OWASP Global AppSec Asia 2011

OWASP Global AppSec Asia Pacific 2011 - Beijing China
OWASP China-Mainland Chapter will host OWASP Global AppSec Asia 2011 in Beijing, China from Nov. 8 to Nov. 11, 2011. The summit will gather OWASP leaders, security experts, executives, technical thought leaders, developers, scientists and researchers from Asia and around the world for in-depth discussions of cutting-edge application security issues. The summit will draw participation from major Chinese and global organizations across various verticals including government, information technology, services and consulting, telecommunications, finance, e-commerce, Internet, universities and research institutes. About 800 people are expected to attend the summit, which will be covered by major news media. Panel discussions, vendor exhibit, and dinners will be held at the summit, providing sufficient networking opportunities.

中文网站
OWASP 中国

OWASP 2011亚太峰会

Registration
请使用RegOnline 链接来注册(中文).

Please use RegOnline link for your registration (English).

Who Should Attend OWASP Global AppSec Asia 2011:


 * Application Developers
 * Application Testers and Quality Assurance
 * Application Project Management and Staff
 * Chief Information Officers, Chief Information Security Officers, Chief Technology Officers, Deputies, Associates and Staff
 * Chief Financial Officers, Auditors, and Staff Responsible for IT Security Oversight and Compliance
 * Security Managers and Staff
 * Executives, Managers, and Staff Responsible for IT Security Governance
 * IT Professionals Interesting in Improving IT Security

For student discount, attendees must present proof of enrollment when picking up your badge.

Sebastien Deleersnyder
Seba Deleersnyder, Managing Technical Consultant ICT Security at SAIT Zenitel.

As security project leader and information security officer for multiple customers Sebastien has build up extensive experience in Information Security related disciplines, both at strategic and tactical level. Sebastien specializes in (Web) Application Security,combining both his broad development and information security experience.

Seba is the Belgian OWASP Chapter Leader, member of the influential OWASP Foundation Board and performed several public presentations on Web Application and Web Services Security. He also co-organizes the yearly security &amp; hacker BruCON conference and trainings in Brussels.

Manoranjan Paul
Manoranjan (Mano) Paul is founder and CEO of SecuRisk Solutions and Express Certifications, companies that specialize in security training, consulting and product development. His information security and software assurance experience includes designing and developing security programs from compliance-to-coding, security in the SDLC, writing secure code, risk management, security strategy, and security awareness training and education.

He is the author of the official (ISC)2 guide to the Certified Secure Software LifecycleProfessional (CSSLP) book (released June 2011) and has contributed to chapters in the Information Security Management Handbook. His has been interviewed and referenced in several articles including those in CIO.com. Mano has been featured in various domestic and international security conferences and is an invited speaker and panelist, delivering training, talks and keynotes in conferences such as the OWASP, ASIS, CSI, Catalyst, SC World Congress, (ISC)2 Security Congress, and TRISC.

Cassio Goldschmidt
Cassio Goldschmidt is a globally recognized application security leader, and senior manager of the product security team at Symantec Corporation (a long time OWASP supporter). In this role Cassio leads the Symantec Product Security team with company-wide responsibility for product security assurance, vulnerability management, security development lifecycle implementation, and oversees the coordination of security certifications and training.

Cassio's contribution to OWASP include:


 * 1) Co-chair of OWASP AppSec USA 2010
 * 2) Co-chair of OWASP AppSec Latin America 2011
 * 3) Member of the conference committee
 * 4) Major contributions to the revamp of OWASP LA Chapter
 * 5) Honorary founder of OWASP Porto Alegre Chapter
 * 6) Board member of OWASP LA Chapter
 * 7) Speaking engagements at OWASP conferences

CALL FOR Presentation
OWASP AppSec Asia 2011 Conference will be a major international forum for the presentation of research results, cutting-edge ideas and in-depth discussions in the field of application security. OWASP AppSec Asia 2011 Conference invites application security researchers, thought leaders and developers worldwide to submit papers for the opportunity of presenting to 800+ expected participants.

The topics we are seeking include, but are not limited to:


 * 1) Web Application Security
 * 2) Mobile Application Security
 * 3) Cloud Application Security
 * 4) Software and Architecture Patterns for Application Security
 * 5) Metrics for Application Security
 * 6) OWASP Tools and Projects
 * 7) Secure Coding Practices (J2EE/.NET)
 * 8) Application Security Testing
 * 9) New Attacks and Defense
 * 10) Other subjects related to OWASP and Application Security

To make a submission:


 * 1) Download and fill out the form available at https://www.owasp.org/images/d/d3/OWASP_AppSec_Asia_2011_CFP_v2.zip
 * 2) Submit the form through the Easychair conference web site at http://www.easychair.org/conferences/?conf=apac2011

Each talk should be limited to 40 minutes, followed by a 10 minute question session.


 * Submission deadline: August 22, 2011.
 * Notification of acceptance: September 9, 2011.
 * Presentation slides due: October 21, 2011.

CALL FOR Training
OWASP AppSec Asia will begin with two days of training sessions on November 10th and 11th, 2011. Proposals are solicited for the training of either a one-day (6 hours plus breaks) or two-day sessions on all topics of application security with focus on secure application design and development, threat modeling and defense strategy, and secure application testing. Each training session should cover a single topic in detail in order to allow trainees to grasp practical understanding and basic skill in the subject. Submissions should include a cover sheet and an extended abstract. The cover sheet should specify:


 * 1) The title and length of the training;
 * 2) The intended audience and prerequisite knowledge or skills, if any;
 * 3) Complete contact information for the trainer; and
 * 4) Brief biography (max. 2 paragraphs) for the trainer. The extended abstract should be 1 to 2 pages, and should include an outline of the training plan, along with descriptions of the objectives and course materials.

Training proposals in PDF or Word format must be sent via email by August 22, 2011 to Jack Li (jack.li@owasp.og). The submissions will undergo review and trainings will be selected by the OWASP AppSec Asia 2011 Conference Committee. Notifications will be sent out by September 9, 2011.

For more information, please see the following web pages:

Conference Website: https://www.owasp.org/index.php/OWASP_Global_AppSec_Asia_2011 OWASP Speaker Agreement: http://www.owasp.org/index.php/Speaker_Agreement OWASP Website: http://www.owasp.org Easychair conference site: https://www.easychair.org/account/signin.cgi?conf=apac2011 Presentation proposal form: https://www.owasp.org/images/b/b6/OWASP_AppSec_Asia_2011_CFP.zip

Preliminary Program

 * Tue, November 8, 2011 - Conference. Exhibition(TBD).


 * Wed, November 9, 2011 - Conference. Exhibition(TBD)


 * Thu, November 10, 2011 - Training


 * Fri, November 11, 2011 - Training.

Final Program
The final program will be available before October 2011.

Sponsor US!
We are still soliciting sponsors for the OWASP Global AppSec Asia 2011. An exhibit hall will be held for vendor booths and presentations.

More than 500 people attended the OWASP China conference last year. As a sponsor, you will gain exclusive access to companies in Asia through a limited number of expo floor slots.

New in 2011, we are offering exclusive Global AppSec Sponsorships to provide additional benefits and streamline the planning process for our most supportive organizations.

Please [mailto:heleng@owasp.org contact us] directly if you have any related question.

To find out more about the different sponsorship opportunities please check the document below: OWASP_China2011_Sponsorship.pdf

Intented Sponsors:


 * Information Security Committee of China Computer Federation
 * China Information Security Technology Security Evaluation Center
 * DBAPPSecurity

Team

 * [mailto:heleng@owasp.org Contact us]

Members (in alphabetical order)

 * [mailto:frank.fan@dbappsecurity.com.cn Frank Fan 范渊]
 * [mailto:heleng@owasp.org Helen Gao 高雯]
 * [mailto:nsace2009@gmail.com Jianchun Jiang 蒋建春]
 * [mailto:helen.gao@owasp.org Jack Li 李江宏]
 * [mailto:rip@owasp.org.cn Rip Torn 万振華]
 * [mailto:wangjie8578@yahoo.com.cn Jie Wang 王颉]
 * [mailto:ivy@owasp.org.cn Ivy Zhang 张平]
 * [mailto:zhendong.yu@owasp.org Zhendong Yu 于振东]

Registration Fee
It it free for all OWASP members and all OWASP China chapter members.

If you are neither an OWASP member nor an OWASP China chapter member, please feel free to join us!

Accommodation
Please check the local hotel website for detail information.

Venue
TBD

Hotel
Beijing Continental Grand Hotel

Tel: +86-10-84980105

website: http://www.bcghotel.com

Travel
How to obtain a visa for the event


 * Invitation letter will be sent out for overseas attendees after registration.
 * For detailed information on obtaining a business visa for this event, please refer to Chinese embassy