https://wiki.owasp.org/index.php?title=OWASP_AppSec_DC_2012/Enterprise_Security_API_ESAPI_for_C_Plus_Plus&feed=atom&action=historyOWASP AppSec DC 2012/Enterprise Security API ESAPI for C Plus Plus - Revision history2024-03-28T21:53:34ZRevision history for this page on the wikiMediaWiki 1.27.2https://wiki.owasp.org/index.php?title=OWASP_AppSec_DC_2012/Enterprise_Security_API_ESAPI_for_C_Plus_Plus&diff=126008&oldid=prevMark.bristow at 01:01, 12 March 20122012-03-12T01:01:12Z<p></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr style='vertical-align: top;' lang='en'>
<td colspan='2' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black; text-align: center;">Revision as of 01:01, 12 March 2012</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l2" >Line 2:</td>
<td colspan="2" class="diff-lineno">Line 2:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>__NOTOC__</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>__NOTOC__</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Presentation  ==</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Presentation  ==</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div><del class="diffchange diffchange-inline">[[Image:Owasp_logo_normal.jpg|right]]</del>OWASP Enterprise Security API (ESAPI) for C Plus Plus<br>ESAPI is a free, open source, application security control library that makes it easier for programmers to write lower-risk applications.  This presentation will give background on the ESAPI project as a whole, and focus on the C++ specific version.  The initial ESAPI for C++ release is planned to happen in April 2012 and will be cross-platform, and compiler agnostic.<br>Key points:<br>-ESAPI Project Overview -ESAPI for C Plus Plus -Integrating Security Controls (DEMO) -ESAPI Future (3.0)<br> The ESAPI Project Overview will summarize what an Enterprise Security API is, why it is needed, and how it is meant to be incorporated into an application architecture.<br>Why is building an ESAPI for C++ necessary and relevent to developers? What approach has been taken to building the C++ API, and how does this relate to other ESAPI projects? Lots of thought has been put into the architecture and libraries that are being used in the ESAPI for C++. This presentation will provide details on the project and it's current state, as well as future plans, and how to get involved.<br>Integrating Security Controls will be a short demonstration on how to use the ESAPI for C++ to add security to a vulnerable application.<br>The ESAPI project is continuing to evolve and there are exciting plans for the 3.0 specification. This will include an ESAPI Community, a Pluggable Architecture, and lots of Documentation and Tutorials.</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div>OWASP Enterprise Security API (ESAPI) for C Plus Plus<br>ESAPI is a free, open source, application security control library that makes it easier for programmers to write lower-risk applications.  This presentation will give background on the ESAPI project as a whole, and focus on the C++ specific version.  The initial ESAPI for C++ release is planned to happen in April 2012 and will be cross-platform, and compiler agnostic.<br>Key points:<br>-ESAPI Project Overview -ESAPI for C Plus Plus -Integrating Security Controls (DEMO) -ESAPI Future (3.0)<br> The ESAPI Project Overview will summarize what an Enterprise Security API is, why it is needed, and how it is meant to be incorporated into an application architecture.<br>Why is building an ESAPI for C++ necessary and relevent to developers? What approach has been taken to building the C++ API, and how does this relate to other ESAPI projects? Lots of thought has been put into the architecture and libraries that are being used in the ESAPI for C++. This presentation will provide details on the project and it's current state, as well as future plans, and how to get involved.<br>Integrating Security Controls will be a short demonstration on how to use the ESAPI for C++ to add security to a vulnerable application.<br>The ESAPI project is continuing to evolve and there are exciting plans for the 3.0 specification. This will include an ESAPI Community, a Pluggable Architecture, and lots of Documentation and Tutorials.</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Speakers  ==</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Speakers  ==</div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>Dan Amodio</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><table></ins></div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div> </div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><tr></ins></div></td></tr>
<tr><td class='diff-marker'>−</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #ffe49c; vertical-align: top; white-space: pre-wrap;"><div>Dan Amodio is a Security Engineer at Aspect Security, where he provides application security services to a variety of clients. His experience spans a wide variety of IT departments to include software development, penetration testing, code review, architecture review, hardware and software technical support, along with active participation in The Open Web Application Security Project (OWASP). Dan has over ten years of programming experience in a variety of languages.</div></td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline"><td></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">===</ins>Dan Amodio<ins class="diffchange diffchange-inline">===</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins class="diffchange diffchange-inline">[[Image:Owasp_logo_normal.jpg|left]]</ins>Dan Amodio is a Security Engineer at Aspect Security, where he provides application security services to a variety of clients. His experience spans a wide variety of IT departments to include software development, penetration testing, code review, architecture review, hardware and software technical support, along with active participation in The Open Web Application Security Project (OWASP). Dan has over ten years of programming experience in a variety of languages.  </div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>Outside of work, Dan enjoys spending time with his wife and daughter. He is a longtime musician, and exercises his attention to detail through performing, recording and sound engineering.</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>Outside of work, Dan enjoys spending time with his wife and daughter. He is a longtime musician, and exercises his attention to detail through performing, recording and sound engineering.</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></td></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></tr></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></table></ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div><noinclude>{{:OWASP AppSec DC 2012 Footer}}</noinclude></div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div><noinclude>{{:OWASP AppSec DC 2012 Footer}}</noinclude></div></td></tr>
</table>Mark.bristowhttps://wiki.owasp.org/index.php?title=OWASP_AppSec_DC_2012/Enterprise_Security_API_ESAPI_for_C_Plus_Plus&diff=125875&oldid=prevDallendoug at 05:33, 10 March 20122012-03-10T05:33:03Z<p></p>
<table class="diff diff-contentalign-left" data-mw="interface">
<col class='diff-marker' />
<col class='diff-content' />
<col class='diff-marker' />
<col class='diff-content' />
<tr style='vertical-align: top;' lang='en'>
<td colspan='2' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='2' style="background-color: white; color:black; text-align: center;">Revision as of 05:33, 10 March 2012</td>
</tr><tr><td colspan="2" class="diff-lineno" id="mw-diff-left-l5" >Line 5:</td>
<td colspan="2" class="diff-lineno">Line 5:</td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Speakers  ==</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>== The Speakers  ==</div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>Dan Amodio</div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div>Dan Amodio</div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">Dan Amodio is a Security Engineer at Aspect Security, where he provides application security services to a variety of clients. His experience spans a wide variety of IT departments to include software development, penetration testing, code review, architecture review, hardware and software technical support, along with active participation in The Open Web Application Security Project (OWASP). Dan has over ten years of programming experience in a variety of languages.</ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;"></ins></div></td></tr>
<tr><td colspan="2"> </td><td class='diff-marker'>+</td><td style="color:black; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #a3d3ff; vertical-align: top; white-space: pre-wrap;"><div><ins style="font-weight: bold; text-decoration: none;">Outside of work, Dan enjoys spending time with his wife and daughter. He is a longtime musician, and exercises his attention to detail through performing, recording and sound engineering.</ins></div></td></tr>
<tr><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div><noinclude>{{:OWASP AppSec DC 2012 Footer}}</noinclude></div></td><td class='diff-marker'> </td><td style="background-color: #f9f9f9; color: #333333; font-size: 88%; border-style: solid; border-width: 1px 1px 1px 4px; border-radius: 0.33em; border-color: #e6e6e6; vertical-align: top; white-space: pre-wrap;"><div><noinclude>{{:OWASP AppSec DC 2012 Footer}}</noinclude></div></td></tr>
</table>Dallendoughttps://wiki.owasp.org/index.php?title=OWASP_AppSec_DC_2012/Enterprise_Security_API_ESAPI_for_C_Plus_Plus&diff=125474&oldid=prevMark.bristow: Created page with "<noinclude>{{:OWASP AppSec DC 2012 Header}}</noinclude> __NOTOC__ == The Presentation == rightOWASP Enterprise Security API (ESAPI) for C Plus..."2012-03-02T20:55:20Z<p>Created page with "<noinclude>{{:OWASP AppSec DC 2012 Header}}</noinclude> __NOTOC__ == The Presentation == <a href="/index.php/File:Owasp_logo_normal.jpg" title="File:Owasp logo normal.jpg">right</a>OWASP Enterprise Security API (ESAPI) for C Plus..."</p>
<p><b>New page</b></p><div><noinclude>{{:OWASP AppSec DC 2012 Header}}</noinclude><br />
__NOTOC__<br />
== The Presentation ==<br />
[[Image:Owasp_logo_normal.jpg|right]]OWASP Enterprise Security API (ESAPI) for C Plus Plus<br>ESAPI is a free, open source, application security control library that makes it easier for programmers to write lower-risk applications. This presentation will give background on the ESAPI project as a whole, and focus on the C++ specific version. The initial ESAPI for C++ release is planned to happen in April 2012 and will be cross-platform, and compiler agnostic.<br>Key points:<br>-ESAPI Project Overview -ESAPI for C Plus Plus -Integrating Security Controls (DEMO) -ESAPI Future (3.0)<br> The ESAPI Project Overview will summarize what an Enterprise Security API is, why it is needed, and how it is meant to be incorporated into an application architecture.<br>Why is building an ESAPI for C++ necessary and relevent to developers? What approach has been taken to building the C++ API, and how does this relate to other ESAPI projects? Lots of thought has been put into the architecture and libraries that are being used in the ESAPI for C++. This presentation will provide details on the project and it's current state, as well as future plans, and how to get involved.<br>Integrating Security Controls will be a short demonstration on how to use the ESAPI for C++ to add security to a vulnerable application.<br>The ESAPI project is continuing to evolve and there are exciting plans for the 3.0 specification. This will include an ESAPI Community, a Pluggable Architecture, and lots of Documentation and Tutorials.<br />
== The Speakers ==<br />
Dan Amodio<br />
<noinclude>{{:OWASP AppSec DC 2012 Footer}}</noinclude></div>Mark.bristow