Top 10
Sebastien Deleersnyder and Martin Knobloch (Room 2) |
Uncovering WebScarab's Secret Treasures
Rogan Dawes (Sala Bella Vista) |
Hacking OWASP Orizon
Paolo Perego (Room 3) |
| 17:00 | Coffee Break | |||
| Working Sessions | ||||
| 17:30 | Code Review Guide
Chair: Eoin Keary (Room 2) |
EU Funding for OWASP Projects
Chair: Carlos Serrao (Sala Bella Vista) |
OWASP Certification
Chair: Tom Brennan (Room 1) |
Software Assurance Maturity Model
Chair: Pravir Chandra (Room 3) |
| 19:00 | OWASP Website
Chair: Favio Cerull (Room 1) |
Metrics & Vulnerabilities
Chair: Lucilla Mancini (Room 2) |
OWASP Orizon
Paolo Perego (Room 3) | |
| Agenda for Thursday, November 6th, 2008 | |||||
| 09:15 | Daily Briefing:
Dinis Cruz | ||||
| Technology | Tools | ||||
| 10:00 | OWASP Classic ASP Security Project
Juan Carlos Calderon |
OWASP Source Code Review
James Walden | |||
| 10:15 | OWASP Ruby on Rails Security Project
Heiko Webers |
OWASP Enigmaform and mod_Openpgp
Arturo Alberto Busleiman (a.k.a. Buanzo) | |||
| 10:30 | OWASP Webslayer Project
Christian Martorella |
OWASP Securing WebGoat using ModSecurity
Stephen Evans and Christian Folini | |||
| 11:00 | OWASP Skavenger Project
Matthias Rohr |
OWASP AntiSAMI
Arshan Dabirsiaghi | |||
| 11:15 | Coffee Break | ||||
| Working Sessions | |||||
| 11:30 | Top 10
2009 Chair: Dave Wichers Secretary: Jeff Williams (Room 1) |
Intra Governmental Affairs
Chair: David Campbell (Room 2) |
SAMM v2
(Room 3) |
Web Site
12:15 Executive Room |
Handling Web MalWare
12:15 Sala Bella Vista |
| 13:00 | Lunch During Working Sessions | ||||
| 14:00 | Training Sessions | ||||
| Ajax Security
(Room 1) |
Auditing Flash Applications
Peleus Uhley (Room 2) |
WebApp Assessment
Vicente Aguilera Diaz (Room 3) |
Mod Security
Lucas C. Ferreira (Executive Room) | ||
| 13:00 | Coffee Break | ||||
| Working Sessions | |||||
| 16:30 | Strategic Planning and Business Models compatible with OWASP values
Chair: Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, and Tom Brennan Secretary: Kate Hartmann and Paulo Combra | ||||
| 18:30 | 2-Way Internationalization
Chair: Juan Carlos Calderon and Sebastien Deleersnyder (Room 1) |
Best Practices for Chapter Leaders
Chair: Georg Hess (Room 2) |
Portuguese Public & Private Organizations
Chair: Carlos Serrao (Room 3) |
Live CD & DVD
Chair: Matt Tesauro (Sala Bella Vista) |
OWASP Awards
Chair: Colin Watson (Executive Room) |
| 20:00 | Gala Dinner - Restaurante de Real | ||||
| 22:00 | OWASP Band - LE CLUB | ||||
| Agenda for Friday, November 7th, 2008 | ||||||
| 10:00 | OWASP AppSec Agenda 2009: Working Session Outcomes
Dinis Cruz | |||||
| 10:15 | Results Presentations | |||||
| Documentation Projects/Guides Integration and Unified 4.0 Version
Chair: Eduardo Neves | ||||||
| Browser Security
Chair: Arshan Dabirsiaghi | ||||||
| ESAPI
Chair: Jeff Williams | ||||||
| Tools Projects
Chair: Matt Tesauro | ||||||
| Code Review Guide
Chair: Eoin Keary | ||||||
| OWASP Certification
Chair: Tom Brennan | ||||||
| Software Assurance Maturity Model
Chair: Pravir Chandra | ||||||
| Top 10 2009
Chair: Dave Wichers | ||||||
| Intra Governmental Affairs
Chair: David Campbell | ||||||
| Best Practices for Chapter Leaders
Chair: Georg Hess | ||||||
| 11:15 | Coffee Break and vote break (put your dots on the wall) | |||||
| 11:30 | Live CD & DVD
Chair: Matt Tesauro | |||||
| ADSR
Chair: Leonardo Cavallari | ||||||
| Education Project
Chair: Sebastien Deleersnyder | ||||||
| Web Application Framework Security
Chair: Arshan Dabirsiaghi | ||||||
| Testing Guide
Chair: Matteo Meucci | ||||||
| OWASP Censorship
Chair: Tom Brennan | ||||||
| EU Funding for OWASP Projects
Chair: Carlos Serrao | ||||||
| OWASP Website
Chair: Fabio Cerull | ||||||
| OWASP Orizon
Chair: Paolo Perego | ||||||
| Handling Web MalWare | ||||||
| 2-Way Internationalization
Chair: Juan Carlos Calderon | ||||||
| Portuguese Public & Private Organizations
Chair: Carlos Serrao | ||||||
| 12:45 | Winter of Code 2009
Chair: Dinis Cruz and Sebastien Deleersnyder Secretary: Paulo Combra | |||||
| 13:00 | Lunch - During Winter of Code | |||||
| 14:00 | Board Meeting | |||||
| 17:00 | Announcement of Summit Procedings | |||||
