Ottawa

Meetings Location
Third Brigade: 40 Hines Rd Suite 200 Ottawa, Ontario, Canada K2K 2M5 Map

RSVP
Please RSVP to owasp.ottawa@gmail.com. Please include name, company and how many attendees.

Next Meeting: Tuesday, January 11th, 2011
Meeting Sponsor: 

Meeting schedule:

6:00-6:30 Pizza, wings and pop 6:30-7:30 Main presentation 7:30-8:00 Open discussion and questions

Speaker: Philippe Gamache - Parler Haut, Interagir Librement - Multi-factor authentication

The password is currently the most commonly used way to identify a user. It does not, however, have the level of security required to protect sensitive information.

The addition of new identification allows to solve this problem. In this presentation we will see the concepts of strong authentication, the presentation of alternative free or low cost multi-factor identification.

About The Speaker Philippe Gamache contributes to PHP since 1999: promotion, participation at local user groups, organizing conferences, speaking at conference and writing technical articles.

He’s the co-author of a PHP security book call "Sécurité PHP 5 et MySQL 5". He’s the OWASP Montreal's Chapter Leader.

He is the president of Parler Haut, Interagir Librement a company that does Security Audit and Penetration Testing for PHP web applications. He also does PHP Security and Audit training.

February, Tuesday 8th 2011
Speaker: Corey Nachreine - The Web is the Battleground; and Social Networks Lead the Charge

Our web browser has become the universal app. We no longer use it just to peruse static web pages, but to interact with a menagerie of complex online applications hosted “in the cloud.” While this evolution of web interactivity provides us with many new opportunities, and immense value, it has also made today’s web the most dangerous place on the Internet. Join WatchGuard Senior Network Security Strategist and CISSP, Corey Nachreiner, to hear why he believes web-based threats will pose a huge risk to your network in 2011. During the talk, you will learn how the three most common web-based attacks -- drive-by downloads, cross-site scripting (XSS), and SQL injection – work. You’ll even see them in action during sample attacks. Nachreiner will also discuss why Social Networks sites are the worst “web-threat” offenders of them all. He’ll highlight three attributes that make Social Networks a ripe target for attackers, and likely the primary source of malware in the coming years. Finally, and most importantly, you’ll learn practical steps you can take, and defenses you can erect, to protect yourself from these web-based threats. As the American cartoon, G.I. Joe, used to say, “Knowing is half the battle.” Join us at [EVENT] to get the knowledge you need to win this web battle!

About The Speaker Corey Nachreiner has been with WatchGuard since 1999 and has since written more than a thousand concise security alerts and easily-understood educational articles for WatchGuard users. His security training videos have generated hundreds of letters of praise from thankful customers and accumulated more than 100,000 views on YouTube and Google Video. A Certified Information Systems Security Professional (CISSP), Corey speaks internationally and is often quoted by other online sources, including C|NET, eWeek, and Slashdot. Corey enjoys "modding" any technical gizmo he can get his hands on, and considers himself a hacker in the old sense of the word.

Previous Meetings
September 10th, 2009 - Justin Foster - Speaker Notes: Download Here April 6th, 2009 - Rafal Los - Speaker Notes: Download Here July 16th, 2008 - John Linehan - Speaker Notes: Download Here November 28th, 2007 - Eric Klien - Make my day