This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit


Revision as of 12:40, 22 May 2008 by Jekist (talk | contribs) (Local News)

Jump to: navigation, search

Welcome the OWASP Buffalo NY chapter

The Buffalo NY chapter was formed in August 2004. We meet 4 times a year for 1 to 2 hours per meeting and discuss topics related to web application security.

Goals & Objectives

It is our goal to freely distribute information related specifically to web application security. We want to ensure our members receive "free, professional-quality, open-source documentation, tools, and standards", as quoted directly from the main OWASP site. Participation is free and open to all. All are encouraged to participate.

Chapter Officers

President James Kist

For information on how to join the chapter or if you would like to attend a meeting or even speak at a meeting, please send one of the officers an email. If you have any suggestions for meeting topics, please send an email with your ideas.


The meetings for OWASP Buffalo will be held at:
KnowledgeAir, LLC
726 Exchange St
Suite 628 (6th floor)
Buffalo, NY 14210

Local Mailing List

You can sign up for the local mailing list. This list hosts discussions about chapter activity, planning for meetings and discussions about past and future presentations. To subscribe, go to and supply your email address.


You can participate by either signing up for the mailing list or just show up for the next meeting!

Local News

Next Chapter Meeting

The next Buffalo chapter meeting is going to be held at KnowledgeAir, LLC on Fri. June 5th from 12:00 to 1:30 pm. Details:

Topic: PCI DSS for Web Applications
Date: June 5th
Time: 12:00 to 1:30 pm
KnowledgeAir, LLC
726 Exchange St.
Suite 628 (6th floor)
Buffalo, NY 14210

Driving directions:


Presentation Overview:

This presentation addresses the requirements outlined in the PCI Data Security Standard (PCI DSS) version 1.1 that are relevant to web application development and security, and will provide guidance on how to meet these requirements. The PCI DSS version 1.1, a set of comprehensive requirements for enhancing payment account data security, was developed by the founding payment brands of the PCI Security Standards Council, including American Express, Discover Financial Services, JCB International, MasterCard Worldwide and Visa Inc., to help facilitate the broad adoption of consistent data security measures on a global basis. All organizations that process, store or transmit credit card data are required to comply with the PCI DSS 1.1 requirements.

About the speaker:

R. Christian Call, a recognized Dartmouth College graduate, worked for many years as a software developer in the areas of Operating Systems (IBM), object code-level program translation (AT&T Bell Laboratories), network firewalls (Lucent Technologies Bell Labs Innovations), network security (Lumeta), and Public Key Infrastructure (US Army/Maden Tech Consulting). As a Sales Engineer, Chris worked with application security companies Secure Software, Inc. and Ounce Labs before joining Breach Security. Chris is the East Coast Sales Engineer for Breach, and has worked with some of Breach’s largest customers on proof-of-concept, demonstration of value, deployment, and support.

Other Local IT Organizations


ISSA Rochester

Rochester, NY Defcon Group

infoTech Niagara

WNY .NET Users Group

ISSA Buffalo Niagara

WNYSIP - Western New York Society for Information Professionals