Revision as of 05:32, 2 February 2019 (view source) Marco-cincy (talk | contribs) (Tag: Visual edit) ← Older edit		Latest revision as of 09:05, 8 January 2020 (view source) Mmeucci (talk | contribs)
(59 intermediate revisions by 2 users not shown)
Line 3:		Line 3:
	<center>		<center>
	[[File:Screen Shot 2019-01-31 at 10.23.04 PM.png|frameless|616x616px]]		[[File:Screen Shot 2019-01-31 at 10.23.04 PM.png|frameless|616x616px]]
−	</center>Following on from the great successes of last years OWASP Italy day conferences we are proud to announce that the 2019 OWASP Italy conference will be held at the University of Udine on 27th September 2019.	+	</center>Following on from the great successes of [https://www.owasp.org/index.php/Italy_OWASP_Day_Cagliari_2018 last year] OWASP Italy day conference the 2019 OWASP Italy conference has been held at the University of Udine on December 14th, 2019.
−	OWASP Italy Day is a one-day conference focused on web application and software security, application security testing tools and technologies and cloud security. This year special topic of interest is the security of emerging technologies such as blockchain and cryptocurrencies.	+	The [http://www.owasp.org Open Web Application Security Project], or OWASP, is an international non-profit organization dedicated to web and application security. OWASP is organized as an online community that produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. Many standards, books, tools, and organizations reference the Top OWASP 10 project, including MITRE, PCI DSS, the Defense Information Systems Agency (DISA-STIG), the United States Federal Trade Commission (FTC) and many more. The OWASP Testing Guide includes a "best practice" penetration testing framework that users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.
−	This conference provides a unique opportunity to learn about application security topics and to network with application security professionals/managers, software engineers, software quality engineers/testers and computer science students.	+	[http://www.esnnaseudine.it/?q=blog/universitaUdine The University of Udine] The University of Udine is a young and dynamic university, whose mission, since its foundation in 1978, has been to promote higher education through generation of new ideas and worldwide connections. It is situated in Udine, a town in Friuli Venezia Giulia Region, which historically has been a meeting place and crossroads of different worlds and cultures. The University of Udine is ranked eighth among Universities in Italy in terms of education quality and research and it has just celebrated its 40th birthday last year.
−	The address of the conference is: [http://www.uniud.it Università degli Studi di Udine], Palazzo Antonini, Via Tarcisio Petracco, 8, 33100 Udine UD, Italy, [https://www.google.com/maps/place/Università+degli+Studi+di+Udine,+Palazzo+Antonini-Cernazai/@46.0666611,13.2331162,15z/data=!4m5!3m4!1s0x0:0xbe8859d1092f1d40!8m2!3d46.0666611!4d13.2331162 map]	+	OWASP Italy Day is a one-day conference focused on web application and software security, application security testing tools and technologies. This year special topic of interest is threat modeling.
−	= Agenda =	+	This conference provided a unique opportunity to learn about application security topics and to network with application security professionals/managers, software engineers, software quality engineers/testers and computer science students.
−	The Conference will be in ITALIAN language except for the keynote speaker that will be in ENGLISH.	+	= Presentations =
		+	<center>
		+	<gallery>
		+	Morana2020.jpg|Marco Morana: [https://drive.google.com/open?id=1Ak8lne8_Fzw9NozjS0GKF2WIhMU5pBhm "Introduction to Threat Modeling and the Process for Attack Simulation and Threat Analysis"]
		+	Calligaris2020.jpg|David Calligaris: [https://drive.google.com/open?id=1-s81HxzTSjTh8IPZvyexMsfEFH2LCy1C "SSRF present and future"]
		+	Calzavara2020.jpg|Stefano Calzavara: [https://drive.google.com/open?id=1-skFH-BeyMiMOF-7ZxR1LJ3nDL5CFVIH "Testing for integrity flaws in web sessions"]
		+	</gallery>
		+	</center>
−	The conference will take place in one day on date of September 27th 2019.	+	= Agenda =
−		+	<font size="2pt"><center><font size="2pt">
−	The details of the conference agenda and selected speakers will be announced after closing the (CFP) Call For Papers.	+	<table width="80%">
−		+	<tr>
−	Confirmed keynote speaker is the American computer scientist, author, and researcher [https://en.wikipedia.org/wiki/Gary_McGraw Dr Gary McGraw]	+	<td valign="top">9:00h</td><td bgcolor="#b9c2dc"><b>"Registration of the participants"</b><br></td>
−		+	</tr>
−	= Abstracts =	+	<tr>
−		+	<td valign="top">9:30h</td><td bgcolor="#eeeeee"><b>"Welcome and opening of the works"</b><br>Prof. Marino Miculan,- Università degli Studi di Udine, Matteo Meucci OWASP Italy<br></td>
−	The selected speakers talks and bios will be published not later than August 15th  2019.	+	</tr>
		+	<tr>
		+	<td valign="top">9:45h</td><td bgcolor="#b9c2dc"><b>"Keynote: Introduction to Threat Modeling and the Process for Attack SImulation and Threat Analysis"</b><br> Marco Morana, SVP Cyber Security Citi<br></td>
		+	</tr>
−	= Registration =	+	<tr>
−	The conference is FREE but registration is required in order to reserve a seat at the conference. Please use the following link to reserve your seat:	+	<td valign="top">10:45h</td><td bgcolor="#eeeeee"><b>"SSRF present and future"</b><br>David Calligaris, Director of Vulnerability Research & Security Testing Automation Huawei Technologies GMBH<br></td>
		+	</tr>
−	Eventbrite link TBD	+	<tr>
		+	<td valign="top">11.30h</td><td bgcolor="#b9c2dc"><b>"Coffee Break"</b><br><br></td>
		+	</tr>
−	= Organization and goals =	+	<tr>
		+	<td valign="top">12.15h</td><td bgcolor="#b9c2dc"><b>"Testing for integrity flaws in web sessions"</b><br>Stefano Calzavara, Assistant professor - Università Ca' Foscari Venezia<br></td>
		+	</tr>
−	* This conference will be organized by OWASP Italy with the logistical support of OWASP foundation. The conference hosts are [https://www.researchgate.net/profile/Marino_Miculan Prof Marino Miculan] Department of Computer Sciences, University of Udine and OWASP Italy chair [https://www.owasp.org/index.php/Matteo_Meucci Ing. Matteo Meucci].	+	<tr>
−	* The conference main goal is to stimulate interest in application and secure software engineering practices and learn about web application security, cloud security and security of emerging technologies.	+	<td valign="top">13:00h</td><td bgcolor="#eeeeee"><b>"End of the OWASP day"</b><br></td>
		+	</tr>
−	= Sponsors =	+	</table>
		+	<font size="2pt">
−	Conference and event dinner sponsorships are available. Sponsorship is the best opportunity to provide visibility to your company’s brand to the attendees at the conference. Sponsors company logos will also published on the conference web pages the will be also announced through OWASP PR channels and social media sites. Speakers of conference sponsors companies/organizations will be given priority to present. If you are a company/vendor and wish to sponsor the event, please contact [https://www.owasp.org/index.php/Italy OWASP Italy] for details.	+	<br><br>
−	= Call For Papers =
−	The [https://www.owasp.org/images/d/da/OWASP_Day_2019_CFP.pdf CFP] is now open. The deadline for paper submission to the CFP is July 28th 2019. The top 5, 6 papers will be selected. For the format of the presentations refer to the [https://www.owasp.org/index.php/Category:OWASP_Presentations OWASP presentation guidelines] . The contents of the presentation must follow OWASP guidelines regarding copyright and non-product bias presentation style.
	__NOTOC__		__NOTOC__
	[[Category:Italy]]		[[Category:Italy]]

---

Latest revision as of 09:05, 8 January 2020

Back to the Italian Chapter

Following on from the great successes of last year OWASP Italy day conference the 2019 OWASP Italy conference has been held at the University of Udine on December 14th, 2019.

The Open Web Application Security Project, or OWASP, is an international non-profit organization dedicated to web and application security. OWASP is organized as an online community that produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. Many standards, books, tools, and organizations reference the Top OWASP 10 project, including MITRE, PCI DSS, the Defense Information Systems Agency (DISA-STIG), the United States Federal Trade Commission (FTC) and many more. The OWASP Testing Guide includes a "best practice" penetration testing framework that users can implement in their own organizations and a "low level" penetration testing guide that describes techniques for testing most common web application and web service security issues.

The University of Udine The University of Udine is a young and dynamic university, whose mission, since its foundation in 1978, has been to promote higher education through generation of new ideas and worldwide connections. It is situated in Udine, a town in Friuli Venezia Giulia Region, which historically has been a meeting place and crossroads of different worlds and cultures. The University of Udine is ranked eighth among Universities in Italy in terms of education quality and research and it has just celebrated its 40th birthday last year.

OWASP Italy Day is a one-day conference focused on web application and software security, application security testing tools and technologies. This year special topic of interest is threat modeling.

This conference provided a unique opportunity to learn about application security topics and to network with application security professionals/managers, software engineers, software quality engineers/testers and computer science students.

Presentations

• 

  Marco Morana: "Introduction to Threat Modeling and the Process for Attack Simulation and Threat Analysis"

• 

  David Calligaris: "SSRF present and future"

• 

  Stefano Calzavara: "Testing for integrity flaws in web sessions"

Agenda

9:00h	"Registration of the participants"
9:30h	"Welcome and opening of the works" Prof. Marino Miculan,- Università degli Studi di Udine, Matteo Meucci OWASP Italy
9:45h	"Keynote: Introduction to Threat Modeling and the Process for Attack SImulation and Threat Analysis" Marco Morana, SVP Cyber Security Citi
10:45h	"SSRF present and future" David Calligaris, Director of Vulnerability Research & Security Testing Automation Huawei Technologies GMBH
11.30h	"Coffee Break"
12.15h	"Testing for integrity flaws in web sessions" Stefano Calzavara, Assistant professor - Università Ca' Foscari Venezia
13:00h	"End of the OWASP day"