Bay Area

NEXT EVENT:

Thursday, October 4th
Agenda and Presentations:

6:00pm – 6:30pm          Check-in and Reception (food and beverages)

6:30pm – 7:15pm          "ModSecurity - Open Source Web Application Firewall" - Ivan Rustic

7:15pm – 7:30pm          Break & Networking Session

7:30pm – 8:15pm          "An Analysis of Emerging Security Vulnerabilities & the Impact to Business" - Neil Daswani

8:15pm – 8:30pm          Q & A

Venue:

Golden Gate University Room 2203 536 Mission Street (Between 1st & 2nd Streets or Montgomery Street BART Station) San Francisco, CA 94105-2968

Please RSVP through this link: http://www.eventbrite.com/event/74194919:

 “Open Source Web Application Firewall” by Ivan Rustic Bio: If we hear so much about web application firewalls and their role as a first line of defense in protecting our web applications, a large amount of credit has to go to Ivan Ristic. Ivan Ristic is the creator of ModSecurity (an open source web application firewall and intrusion detection/prevention engine). He started playing in the webappsec space sometime around 2002 and working seriously since 2004. Based out of London, UK, he works for Breach Security. He is currently in charge of the ModSecurity product line, which includes ModSecurity, sensor appliances based around it and management appliances. Ivan also wrote Apache Security for O'Reilly, a web security guide for administrators, system architects, and programmers. Prior to web application security, he has worked as a developer, system architect and technical director in the software development industry.  “An Analysis of Emerging Security Vulnerabilities & the Impact to Business” by Neil Daswani

Abstract: This talk discusses how IT professionals can go about learning what they need to know to prevent the most significant emerging data security vulnerabilities, and the impact these vulnerabilities are having on electronic commerce. It will review how attacks such as XSRF (Cross-Site-Request-Forgery) and SQL Injection work, and how to defend against them. It will present some industry-wide statistics on software security vulnerabilities reported to various databases, and emerging trends in the field of software security. Finally, it will discuss the current state of security education, and provide pointers to certification programs, books, and organizations where you and your colleagues can learn more.

Bio: Neil has served in a variety of research, development, teaching, and managerial roles at Google, Stanford University , DoCoMo USA Labs, Yodlee, and Bellcore (now Telcordia Technologies). His areas of expertise include security, wireless data technology, and peer-to-peer systems. He has published extensively in these areas, frequently gives talks at industry and academic conferences, and has been granted several U.S. patents. He received a Ph.D. and a master's in computer science from Stanford University, and earned a bachelor's in computer science with honors with distinction from Columbia University.