This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

OWASP Software Assurance Day DC 2010

Revision as of 19:54, 4 October 2010 by Walter Houser (talk | contribs)

Jump to: navigation, search

Register | Directions to NIST | 13th Semi-Annual Software Assurance Forum


Welcome to the OWASP Software Assurance Day DC 2010 wiki page.

This single-day training session will be held on September 27th as a part of the 13th Semi-Annual Software Assurance Forum (September 27th - October 1st) sponsored by the US Department of Homeland Security (DHS), Department of Defense (DoD) and National Institute of Standards and Technology (NIST). The event will be held at the NIST campus in Gaithersburg Maryland.

We are pleased to invite OWASP members, attendees of the Software Assurance Forum and any other interested parties to join us for this event.

At this day-long training, OWASP will be answering the questions of:

  • How do I get started in formulating an application security program using OWASP tools and resources?
  • What does OWASP have to offer for those interested in software assurance?
  • How do I engage with OWASP to effectively realize OWASP's potential and the wealth of resources OWASP makes freely available?
         (This will include upcoming OWASP events and contact information for local chapters in the DC/NOVA/Maryland area)

This day is a part of the 13th Semi-Annual Software Assurance Forum. The week-long event is free and open, but requires registration for participation in any or all days of the event, including the OWASP day on the 27th.

For more information about the Software Assurance Forum, please go to DHS "Build Security In" site, or go to the NIST site for the Software Assurance Forum to register.


The OWASP Software Assurance Day DC 2010 is the first day of the DHS/DOD/NIST Software Assurance Forum at the NIST Campus in Gaithersburg, Maryland.


Specific directions will be provided upon registration.

Further information about the area around the NIST campus is available here.


Agenda and Presentations for 27 September 2010

September 27th, 2010
08:30-08:35 OWASP Software Assurance Day DC Introduction

Doug Wilson, Mandiant

08:35-09:05 Intro to OWASP

Jeff Williams, Aspect Security

09:05-10:30 Getting Started with OWASP: the Top Ten, ASVS and the Guides

Dave Wichers, Aspect Security

10:30-11:00 Morning Break
11:00-12:00 How to build a software assurance program with OpenSAMM

Shakeel Tufail, Fortify

12:00-1:00 OWASP WTE: An Open Environment for Web Application Security

Matt Tesauro, Trustwave

1:00-2:00 Lunch
2:00-2:45 OWASP ESAPI

Jeff Williams, Aspect Security

2:45-3:15 Afternoon Break
3:15-4:00 OWASP in Action: Tools for the DISA ASD STIG

Jason Li, Aspect Security

4:00-4:30 Conclusion and Q&A

Doug Wilson



The 13th Semi-Annual Software Assurance Forum is a free event, but no one will be admitted to the NIST campus if they have not registered in advance.

Despite the fact that this is a free conference, we still need you to register to fulfill security requirements of the facility and to ensure that we don't exceed venue capacity.


NIST has recommendations for local hotels in the Gaithersburg area on their website


By plane

The venue area can be reached by commercial aviation through either Dulles International Airport or Reagan National Airport.

Directions from local airports can be found on the NIST website:

Shuttle & Ground Transport

Information about local ground transportation can be found on the NIST website:

How to get to the venue?

See the NIST directions and maps page.


For more information please contact the team below for conference details, sponsorship or registration.

Mr Doug Wilson (Event Organizer) , OWASP DC Chapter Lead, AppSec DC 2010 Organizer

Email: [email protected]

Mobile: 301.814.1348

Kate Hartmann

OWASP Operations Director

9175 Guilford Road, Suite 300

Columbia, MD 21046, USA

Phone: +1-301-575-0189

Facsimile: +1-301-604-8033

Email: [email protected]

Conference Sponsors

If you are interested in sponsoring this OWASP event, please contact Doug Wilson.