This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "New Jersey"

From OWASP
Jump to: navigation, search
Line 1: Line 1:
 
{{Chapter Template|chaptername=NY/NJ |extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-newjersey|emailarchives=http://lists.owasp.org/pipermail/owasp-newjersey}}   
 
{{Chapter Template|chaptername=NY/NJ |extra= | mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-newjersey|emailarchives=http://lists.owasp.org/pipermail/owasp-newjersey}}   
  
==OCTOBER 25th MEETING==
+
==OCTOBER 25th 2007 MEETING==
 
Full Day, information security summit happening in New Jersey on October 25th. At this all day event, learn from industry experts on topics of information security.  There is no charge for this event however <b> YOU MUST RSVP </b>  
 
Full Day, information security summit happening in New Jersey on October 25th. At this all day event, learn from industry experts on topics of information security.  There is no charge for this event however <b> YOU MUST RSVP </b>  
  
 
===PRIMARY SPONSOR: [http://aboutus.vzw.com/aboutusoverview.html VERIZON WIRELESS]===
 
===PRIMARY SPONSOR: [http://aboutus.vzw.com/aboutusoverview.html VERIZON WIRELESS]===
COSPONSORS: <b>    [http://intrepidusgroup.com Intrepidus Group] --- [http://www.cenzic.com Cenzic] --- [http://www.accessitgroup.com/services/security.php AccessIT Group] --- [http://www.net2s.com NET2S]</b>
+
COSPONSORS: <b>    [http://intrepidusgroup.com Intrepidus Group] --- [http://www.cenzic.com Cenzic] --- [http://www.accessitgroup.com/services/security.php AccessIT Group] --- [http://www.net2s.com NET2S] --- [http://www.symantec.com SYMANTEC</b>
  
 
<b>Meeting Address:</b> 295 N Maple Ave, Basking Ridge, NJ 07920 ~ [http://tinyurl.com/2vuh7f Directions]
 
<b>Meeting Address:</b> 295 N Maple Ave, Basking Ridge, NJ 07920 ~ [http://tinyurl.com/2vuh7f Directions]
Line 12: Line 12:
 
---
 
---
  
TOPIC: <b>Keynote</b>  
+
TOPIC: <b>Can you hear me now...</b>  
SPEAKER: Renato Delatorre, [http://www.verizonwireless.com Verizon Wireless]
+
SPEAKER: Renato Delatorre
  
 
---
 
---
  
TOPIC: <b>Social Engineering</b>  
+
TOPIC: <b>Ready...Set...Click </b> We can no longer think about consumer interaction and security as two different topics on opposite ends of the spectrum. They're two very important and very inter-related topics that affect everyone. The speech will describe real world flaws, poorly designed security and what hackers are doing to exploit today's websites. Lastly, it will show some forward thinking mitigation tactics.
SPEAKER: Kevin Mitnick
+
 
 +
SPEAKER:
 +
Robert "RSnake" Hansen. He has worked in the security industry since the mid 1990s and helped pioneer leading banner advertising and click fraud detection solutions. During his tenure at eBay, Mr. Hansen worked on anti-cross site scripting, anti-phishing, anti-virus and web application intrusion detection and countermeasures and was directly responsible for the company's entire authentication architecture. For many years he ran the managed security services product lines for Cable & Wireless. He has spoken at Blackhat, Microsoft's Bluehat, the Rotary, OWASP, the Gartner security round table and at Networld+Interop.  He is a member of WASC, OWASP, ISC2, APWG and ISSA.
  
 
---
 
---
  
TOPIC:
+
TOPIC: <b>Dig Your Own Hole: 12 Ways to Go Wrong with Java Security</b> This session explores 12 of the most common security traps in Java. This session doesn’t include a review of 10–year–old guidelines for writing secure applets with JDK 1.1. Instead, it looks at causes of security failures in modern Java–based applications. Approaching security with an “outside in” style, it looks at vulnerabilities from a developer’s perspective, focusing on the source code.  
We can no longer think about consumer interaction and security as two different topics on opposite ends of the spectrum. They're two very important and very inter-related topics that affect everyone. The speech will describe real world flaws, poorly designed security and what hackers are doing to exploit today's websites. Lastly, it will show some forward thinking mitigation tactics.
 
  
SPEAKER:
+
SPEAKER:  Eric Cabetas
Robert "RSnake" Hansen is the CEO of SecTheory.com, a network and web application security consulting firm. He has worked in the security industry since the mid 1990s and helped pioneer leading banner advertising and click fraud detection solutions. During his tenure at eBay, Mr. Hansen worked on anti-cross site scripting, anti-phishing, anti-virus and web application intrusion detection and countermeasures and was directly responsible for the company's entire authentication architecture. For many years he ran the managed security services product lines for Cable & Wireless. He has spoken at Blackhat, Microsoft's Bluehat, the Rotary, OWASP, the Gartner security round table and at Networld+Interop. He is a member of WASC, OWASP, ISC2, APWG and ISSA.
 
  
 
---
 
---
  
TOPIC: <b>ISO 27001 What is it... Why do you care?</b>
+
TOPIC: <b>BS7799/ISO17799/ISO27001 What is it... Why do you care?</b> Organizations may be certified compliant with ISO 27001 by a number of accredited certification bodies worldwide. Certification against any of the recognized national variants of ISO 27001 (e.g. the Japanese version) by an accredited certification body is functionally equivalent to certification against ISO 27001 itself. Certification audits are usually led/conducted by ISO 27001 Lead Auditors.
SPEAKER: Mahi Dontamsetti  
+
 
 +
SPEAKER: Mahi Dontamsetti
  
 
--  
 
--  
  
TOPIC: <b>VOIP - Can you hear me now?</b>
+
TOPIC: <b>VOIP - Can you hear me now?</b> This talk will focus on VOIP and its security. This talk will educate you concerning SIP and scare you at the same time ;) as seen by many at Blackhat 2007'
SPEAKER: Paul Rohmeyer, Michael McCobb
+
 
 +
SPEAKER: Paul Rohmeyer Ph.D.
  
 
---
 
---
  
TOPIC: <b>Dig Your Own Hole: 12 Ways to Go Wrong with Java Security</b>
+
TOPIC: <b>Mobile Security: Past, Present, and Future</b>
SPEAKER:  Richard Bowen
 
  
--
 
 
TOPIC: <b>Mobile Security </b>
 
 
SPEAKER: Corey Benninger  
 
SPEAKER: Corey Benninger  
  
 
---
 
---
  
TOPIC: <b>Cutting Edge Application Analysis</b>
+
TOPIC: <b>Cutting Edge Application Analysis</b> New techniques to test web applications will be discussed
 +
 
 
SPEAKER: Frank Gardner
 
SPEAKER: Frank Gardner
  
 
---
 
---
  
TOPIC: <b>Internet Fraud </b>
+
TOPIC: <b>Internet Fraud</b> Case Study of Internet Fraud
 +
 
 
SPEAKER: Mike Esposito
 
SPEAKER: Mike Esposito
  

Revision as of 00:37, 28 September 2007

OWASP NY/NJ

Welcome to the NY/NJ chapter homepage.


Participation

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.

Sponsorship/Membership

Btn donate SM.gif to this chapter or become a local chapter supporter. Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG


OCTOBER 25th 2007 MEETING

Full Day, information security summit happening in New Jersey on October 25th. At this all day event, learn from industry experts on topics of information security. There is no charge for this event however YOU MUST RSVP

PRIMARY SPONSOR: VERIZON WIRELESS

COSPONSORS: Intrepidus Group --- Cenzic --- AccessIT Group --- NET2S --- [http://www.symantec.com SYMANTEC

Meeting Address: 295 N Maple Ave, Basking Ridge, NJ 07920 ~ Directions October 25th 9:00am-4:30pm

---

TOPIC: Can you hear me now... SPEAKER: Renato Delatorre

---

TOPIC: Ready...Set...Click We can no longer think about consumer interaction and security as two different topics on opposite ends of the spectrum. They're two very important and very inter-related topics that affect everyone. The speech will describe real world flaws, poorly designed security and what hackers are doing to exploit today's websites. Lastly, it will show some forward thinking mitigation tactics.

SPEAKER: Robert "RSnake" Hansen. He has worked in the security industry since the mid 1990s and helped pioneer leading banner advertising and click fraud detection solutions. During his tenure at eBay, Mr. Hansen worked on anti-cross site scripting, anti-phishing, anti-virus and web application intrusion detection and countermeasures and was directly responsible for the company's entire authentication architecture. For many years he ran the managed security services product lines for Cable & Wireless. He has spoken at Blackhat, Microsoft's Bluehat, the Rotary, OWASP, the Gartner security round table and at Networld+Interop. He is a member of WASC, OWASP, ISC2, APWG and ISSA.

---

TOPIC: Dig Your Own Hole: 12 Ways to Go Wrong with Java Security This session explores 12 of the most common security traps in Java. This session doesn’t include a review of 10–year–old guidelines for writing secure applets with JDK 1.1. Instead, it looks at causes of security failures in modern Java–based applications. Approaching security with an “outside in” style, it looks at vulnerabilities from a developer’s perspective, focusing on the source code.

SPEAKER: Eric Cabetas

---

TOPIC: BS7799/ISO17799/ISO27001 What is it... Why do you care? Organizations may be certified compliant with ISO 27001 by a number of accredited certification bodies worldwide. Certification against any of the recognized national variants of ISO 27001 (e.g. the Japanese version) by an accredited certification body is functionally equivalent to certification against ISO 27001 itself. Certification audits are usually led/conducted by ISO 27001 Lead Auditors.

SPEAKER: Mahi Dontamsetti

--

TOPIC: VOIP - Can you hear me now? This talk will focus on VOIP and its security. This talk will educate you concerning SIP and scare you at the same time ;) as seen by many at Blackhat 2007'

SPEAKER: Paul Rohmeyer Ph.D.

---

TOPIC: Mobile Security: Past, Present, and Future

SPEAKER: Corey Benninger

---

TOPIC: Cutting Edge Application Analysis New techniques to test web applications will be discussed

SPEAKER: Frank Gardner

---

TOPIC: Internet Fraud Case Study of Internet Fraud

SPEAKER: Mike Esposito

---


RSVP NOW

To submit educational topic for upcoming meeting please provide submit your powerpoint using the OWASP Template and include a speaker BIO. If you wish to become a sponsor or co-sponsor please click on one of the below email addresses of our active board members.

NY/NJ OWASP Chapter Leaders


The chapter mailing address is:

NY/NJ Metro OWASP 759 Bloomfield Ave #172 West Caldwell, New Jersey 07006
973-202-0122











~