This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Front Range OWASP Conference 2010
Welcome to FROC 2010, the third annual Front Range OWASP Application Security Conference!
After successful FROC's in June of 2008, and March of 2009, we are back in Denver, Colorado USA on Wednesday the 2nd of June 2010!
This year we again present a full day, multi-track event, which will provide valuable information for managers and executives as well as developers and engineers.
In 2009, we attracted a packed venue with our great AppSec speakers, and we hope to achieve the same again in 2010. This year we are organizing the conference with the support of our colleagues at the Cloud Security Alliance, and will feature an AppSec track as well as a CloudSec/VirtSec track.
Due to the hard work of our organizers and the gracious support of our sponsors, FROC was a free event in 2008 and 2009. This year, thanks to the generosity of our sponsors we are offering tickets to the event on a DONATION basis. Pay whatever you or your company can afford.
Click HERE to register now.
Agenda and Presentations: 2 June 2010
The agenda follows the successful OWASP conference multi track format, with opening keynotes and presentations in the main auditorium, split tracks in the middle of the day, and closing panel discussions back in the main auditorium.
|June 2, 2010|
|07:30-08:30||Registration and Continental Breakfast in the Sponsor Expo Room|
|08:30-08:35|| Welcome to FROC 2010 Conference
David Campbell, OWASP Denver
|08:35-09:35|| Keynote: "Watching Software Run: Software Security Beyond Defect Elimination"
Brian Chess, Fortify Software
|09:35-10:00|| OWASP: State of the Union
Tom Brennan, OWASP Board
|10:00-10:20|| Cloud Security Alliance: State of the Union
Jim Reavis, Co-Founder, Cloud Security Alliance
|10:20-10:30||Break - Expo - CTF|
|AppSec/Technical Track: Room 1||Cloud/Mobile/Emerging Track: Room 2||Management / Exec Track: Room 3|
|10:30-11:15|| "2010: Web Hacking Odyssey - The Top Hacks of the Year"
Jeremiah Grossman and Elizabeth Laneri
| "Building a Secure, Compliant Cloud for the Enterprise"
Craig McClellan, CTO: Hosting.com
| "Fundamental Practices and Tools to implement a security development lifecycle"
|11:15-12:00|| "Advanced MITM Techniques for Security Testers"
Mike Zusman, Raj Umadas and Aaron Rhodes, Intrepidus Group
| "YOU are the weakest link"
Chris Nickerson, Lares Consulting
| "Effectively marketing security as a win for both the business and the customer"
Ben Whaley, Applied Trust Engineering and Jeff Smith, Rally Software
|12:00-13:00||Lunch - Expo - CTF|
|13:00-13:50|| "Vulnerabilities in Secure Code: Now and Beyond"
Alex Wheeler and Ryan Smith, Accuvant
| "What's Old Is New Again: An Overview of Mobile Application Security"
Zach Lanier and Mike Zusman, Intrepidus Group
| "The Permanent Campaign: Driving a Secure Software Initiative in the Enterprise"
John Dickson, Denim Group
|13:50-14:40|| "Assessing Financial Applications"
Daniel Cuthbert, Corsaire
| "Real life CSI – Data Mining and Intelligence Gathering for the masses"
Chris Roberts, Cyopsis
| "Anatomy of a Logic Flaw"
David Byrne and Charles Henderson, Trustwave
|15:00-15:50|| "Solving Real-World Problems with an Enterprise Security API"
| "Beware of Serialized GUI Objects Bearing Data"
David Byrne and Rohini Sulatycki, Trustwave
| "Application Security Program Management with Vulnerability Manager"
Dan Cornell, Denim Group
|15:50-16:30||Panel Discussion: Topic TBD. Moderator: John Dickson, Denim Group|
|16:30-17:30||Wrap up, vendor raffles, CTF awards, FREE BEER!|
This year, the conference will again be held at University of Colorado, Denver. However, instead of the Tivoli Student Union, this year the event will be hosted at the North Classroom building (Atrium UCD).
How to get to the venue?
- By taxi: taxi from the airport to venue is about $50 USD
- From hotel: TBD
- By car: there is plenty of parking at the UCD. Attendees should park at the Tivoli lot (as in past years) and it is a short walk to the North Classroom buildings. Parking validation will be provided for registered FROC participants.
Call for Presentations
The call for presentations closed 31 March 2010. We are no longer accepting proposals for presentations. If you have already submitted a presentation you can, however update your abstract or submit additional information to clarify your proposal.
Capture the Flag (CTF)
This year FROC will again be hosting a capture the flag game / contest throughout the day. If you are interested in volunteering to assist with the CTF please contact eduprey at owasp dot org.
FROC 2010 Planning Committee Chair: Kathy Thaxton - kthaxton at owasp dot org
Presentation Selection Committee:
- Mark Bristow - OWASP Global Conference Committee
- David Campbell - OWASP Denver
- Eric Duprey - OWASP Denver
- Chris Hoff - Cloud Security Alliance
- Eoin Keary - Chair, OWASP Global Conference Committee
- Michael Sutton - Cloud Security Alliance
- Jim Reavis - Cloud Security Alliance
Colorado Chapter Hosts:
- David Campbell - OWASP Denver - dcampbell at owasp dot org
- Eric Duprey - OWASP Denver - eduprey at owasp dot org
Vendor Exhibition POC: Kathy Thaxton - kthaxton at owasp dot org
Capture the Flag POC: Eric Duprey - eduprey at owasp dot org
If you are interested in sponsoring this OWASP event, please contact Kathy Thaxton at kthaxton at owasp dot org.
More information about conference sponsorship is available here.