This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "Summit 2011 Schedule"

From OWASP
Jump to: navigation, search
(Redirected page to Summit 2011 Schedule Fixed)
 
(93 intermediate revisions by 4 users not shown)
Line 1: Line 1:
__NOTOC__
+
#REDIRECT [[Summit 2011 Schedule Fixed]]
[[:Summit_2011|''' Global Summit 2011 Home Page''']]<br>
 
[[:Summit_2011_Working_Sessions| '''Global Summit 2011 Working Sessions''']] <br>
 
 
 
[[:Working Sessions Browser Working Group|'''Browser Security Track''']] <br>
 
[[:Working Sessions XSS Eradication|'''Cross-Site Scripting Eradication Track''']] <br>
 
[[:Working Sessions University Outreach|'''University Outreach Track''']] <br>
 
[[:Working Sessions No Fluff Just Stuff|'''No Fluff, Just Stuff Track''']] <br>
 
[[:Working Sessions Global Committees|'''OWASP Global Committees''']] <br>
 
 
 
 
 
== Summit 2011 Working Sessions  ==
 
 
 
If you're interested in [[:Summit 2011 Working Sessions|adding a Working Session for the 2011 Summit]], there still is time. This list will be finalized a couple of days before the actual Summit, so get in touch with us soon. Contact [mailto:lorna.alamri(at)owasp.org Lorna Alamri] or [mailto:sarah.baso(at)owasp.org Sarah Baso] for more information. <br> <br> Please review the [[Working Sessions Methodology|Working Session methodology]] for Working Session rules. <br>
 
 
 
{| cellpadding="1" border="0" align="center" style="width:100%"
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 1: Browser Security'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 2: Cross-Site Scripting Eradication'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 3: University Outreach and Education'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 4: No Fluff, Just Stuff'''
 
|-
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="5" style="width:100%" | '''Click on the working session name to see more details about that particular session.''' During the Summit these working session pages will be used to document discussions and outcomes.
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group|'''Browser Security''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions XSS Frameworks|'''Cross-Site Scripting: Frameworks''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions University Outreach|'''University Outreach''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Applying ESAPI input validation''']] <br>
 
*Serial Decomp: Decode, canonicalize, filter<br>
 
*Structured data (SSN, CC, etc.) <br>
 
*Unstructured data (comments, blogs, etc.) <br>
 
*Other input exaples (ws-, database, etc.) <br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group Sandboxing|'''Browser Security: Sandboxing''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions XSS AwarnessResourcesPartnerships|'''Cross-Site Scripting: Awarenes, Resources, and Partnerships''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Defining AppSensor sensors for:''']] <br>
 
*Forced Browsing <br>
 
*Request Velocity<br>
 
*Unexpected encodings<br>
 
*Impersonation (Sudden user switch) <br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group Securing Plugins|'''Browser Security: Securing Plugins''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Managing Sessions''']] <br>
 
*Across requests<br>
 
*Across containers<br>
 
*Invalidating sessions (Timeout, attack event, logout)<br>
 
*Invalidating sessions (across containers, SSO token invalidation, user termination)<br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group Enduser Warnings|'''Browser Security: Enduser Warnings''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Protecting information stored client-side''']] <br>
 
*Threat Modeling the problem <br>
 
*Protecting theft and re-playability of application-specific info (on client & in flight)<br>
 
*Protecting theft and re-playability of session-specific info (in flight)<br>
 
*Protecting session-specific information from attack on the client <br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group Blacklisting|'''Browser Security: Blacklisting''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Protecting against CSRF''']] <br>
 
*Hygiene: Discuss/show frames-busting, cross-domain policy; Discuss referrer and other red herrings <br>
 
*Tokens (crafting, scoping, and checking)<br>
 
*Discussions, techniques on scale<br>
 
*Discussions, techniquest on CAPTCHA, re-auth, etc. <br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group JavaScript|'''Browser Security: JavaScript''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions No Fluff Just Stuff|'''Providing access to persisted data''']] <br>
 
*Controlling visibility of tables by role<br>
 
*Providing access to safe SQL-like query through DAO layer<br>
 
*Discussions, techniques for providing secure'auto-wiring' / marshaling<br>
 
*Encoding and canonicalization for storage (or alternatively: Security concerns with heirarchical caching and object pooling) <br>
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group OS Integration|'''Browser Security: OS Integration''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Browser Working Group New HTTP Headers|'''Browser Security: New HTTP Headers''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
 
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Enterprise Web Defense|'''Enterprise Web Defense Roundtable''']]
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
|}
 
 
 
<br>
 
 
 
 
 
{| cellpadding="1" border="0" align="center" style="width:100%"
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 5: <open>'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 6: <open>'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 7: <open>'''
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" style="width:25%" | '''Track 8: OWASP Global Committees'''
 
|-
 
| valign="middle" height="30" bgcolor="#CCCCEE" align="center" colspan="5" style="width:100%" | '''Click on the working session name to see more details about that particular session.''' During the Summit these working session pages will be used to document discussions and outcomes.
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Projects|'''OWASP Projects''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Projects Assessment Criteria and Orphaned Projects|'''Projects - Assessment Criteria &amp; Orphaned Projects''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Projects Funding Marketing and Commerical Services|'''Projects - Funding, Marketing, &amp; Commerical Services''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Connections|'''OWASP Connections''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Chapters|'''OWASP Chapters''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Education|'''OWASP Education''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Conferences|'''OWASP Conferences''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Industry|'''OWASP Industry''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | [[:Working Sessions Membership|'''OWASP Membership''']]
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" |
 
|- valign="middle"
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
| valign="middle" height="30" bgcolor="#EEEEEE" style="width:25%" | Track notes: <br><br><br><br>
 
 
 
|}
 
 
 
<br>
 
 
 
<br>
 
 
 
[[Category:OWASP_Working_Session]] [[Category:Summit_2011]]
 

Latest revision as of 06:02, 7 February 2011

Redirect to:

Retrieved from "https://wiki.owasp.org/index.php?title=Summit_2011_Schedule&oldid=104032"