Difference between revisions of "OWASP AppSec DC 2012/Schedule/4-5-2012"

Revision as of 01:39, 9 March 2012

Plenary Day 2 - 4/5/2012
	Critical Infrastructure	Defend!	On the Go	SDLC
7:30 AM - 9:00 AM	Registration
9:00 AM - 9:50 AM	Pentesting Smart Grid Web Apps Justin Searle	Friends don't let friends store passwords in source code Neil Matatall	Smart Bombs: Mobile Vulnerability and Exploitation Kevin Johnson, John Sawyer and Tom Eston	Overcoming the Quality vs. Quantity Problem in Software Security Testing Rafal Los
9:00 AM - 9:50 AM	Pentesting Smart Grid Web Apps Justin Searle	Web Application Defense with Bayesian Attack Analysis Ryan Barnett
9:50 AM - 10:00 AM	Coffee Breakß
10:00 AM - 10:50 AM	Vulnerabilities in Industrial Control Systems ICS-CERT	Access Control Jim Manico	Software Security Goes Mobile Jacob West	Baking In Security, Sweet, Secure, Cupcakes Ken Johnson and Matt Ahrens
10:50 AM - 11:00 AM	Coffee Break
11:00 AM - 11:50 AM	Denial of Surface. Eireann Leverett	SharePoint Security 101 Rob Rachwald, Amichai Shulman and Noa Bar-Yosef	Behind Enemy Lines - Practical& Triage Approaches to Mobile Security Abroad - 2012 Edition Justin Morehouse	Understanding IAST - More Context, Better Analysis Jeff Williams
11:50 AM - 1:00 PM	Lunch
1:00 PM - 1:50 PM	Project Basecamp: News from Camp 4 Reid Wightman	Enterprise Security API (ESAPI) for C Plus Plus Dan Amodio	Whack-a-Mobile II: Mobile App Pen Testing with the MobiSec Live Environment Kevin Johnson and Tony Delagrange	Baking Security In - How to Get Every IT Architect to Become a Security Ambassador Michele Guel
1:50 PM - 2:00 PM	Coffee Break
2:00 PM - 2:50 PM	Real world backdoors on industrial devices Ruben Santamarta	Dynamic DAST/WAF Integration Ryan Barnett	An In-Depth Introduction to the Android Permissions Model, and How to Secure Multi-Component Applications Jeff Six	Teaching an Old Dog New Tricks: Securing Development with PMD Joe Hemler
2:50 PM - 3:00 PM	Coffee Break
3:00 PM - 3:50 PM	AMI Security John Sawyer and Don Weber	Cloud-based dWAF: A Real World Deployment Case Study Alexander Meisel	TBA	What can an Acquirer do to prevent developers from make dangerous software errors? Michele Moss and Don Davidson
3:50 PM - 4:00 PM	Coffee Break
4:00 PM - 4:50 PM	Securing Critical Infrastructure Francis Cianfrocca and Bob Lam	Using PHPIDS to Understand Attacks Trends Salvador Grec	Mobile Application Security - Who, how and why Mike Park and Charles Henderson	Private information Protection in Cloud Computing _ Laws, Compliance and Cloud Security Misconceptions Mikhail Utin and Daniil Utin
5:00 PM	Closing Remarks

@@ Line 84: / Line 84: @@
 |  align=center width=200 valign=middle height=60 bgcolor=#ffdf80 align=center | [https://www.owasp.org/index.php/OWASP_AppSec_DC_2012/Cloudbased_dWAF_A_Real_World_Deployment_Case_Study Cloud-based dWAF: A Real World Deployment Case Study]<br><br>
 Alexander Meisel
-|  align=center width=200 valign=middle height=60 bgcolor=#a0c0e0 align=center | [https://www.owasp.org/index.php/OWASP_AppSec_DC_2012/Threat_Profiling_the_Mobile_Application_Ecosystem Threat Profiling the Mobile Application Ecosystem]<br><br>
+|  align=center width=200 valign=middle height=60 bgcolor=#a0c0e0 align=center | TBA
-Rafal Los
 |  align=center width=200 valign=middle height=60 bgcolor=#b3ff99 align=center | [https://www.owasp.org/index.php/OWASP_AppSec_DC_2012/What_can_an_Acquirer_do_to_prevent_developers_from_makedangerous_software_errors What can an Acquirer do to prevent developers from make dangerous software errors?]<br><br>
 Michele Moss and Don Davidson

Difference between revisions of "OWASP AppSec DC 2012/Schedule/4-5-2012"

Revision as of 01:39, 9 March 2012

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools