This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
AppSecEU2011
Welcome
|
|
CFT & CFP
Introduction
OWASP is currently soliciting training & presentation proposals for the OWASP AppSec Europe 2011 Conference which will take place at Trinity College Dublin in Ireland, on June 6th through June 10th 2010. There will be training courses on June 6th, 7th and 8th followed by plenary sessions on the 9th and 10th with each day having at least three tracks.
Call for Training
We are seeking training proposals on the following topics (in no particular order):
- Security in Web 2.0, Web Services/XML
- Advanced penetration testing
- Static analysis for security
- Threat modeling of applications
- Secure coding practices
- Security in J2EE/.NET patterns and frameworks
- Application security with ESAPI
- OWASP tools in practice
We will look favourably on laboration-based/hands-on training.
Call for Presentations
We are seeking people and organizations that want to present on any of the following topics (in no particular order):
- Business Risks with Application Security.
- Starting and Managing Secure Development Lifecycle Programs.
- Web Services-, XML- and Application Security.
- Metrics for Application Security.
- Application Threat Modeling.
- Hands-on Source Code Review.
- Web Application Security Testing.
- OWASP Tools and Projects.
- Secure Coding Practices (J2EE/.NET).
- Privacy Concerns with Applications and Data Storage
- Web Application Security countermeasures
- Technology specific presentations on security such as AJAX, XML, etc.
- Anything else relating to OWASP and Application Security.
Submission Deadline and Instructions
Submission deadline is Sunday April 3rd 23:59 (GMT).
To submit your proposal please fill out the form here: https://www.easychair.org/conferences/?conf=appseceu2011
Please specify in the form whether you are submitting a Training or a Presentation proposal. Eg. Title: "Training - Introduction to Web Application Security"
Only for Training Proposals
To submit your training proposal please fill out the AppSec Europe 2011 Call for Training Proposal and attach it while filling out the online form.
Upon acceptance you'll be requested to fill out the Training Instructor Agreement where you'll find details on revenue split etc. The agreement will be reworked but the previous one is here: File:Training Instructor Agreement.doc.
June 6th-8th (Training)
Schedule
To be published soon.
June 9th
Schedule
Conference Day 1 - June 9, 2011
| ||||
|
Track 1 - Defend | Track 2 - Prevent | Track 3 - Attack | |
0800-08:50 | Registration and Breakfast + Coffee | |||
08:50-09:00 | Welcome by AppSec EU Board | |||
09:00-10:00 | Keynote: Brad Arkin, Adobe Corp. | |||
10:00-10:30 | OWASP Blobal Board Update - Tom Brennan, Eoin Keary, Seba | |||
10:30-10:45 | Coffee Break | |||
10:45-11:30 | Practical Browser Sandboxing on Windows with Chromium, Tom Keetch, Verizon Business |
Building a Robust Security Plan, Narainder Chandwani, Foundstone |
APT in a Nutshell, "David Stubley, 7 Elements Ltd" | |
11:20-11:30 | Break - Expo - CTF (Pacific Ballroom) | |||
11:30-12:15 | State of SSL on the Internet - 2010 Survey, Results and Conclusions, Ivan Ristic, Qualys
|
Into the Rabbit Hole: Execution Flow-based Web Application Testing, Rafal Los, Hewlett-Packard
|
Threat Modeling Best Practices, Robert Zigweid, IOActive | |
12:15-13:15 | Lunch - Expo - CTF (Pacific Ballroom) | |||
13:30-14:15 | Keynote: Bill Cheswick (Crystal Cove Auditorium) | |||
14:15-14:25 | Break - Expo - CTF (Pacific Ballroom) | |||
14:25-15:10 | P0w3d for Botnet CnC, Gunter Ollmann, Damballa |
Cloud Computing, A Weapon of Mass Destruction?, David Bryan, Trustwave's SpiderLabs & Michael Anderson, NetSPI |
OWASP Secure Coding Practices Quick Reference Guide, Keith Turpin, Boeing | |
15:10-15:30 | Coffee Break - Expo - CTF (Pacific Ballroom) | |||
15:30-16:15 | Smart Phones with Dumb Apps: Threat Modeling for Mobile Applications, Dan Cornell, Denim Group |
Assessing, Testing and Validating Flash Content, Peleus Uhley, Adobe |
Tour of OWASP Projects, Dinis Cruz, OWASP Using the OWASP O2 Platform, | |
16:15-16:25 | Break - CTF | |||
16:25-17:10 | Panel Discussion: Security Trends: Jeremiah Grossman, Robert Hansen. Moderator: Stuart Schwartz | | ||
17:10-17:30 | Mozilla Announcement: Content Security Policy | |||
17:30-18:00 | Break | |||
18:00-21:00 | Networking Event (Pacific Ballroom) |
June 10th
Schedule
To be published soon.
Registration
Registration is now open!
The first 25 people who register receive an additional €50 discount!
Registration Fees
Ticket Type | Before 6th April | After 6th April | After 6th May |
---|---|---|---|
Non-Member | €250 | €300 | €350 |
Active OWASP Member | €200 | €250 | €300 |
Student | €150 | €200 | €250 |
Course | Fee |
---|---|
1 Day Training | €495 |
2 Day Training | €990 |
Note: To save on processing expenses, all fees paid for the OWASP conference are non-refundable. OWASP can accommodate transfers of registrations from one person to another, if such an adjustment becomes necessary.
* We need some kind of proof of your full-time student status. Either ask your local OWASP chapter leader to vouch for you by email to [email protected], or email Kate a scanned image of your student ID (please compress the file size :).
Practical Info
Visitors' Guide
VisitDublin.com is the official online tourist office for Dublin. You could check their Insider Guides, designed to ensure you make the most of your time in the capital! These themed guides offer you a taste of what to see and do offering you a great start in exploring Dublin!
Here is the URL: http://www.visitdublin.com/insidersguide/insidersguide.aspx?id=396
Also they have developed an Iphone and Android app that you could use to explore Dublin. You could get it from the visitdublin.com site.
UK/Ireland Wall Plugs
This is how UK/Ireland wall plugs look like (image below).
Weather Forecast
Met Ireland has good coverage of the weather in Dublin. Check it out here.
Travel
Fly to Dublin Airport:
http://www.dublinairport.com/
A taxi or bus can take you into Dublin city. (€30 - Taxi) (€10 - Bus)
Accommodation
Trinity College:
Please see here if you wish to stay within the grounds of Trinity College:
https://accommodation.tcd.ie/kxHotel/
Hotels Surrounding Trinity College:
http://maps.google.com/maps?near=Dame+Street,+College+Green,+Dublin+2,+Ireland+(Trinity+College+Campus)&geocode=Cfm6cyTmqt_IFev1LQMdLZCg_yFJu3aKhBD7GA&q=hotels&f=l&dq=Trinity+College+loc:+Dublin+Ireland&sll=53.341482,-6.258302&sspn=0.012043,0.037637&ie=UTF8&ei=U6TMSZSzKpSw2QLG_-CUCA&attrid=1036f063d3d0dafc_&ll=53.343711,-6.254568&spn=0.012042,0.037637&z=15
Social Events
Information will be published here.
Venue
The venue for both training and conference is Trinity College Dublin.
Sponsoring
OWASP is providing sponsors exclusive access to its audience in Trinity College Dublin, Ireland through a limited number of Expo floor slots, providing a focused setting for potential customers.Attendees will be pushed through the Expo floor for breakfast, lunch and coffee breaks giving them direct access to sponsors’ booths and technology.
The conference is expected to draw over 400 international attendees; all with budgets dedicated to web application security initiatives. Financial Services, Media, Pharmaceuticals, Government, Healthcare, Technology, and many other verticals will be represented.
Sponsorship opportunities are filling up rapidly. All proceeds from sponsorship support the conference and the mission of the OWASP Foundation (501c3 Not-For-Profit), driving funding for research grants, tools and documents, local chapters, and more.
All sponsorship opportunities feature significant discounts to OWASP members, allowing you year-round access the web application security’s top thinkers as well as use of OWASP materials in product and service delivery.
To find out more about the different sponsorship opportunities please check the document below:
File:OWASP sponsorship appseceu2011.pdf
Challenges
Countdown Challenges -- Free Tickets to Win!
There will be a challenge posted on the conference wiki page the 21st every month up until the event. The winner will get free entrance to the conference.
Team
Eoin Keary - eoin.keary 'at' owasp.org
Fabio Cerullo - fcerullo 'at' owasp.org
Fiona Walsh - fiona.walsh 'at' owasp.org
Rahim Jina - rahim.jina 'at' owasp.org
Kate Hartmann - kate.hartmann 'at' owasp.org