This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org
Difference between revisions of "OWASP EU Summit 2008"
From OWASP
| Line 58: | Line 58: | ||
== FORMER AGENDA == | == FORMER AGENDA == | ||
[[:OWASP EU Summit 2008 Former Agenda|Click here to see.]] | [[:OWASP EU Summit 2008 Former Agenda|Click here to see.]] | ||
| + | |||
| + | == EVENT ACTUAL AGENDA == | ||
| + | |||
| + | {| style="width:80%" border="0" align="center" | ||
| + | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Monday, November 3rd, 2008 | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="4" style="width:80%; background:#B36B00" align="center" | Lunch | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="4" style="width:80%; background:#c0e0e0" align="center" | Training Sessions | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 15:00 to 17:00 || style="width:30%; background:#c0e0e0" align="center" | Securing WebGoat with ModSecurity | ||
| + | Stephen Craig Evans | ||
| + | | style="width:30%; background:#c0e0e0" align="center" | WebSec Apps for Managers and Executives | ||
| + | Mano Paul | ||
| + | | style="width:30%; background:#c0e0e0" align="center" | OWASP Testing Guide | ||
| + | Matteo Meucci | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 19:00 || colspan="4" style="background:#FFFF00" align="center" | Summit Briefing | ||
| + | Dinis Cruz and Summit Organization Team | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 20:00 || colspan="4" style="background:#B36B00" align="center" | OWASPers Dinner | ||
| + | |} | ||
| + | |||
| + | |||
| + | {| style="width:80%" border="0" align="center" | ||
| + | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Tuesday, November 4th, 2008 | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 08:00 || colspan="4" style="width:80%; background:#FFBFEF" align="center" | Registration | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 09:00 || colspan="4" style="width:80%; background:#FFFF00" align="center" | Summit Keynote | ||
| + | Dinis Cruz and Summit Organization Team | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Documents | ||
| + | | colspan="2" style="width:30%; background:#80FF80" align="center" | Tools | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 09:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Testing Guide | ||
| + | Matteo Meucci | ||
| + | | colspan="2" style="background:#80FF80" align="center" | OWASP JSP Testing Tool | ||
| + | Jason Li | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 09:45 || colspan="2" style="background:#80FF80" align="center" | OWASP Code Review Guide | ||
| + | Eoin Keary | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Orizon Project | ||
| + | Paolo Perego (a.k.a. thesp0nge) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Application Security Desk Reference (ADSR) | ||
| + | Leonardo Cavallari Militelli | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Live CD | ||
| + | Matt Tesauro | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80" align="center" | OWASP Spanish Project | ||
| + | Juan Carlos Calderon | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | WebScarab-NG | ||
| + | Rogan Dawes | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:30 || colspan="5" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:#80FF80" align="center" | .NET ESAPI | ||
| + | Alex Smolen | ||
| + | | colspan="2" style="background:#80FF80" align="center" | JBroFuzz | ||
| + | Yiannis | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:00 || colspan="6" style="background:#FFFF00" align="center" | Working Sessions Briefing | ||
| + | Dinis Cruz | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="6" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:15 || style="background:#7B8ABD" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version | ||
| + | Chair: Eduardo Neves | ||
| + | | style="background:#7B8ABD" align="center" | Browser Security | ||
| + | Chair: Arshan Dabirsiaghi | ||
| + | Secretary: Kuai Hinojosa | ||
| + | | style="background:#7B8ABD" align="center" | Tools Projects | ||
| + | Chair: Matt Tesauro | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 13:00 || colspan="4" style="background:#B36B00" align="center" | Lunch | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 14:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | The Art and Science of Threat Modeling Web Applications | ||
| + | Mano Paul | ||
| + | | style="background:#c0e0e0" align="center" | Web Server Hardening SELinux | ||
| + | Pavol Luptak | ||
| + | | style="background:#c0e0e0" align="center" | Offensive WebApp Hacking | ||
| + | Marco Slaviero | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 16:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 16:30 || colspan="4" style="background:#7B8ABD " align="center" | ESAPI | ||
| + | Chair: Jeff Williams | ||
| + | Secretary: Arshan Dabirsiaghi | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 18:30 || colspan="2" style="background:#7B8ABD" align="center" | ASDR | ||
| + | Chair: Leonardo Cavallari | ||
| + | | style="background:#7B8ABD " align="center" | .NET Project | ||
| + | Chair: Dinis Cruz | ||
| + | |} | ||
| + | |||
| + | |||
| + | |||
| + | {| style="width:80%" border="0" align="center" | ||
| + | | colspan="5" align="center" style="background:#4058A0; color:white" | Agenda for Wednesday, November 5th, 2008 | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="4" style="width:80%; background:#FFFF00" align="center" | Daily Briefing: | ||
| + | Dinis Cruz | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Standards and Education | ||
| + | (Room 1) | ||
| + | | colspan="2" style="width:30%; background:#80FF80" align="center" | Tools | ||
| + | (Room 2) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Positive_Security_Project '''OWASP Positive Security (SoC 08)'''] | ||
| + | Eduardo Vianna de Camargo Neves | ||
| + | | colspan="2" style="background:#80FF80" align="center" | OWASP Access Control Rules Tester Project | ||
| + | Andrew Petukhov | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80" align="center" | [http://www.owasp.org/index.php/Category:OWASP_Education_Project '''OWASP Education'''] | ||
| + | Sebastien Deleersnyder, Martin Knobloch | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Teachable Static Analysis Workbench | ||
| + | Dmitry Kozlov | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Internationalization Guidelines | ||
| + | Juan Carlos Calderon | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | [http://www.owasp.org/index.php/Category:OWASP_AppSensor_Project OWASP AppSensor] | ||
| + | Michael Coates | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:45 || colspan="2" style="background:#80FF80" align="center" | PASSWD:Metrics and Vulnerabilities | ||
| + | Lucilla Mancini | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Backend Security Project | ||
| + | Carlo Pelliccioni | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Open Review Project | ||
| + | Dan Cornell | ||
| + | | colspan="2" style="background:#80FF80 " align="center" | OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project | ||
| + | Dmitry Kozlov | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:15 || colspan="4" style="background:#80FF80" align="center" | OWASP Global Committee Elections | ||
| + | (Room 1) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:30 || colspan="4" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 12:45 || style="background:#7B8ABD" align="center" | ''Education Project'' | ||
| + | Chair: Sebastien Deleersnyder | ||
| + | (Room 1) | ||
| + | | style="background:#7B8ABD" align="center" | ''Testing Guide'' | ||
| + | Chair: Matteo Meucci | ||
| + | (Room 2) | ||
| + | | colspan="2" style="background:#7B8ABD" align="center" | ''Web Application Framework Security'' | ||
| + | Chair: Arshan Dabirsiaghi | ||
| + | Secretary: Kuai Hinojosa | ||
| + | (Room 3) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 14:45 || colspan="4" style="background:#B36B00" align="center" | Lunch During Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 15:00 || colspan="4" style="background:#c0e0e0" align="center" | Training Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 15:00|| style="background:#c0e0e0" align="center" | Flash Player Security | ||
| + | Peleus Uhley | ||
| + | (Room 1) | ||
| + | | style="background:#c0e0e0" align="center" | OWASP Top 10 | ||
| + | Sebastien Deleersnyder and Martin Knobloch | ||
| + | (Room 2) | ||
| + | | style="background:#c0e0e0" align="center" | Uncovering WebScarab's Secret Treasures | ||
| + | Rogan Dawes | ||
| + | (Sala Bella Vista) | ||
| + | | style="background:#c0e0e0" align="center" | [http://www.owasp.org/index.php/Image:Hacking_the_Owasp_Orizon.ppt Hacking the Orizon] | ||
| + | Paolo Perego | ||
| + | (Room 3) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 17:00 || colspan="4" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="4" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 17:30 || style="background:#7B8ABD " align="center" | Code Review Guide | ||
| + | Chair: Eoin Keary | ||
| + | (Room 2) | ||
| + | | style="background:#7B8ABD " align="center" | EU Funding for OWASP Projects | ||
| + | Chair: Carlos Serrao | ||
| + | (Sala Bella Vista) | ||
| + | | style="background:#7B8ABD " align="center" | OWASP Certification | ||
| + | Chair: Tom Brennan | ||
| + | (Room 1) | ||
| + | | style="background:#7B8ABD " align="center" | Software Assurance Maturity Model | ||
| + | Chair: Pravir Chandra | ||
| + | (Room 3) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 19:00 || style="background:#7B8ABD " align="center" | OWASP Website | ||
| + | Chair: Favio Cerull | ||
| + | (Room 1) | ||
| + | | style="background:#7B8ABD " align="center" | Metrics & Vulnerabilities | ||
| + | Chair: Lucilla Mancini | ||
| + | (Room 2) | ||
| + | | colspan="2" style="background:#7B8ABD " align="center" | OWASP Orizon | ||
| + | Paolo Perego | ||
| + | (Room 3) | ||
| + | |} | ||
| + | |||
| + | |||
| + | {| style="width:80%" border="0" align="center" | ||
| + | | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Thursday, November 6th, 2008 | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 09:15 || colspan="5" style="width:80%; background:#FFFF00" align="center" | Daily Briefing: | ||
| + | Dinis Cruz | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="2" style="width:30%; background:#80FF80" align="center" | Technology | ||
| + | | colspan="3" style="width:30%; background:#80FF80" align="center" | Tools | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:00|| colspan="2" style="background:#80FF80" align="center" | OWASP Classic ASP Security Project | ||
| + | Juan Carlos Calderon | ||
| + | | colspan="3" style="background:#80FF80" align="center" | OWASP Source Code Review | ||
| + | James Walden | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:15 || colspan="2" style="background:#80FF80 " align="center" | OWASP Ruby on Rails Security Project | ||
| + | Heiko Webers | ||
| + | | colspan="3" style="background:#80FF80 " align="center" | OWASP Enigmaform and mod_Openpgp | ||
| + | Arturo Alberto Busleiman (a.k.a. Buanzo) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 10:30 || colspan="2" style="background:#80FF80" align="center" | OWASP Webslayer Project | ||
| + | Christian Martorella | ||
| + | | colspan="3" style="background:#80FF80 " align="center" | OWASP Securing WebGoat using ModSecurity | ||
| + | Stephen Evans and Christian Folini | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:00 || colspan="2" style="background:#80FF80" align="center" | OWASP Skavenger Project | ||
| + | Matthias Rohr | ||
| + | | colspan="3" style="background:#80FF80 " align="center" | OWASP AntiSAMI | ||
| + | Arshan Dabirsiaghi | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:15 || colspan="5" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 11:30 || style="background:#7B8ABD" align="center" | Top 10 | ||
| + | 2009 | ||
| + | Chair: Dave Wichers | ||
| + | Secretary: Jeff Williams | ||
| + | (Room 1) | ||
| + | | style="background:#7B8ABD" align="center" | Intra Governmental Affairs | ||
| + | Chair: David Campbell | ||
| + | (Room 2) | ||
| + | | style="background:#7B8ABD" align="center" | SAMM v2 | ||
| + | (Room 3) | ||
| + | | style="background:#7B8ABD" align="center" | Web Site | ||
| + | 12:15 | ||
| + | Executive Room | ||
| + | | style="background:#7B8ABD" align="center" | Handling Web MalWare | ||
| + | 12:15 | ||
| + | Sala Bella Vista | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Lunch During Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 14:00 || colspan="5" style="background:#c0e0e0" align="center" | Training Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || style="background:#c0e0e0" align="center" | Ajax Security | ||
| + | (Room 1) | ||
| + | | colspan="2" style="background:#c0e0e0" align="center" | Auditing Flash Applications | ||
| + | Peleus Uhley | ||
| + | (Room 2) | ||
| + | | style="background:#c0e0e0" align="center" | WebApp Assessment | ||
| + | Vicente Aguilera Diaz | ||
| + | (Room 3) | ||
| + | | style="background:#c0e0e0" align="center" | Mod Security | ||
| + | Lucas C. Ferreira | ||
| + | (Executive Room) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 13:00 || colspan="5" style="background:#B36B00" align="center" | Coffee Break | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | || colspan="5" style="background:#7B8ABD" align="center" | Working Sessions | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 16:30 || colspan="5" style="background:#7B8ABD " align="center" | Strategic Planning and Business Models compatible with OWASP values | ||
| + | Chair: Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, and Tom Brennan | ||
| + | Secretary: Kate Hartmann and Paulo Combra | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 18:30 || style="background:#7B8ABD " align="center" | 2-Way Internationalization | ||
| + | Chair: Juan Carlos Calderon and Sebastien Deleersnyder | ||
| + | (Room 1) | ||
| + | | style="background:#7B8ABD " align="center" | Best Practices for Chapter Leaders | ||
| + | Chair: Georg Hess | ||
| + | (Room 2) | ||
| + | | style="background:#7B8ABD " align="center" | Portuguese Public & Private Organizations | ||
| + | Chair: Carlos Serrao | ||
| + | (Room 3) | ||
| + | | style="background:#7B8ABD " align="center" | Live CD & DVD | ||
| + | Chair: Matt Tesauro | ||
| + | (Sala Bella Vista) | ||
| + | | style="background:#7B8ABD " align="center" | OWASP Awards | ||
| + | Chair: Colin Watson | ||
| + | (Executive Room) | ||
| + | |- | ||
| + | | style="background:#7B8ABD" | 20:00 || colspan="5" style="background:#B36B00 " align="center" | Gala Dinner - Restaurante de Real | ||
| + | |- | ||
| + | | style="background:#7B8ABD " | 22:00 || colspan="5" style="background:#B36B00 " align="center" | OWASP Band - LE CLUB | ||
| + | |} | ||
| + | |||
| + | |||
| + | {| style="width:80%" border="0" align="center" | ||
| + | | colspan="6" align="center" style="background:#4058A0; color:white" | Agenda for Friday, November 7th, 2008 | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 10:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | OWASP AppSec Agenda 2009: Working Session Outcomes | ||
| + | Dinis Cruz | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 10:15 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Results Presentations | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Documentation Projects/Guides Integration and Unified 4.0 Version | ||
| + | Chair: Eduardo Neves | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Browser Security | ||
| + | Chair: Arshan Dabirsiaghi | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | ESAPI | ||
| + | Chair: Jeff Williams | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Tools Projects | ||
| + | Chair: Matt Tesauro | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Code Review Guide | ||
| + | Chair: Eoin Keary | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Certification | ||
| + | Chair: Tom Brennan | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Software Assurance Maturity Model | ||
| + | Chair: Pravir Chandra | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Top 10 2009 | ||
| + | Chair: Dave Wichers | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Intra Governmental Affairs | ||
| + | Chair: David Campbell | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Best Practices for Chapter Leaders | ||
| + | Chair: Georg Hess | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 11:15 || colspan="6" style="width:80%; background:#B36B00" align="center" | Coffee Break and vote break (put your dots on the wall) | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 11:30 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Live CD & DVD | ||
| + | Chair: Matt Tesauro | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | ADSR | ||
| + | Chair: Leonardo Cavallari | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Education Project | ||
| + | Chair: Sebastien Deleersnyder | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Web Application Framework Security | ||
| + | Chair: Arshan Dabirsiaghi | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Testing Guide | ||
| + | Chair: Matteo Meucci | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Censorship | ||
| + | Chair: Tom Brennan | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | EU Funding for OWASP Projects | ||
| + | Chair: Carlos Serrao | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Website | ||
| + | Chair: Fabio Cerull | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | OWASP Orizon | ||
| + | Chair: Paolo Perego | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Handling Web MalWare | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | 2-Way Internationalization | ||
| + | Chair: Juan Carlos Calderon | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Portuguese Public & Private Organizations | ||
| + | Chair: Carlos Serrao | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 12:45 || colspan="6" style="width:80%; background:#C2C2C2" align="center" | Winter of Code 2009 | ||
| + | Chair: Dinis Cruz and Sebastien Deleersnyder | ||
| + | Secretary: Paulo Combra | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 13:00 || colspan="6" style="width:80%; background:#B36B00" align="center" | Lunch - During Winter of Code | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 14:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Board Meeting | ||
| + | |- | ||
| + | | style="width:10%; background:#7B8ABD" | 17:00 || colspan="6" style="width:80%; background:#FFFF00" align="center" | Announcement of Summit Procedings | ||
| + | |} | ||
Revision as of 14:08, 19 November 2008
 'SETTING THE WEB APPLICATION SECURITY AGENDA FOR 2009' 4th - 7th November 2008 |
<paypal>EU 08 Donation</paypal>
OWASP EU SUMMIT 2008 OVERVIEW - WATCH VIDEO
- OWASP Summit EU 2008 is a worldwide gathering of OWASP leaders and Key Industry Players to present and discuss the latest OWASP Tools and documentation projects.
- In addition to 40+ presentations from the OWASP Leaders granted 250,000 USD for web application security research, the summit will host multiple Working Sessions designed to improve collaboration, achieve specific objectives and decide roadmaps for OWASP projects, chapters and for the OWASP community itself.
- Containing both technical and business tracks, the Summit is the perfect place to learn what resources OWASP has available for use today.
- And with the confirmed presence of its most active leaders (OWASP is partially covering their expenses), the Summit will provide a relaxed but professional environment to meet the OWASP Leaders and to contribute to those project’s roadmaps for 2009.
- Following and expanding the tradition started at OWASP conferences, the Summit will also host the largest offering of training courses, covering multiple OWASP specific and Web Application Security Topics.
Marketing information: 6 page brochure or this 33 page brochure.
COST & REGISTRATION
There are multiple options available for participation (OWASP members get 20% Discount):
- Working Sessions and Conference (4 days: 4th,5h,6th and 7th): €500 Euros ($700.00 USD)
- Conference only (2 days: 6th and 7th) €350 Euros ($500 USD)
- Training:
- 2 days: €950 ($1350 USD)
- 1 day: €475 ($675 USD)
- 1/2 day €235 (335 USD)
- Students
- Working Session, and Conference: €150 Euros ($200 USD)
- Training: €100 Euros per day ($130 USD)
To register and pay for your participation please use: 
A currency converter can be found at xe.com/ucc.
SPONSORSHIP OPPORTUNITIES
For information on sponsoring see OWASP EU Summit 2008 Sponsors.
SPONSORS
  
|
FORMER AGENDA
EVENT ACTUAL AGENDA
| Agenda for Monday, November 3rd, 2008 | ||||
| 13:00 | Lunch | |||
| Training Sessions | ||||
| 15:00 to 17:00 | Securing WebGoat with ModSecurity
Stephen Craig Evans |
WebSec Apps for Managers and Executives
Mano Paul |
OWASP Testing Guide
Matteo Meucci | |
| 19:00 | Summit Briefing
Dinis Cruz and Summit Organization Team | |||
| 20:00 | OWASPers Dinner | |||
| Agenda for Tuesday, November 4th, 2008 | ||||||
| 08:00 | Registration | |||||
| 09:00 | Summit Keynote
Dinis Cruz and Summit Organization Team | |||||
| Documents | Tools | |||||
| 09:30 | OWASP Testing Guide
Matteo Meucci |
OWASP JSP Testing Tool
Jason Li | ||||
| 09:45 | OWASP Code Review Guide
Eoin Keary |
OWASP Orizon Project
Paolo Perego (a.k.a. thesp0nge) | ||||
| 10:00 | OWASP Application Security Desk Reference (ADSR)
Leonardo Cavallari Militelli |
OWASP Live CD
Matt Tesauro | ||||
| 10:15 | OWASP Spanish Project
Juan Carlos Calderon |
WebScarab-NG
Rogan Dawes | ||||
| 10:30 | Coffee Break | |||||
| 10:45 | .NET ESAPI
Alex Smolen |
JBroFuzz
Yiannis | ||||
| 11:00 | Working Sessions Briefing
Dinis Cruz | |||||
| Working Sessions | ||||||
| 11:15 | Documentation Projects/Guides Integration and Unified 4.0 Version
Chair: Eduardo Neves |
Browser Security
Chair: Arshan Dabirsiaghi Secretary: Kuai Hinojosa |
Tools Projects
Chair: Matt Tesauro | |||
| 13:00 | Lunch | |||||
| 14:00 | Training Sessions | |||||
| The Art and Science of Threat Modeling Web Applications
Mano Paul |
Web Server Hardening SELinux
Pavol Luptak |
Offensive WebApp Hacking
Marco Slaviero | ||||
| 16:00 | Coffee Break | |||||
| Working Sessions | ||||||
| 16:30 | ESAPI
Chair: Jeff Williams Secretary: Arshan Dabirsiaghi | |||||
| 18:30 | ASDR
Chair: Leonardo Cavallari |
.NET Project
Chair: Dinis Cruz | ||||
| Agenda for Wednesday, November 5th, 2008 | ||||
| 09:15 | Daily Briefing:
Dinis Cruz | |||
| Standards and Education
(Room 1) |
Tools
(Room 2) | |||
| 10:00 | OWASP Positive Security (SoC 08)
Eduardo Vianna de Camargo Neves |
OWASP Access Control Rules Tester Project
Andrew Petukhov | ||
| 10:15 | OWASP Education
Sebastien Deleersnyder, Martin Knobloch |
OWASP Teachable Static Analysis Workbench
Dmitry Kozlov | ||
| 10:30 | OWASP Internationalization Guidelines
Juan Carlos Calderon |
OWASP AppSensor
Michael Coates | ||
| 10:45 | PASSWD:Metrics and Vulnerabilities
Lucilla Mancini |
OWASP Backend Security Project
Carlo Pelliccioni | ||
| 11:00 | OWASP Open Review Project
Dan Cornell |
OWASP Application Security Tool Benchmarking Environment and Site Generator Refresh Project
Dmitry Kozlov | ||
| 11:15 | OWASP Global Committee Elections
(Room 1) | |||
| 11:30 | Coffee Break | |||
| Working Sessions | ||||
| 12:45 | Education Project
Chair: Sebastien Deleersnyder (Room 1) |
Testing Guide
Chair: Matteo Meucci (Room 2) |
Web Application Framework Security
Chair: Arshan Dabirsiaghi Secretary: Kuai Hinojosa (Room 3) | |
| 14:45 | Lunch During Working Sessions | |||
| 15:00 | Training Sessions | |||
| 15:00 | Flash Player Security
Peleus Uhley (Room 1) |
OWASP Top 10
Sebastien Deleersnyder and Martin Knobloch (Room 2) |
Uncovering WebScarab's Secret Treasures
Rogan Dawes (Sala Bella Vista) |
Hacking the Orizon
Paolo Perego (Room 3) |
| 17:00 | Coffee Break | |||
| Working Sessions | ||||
| 17:30 | Code Review Guide
Chair: Eoin Keary (Room 2) |
EU Funding for OWASP Projects
Chair: Carlos Serrao (Sala Bella Vista) |
OWASP Certification
Chair: Tom Brennan (Room 1) |
Software Assurance Maturity Model
Chair: Pravir Chandra (Room 3) |
| 19:00 | OWASP Website
Chair: Favio Cerull (Room 1) |
Metrics & Vulnerabilities
Chair: Lucilla Mancini (Room 2) |
OWASP Orizon
Paolo Perego (Room 3) | |
| Agenda for Thursday, November 6th, 2008 | |||||
| 09:15 | Daily Briefing:
Dinis Cruz | ||||
| Technology | Tools | ||||
| 10:00 | OWASP Classic ASP Security Project
Juan Carlos Calderon |
OWASP Source Code Review
James Walden | |||
| 10:15 | OWASP Ruby on Rails Security Project
Heiko Webers |
OWASP Enigmaform and mod_Openpgp
Arturo Alberto Busleiman (a.k.a. Buanzo) | |||
| 10:30 | OWASP Webslayer Project
Christian Martorella |
OWASP Securing WebGoat using ModSecurity
Stephen Evans and Christian Folini | |||
| 11:00 | OWASP Skavenger Project
Matthias Rohr |
OWASP AntiSAMI
Arshan Dabirsiaghi | |||
| 11:15 | Coffee Break | ||||
| Working Sessions | |||||
| 11:30 | Top 10
2009 Chair: Dave Wichers Secretary: Jeff Williams (Room 1) |
Intra Governmental Affairs
Chair: David Campbell (Room 2) |
SAMM v2
(Room 3) |
Web Site
12:15 Executive Room |
Handling Web MalWare
12:15 Sala Bella Vista |
| 13:00 | Lunch During Working Sessions | ||||
| 14:00 | Training Sessions | ||||
| Ajax Security
(Room 1) |
Auditing Flash Applications
Peleus Uhley (Room 2) |
WebApp Assessment
Vicente Aguilera Diaz (Room 3) |
Mod Security
Lucas C. Ferreira (Executive Room) | ||
| 13:00 | Coffee Break | ||||
| Working Sessions | |||||
| 16:30 | Strategic Planning and Business Models compatible with OWASP values
Chair: Jeff Williams, Dinis Cruz, Dave Wichers, Sebastien Deleersnyder, and Tom Brennan Secretary: Kate Hartmann and Paulo Combra | ||||
| 18:30 | 2-Way Internationalization
Chair: Juan Carlos Calderon and Sebastien Deleersnyder (Room 1) |
Best Practices for Chapter Leaders
Chair: Georg Hess (Room 2) |
Portuguese Public & Private Organizations
Chair: Carlos Serrao (Room 3) |
Live CD & DVD
Chair: Matt Tesauro (Sala Bella Vista) |
OWASP Awards
Chair: Colin Watson (Executive Room) |
| 20:00 | Gala Dinner - Restaurante de Real | ||||
| 22:00 | OWASP Band - LE CLUB | ||||
| Agenda for Friday, November 7th, 2008 | ||||||
| 10:00 | OWASP AppSec Agenda 2009: Working Session Outcomes
Dinis Cruz | |||||
| 10:15 | Results Presentations | |||||
| Documentation Projects/Guides Integration and Unified 4.0 Version
Chair: Eduardo Neves | ||||||
| Browser Security
Chair: Arshan Dabirsiaghi | ||||||
| ESAPI
Chair: Jeff Williams | ||||||
| Tools Projects
Chair: Matt Tesauro | ||||||
| Code Review Guide
Chair: Eoin Keary | ||||||
| OWASP Certification
Chair: Tom Brennan | ||||||
| Software Assurance Maturity Model
Chair: Pravir Chandra | ||||||
| Top 10 2009
Chair: Dave Wichers | ||||||
| Intra Governmental Affairs
Chair: David Campbell | ||||||
| Best Practices for Chapter Leaders
Chair: Georg Hess | ||||||
| 11:15 | Coffee Break and vote break (put your dots on the wall) | |||||
| 11:30 | Live CD & DVD
Chair: Matt Tesauro | |||||
| ADSR
Chair: Leonardo Cavallari | ||||||
| Education Project
Chair: Sebastien Deleersnyder | ||||||
| Web Application Framework Security
Chair: Arshan Dabirsiaghi | ||||||
| Testing Guide
Chair: Matteo Meucci | ||||||
| OWASP Censorship
Chair: Tom Brennan | ||||||
| EU Funding for OWASP Projects
Chair: Carlos Serrao | ||||||
| OWASP Website
Chair: Fabio Cerull | ||||||
| OWASP Orizon
Chair: Paolo Perego | ||||||
| Handling Web MalWare | ||||||
| 2-Way Internationalization
Chair: Juan Carlos Calderon | ||||||
| Portuguese Public & Private Organizations
Chair: Carlos Serrao | ||||||
| 12:45 | Winter of Code 2009
Chair: Dinis Cruz and Sebastien Deleersnyder Secretary: Paulo Combra | |||||
| 13:00 | Lunch - During Winter of Code | |||||
| 14:00 | Board Meeting | |||||
| 17:00 | Announcement of Summit Procedings | |||||
VENUE & TRAVEL ARRANGEMENTS
The OWASP European Summit 2008 will be hosted at the 5 start Resort in Algarve Portugal (Grande Real Santa Eulália Resort & Hotel). We suggest the hotel booking and the travel arrangements be handled via Diplomata Tours, the assigned travel agency.
The venue address:
Praia de Santa Eulália
PO Box 2445
Albufeira, Portugal
8200-916
Nearest Airport: Faro
U.S. Absentee Voting Information
U.S. citizens attending the Summit on 4 November (Election Day) may vote absentee. You may find the information you need here, here or here, or on your home state/territory or foreign embassy/consulate web site. These links are provided for your information only; OWASP does not endorse any political party, candidate, etc. and is not able to provide you with instructions or assistance in voting or registering.
