This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "Dublin"
(→Agenda) |
|||
| Line 21: | Line 21: | ||
===Agenda=== | ===Agenda=== | ||
| − | Next Meeting | + | Next Meeting 23rd July |
Venue: Ernst & Young, Harcourt Street | Venue: Ernst & Young, Harcourt Street | ||
| Line 31: | Line 31: | ||
Speakers: | Speakers: | ||
| − | ''' | + | '''Niall Jordan (Realex Payments)''' |
| − | ''' | + | '''Evading SQL injection detection through encoding''' |
| − | The | + | The purpose of this presentation is to give a basic understanding of how character set encoding can be used to evade common SQL injection detection techniques. It will start with a brief introduction to character set encoding to give the viewer the necessary overview to adequately understand the attack vectors. It will then move on to quickly describe normal SQL injection techniques and their detection and then go into detail on using character set encoding to bypass conventional detection methods. Practical examples will be shown along with methods to prevent these attacks. |
| − | ''' | + | '''Colin Watson (Watson Hall)''' |
| − | ''' | + | '''Software Assurance Maturity Model 1.0''' |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| + | he Software Assurance Maturity Model (SAMM) is now an OWASP project and in March became release quality. What is software assurance? What is a maturity model? What is SAMM? The presentation will explain how SAMM can be used to assess and improve software development security practices, reducing security risk and increasing software assurance, in all sizes of organisation. | ||
| − | + | Colin Watson's initial work was in the production and process engineering fields, but since completing an MSc in Computation at the University of Oxford in 1995, he has been employed in web software development, with an increasing focus on the security aspects. He is now a consultant, based mainly in London, working with developers, testers, auditors and people from a non-IT background to improve security practices. Colin joined the OWASP Global Industry Committee in January 2009. | |
===Time=== | ===Time=== | ||
Revision as of 08:36, 30 June 2009
OWASP Ireland
Welcome to the Ireland chapter homepage. The chapter leader is Eoin Keary
Participation
OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Sponsorship/Membership
to this chapter or become a local chapter supporter.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? 
Local News
<paypal>Ireland</paypal>
Chapter Meetings
OWASP are holding an event in Ireland. The venue is Trinity College, Dublin. Date: September 10, 2009
More information: OWASP_Ireland_AppSec_2009_Conference
We have a host of international speakers lined up for the event such as Professor Ian_O._Angell of the London School of Economics and Danny_Allen, Director of security research, IBM.
2009:
Location: Harcourt Street, thanks to Ernst & Young.
Agenda
Next Meeting 23rd July
Venue: Ernst & Young, Harcourt Street
Time: 18:30
Speakers:
Niall Jordan (Realex Payments)
Evading SQL injection detection through encoding
The purpose of this presentation is to give a basic understanding of how character set encoding can be used to evade common SQL injection detection techniques. It will start with a brief introduction to character set encoding to give the viewer the necessary overview to adequately understand the attack vectors. It will then move on to quickly describe normal SQL injection techniques and their detection and then go into detail on using character set encoding to bypass conventional detection methods. Practical examples will be shown along with methods to prevent these attacks.
Colin Watson (Watson Hall)
Software Assurance Maturity Model 1.0
he Software Assurance Maturity Model (SAMM) is now an OWASP project and in March became release quality. What is software assurance? What is a maturity model? What is SAMM? The presentation will explain how SAMM can be used to assess and improve software development security practices, reducing security risk and increasing software assurance, in all sizes of organisation.
Colin Watson's initial work was in the production and process engineering fields, but since completing an MSc in Computation at the University of Oxford in 1995, he has been employed in web software development, with an increasing focus on the security aspects. He is now a consultant, based mainly in London, working with developers, testers, auditors and people from a non-IT background to improve security practices. Colin joined the OWASP Global Industry Committee in January 2009.
Time
6:30
Location
Ernst & Young,
Harcourt Centre, Harcourt St,
Dublin 2
Opposite the Odeon Pub
Drop me a mail if you have any queries: eoin.keary <at> owasp.org
Ireland OWASP Chapter Leaders
The chapter leader is Eoin Keary
