Minneapolis St Paul

NEWS - OWASP becomes an affiliate of UMSA in support of the Secure 360 conference. Secure360°™ is an annual conference providing high quality educational sessions and networking opportunities while working to identify developing trends in risk management, physical security, governance, audit, information security, contingency planning and human capital. As the host of Secure360°, UMSA strives to provide expert speakers, informative educational sessions and a wide range of exhibits for the collective membership and resources of individual associations, supplier partners and general public. (See the Members & Affiliates page for further information.) http://www.secure360.org/index.html

Videos:

I uploaded the videos and I will follow up with their presentations soon. I apologize for the delay. The video and sound quality is not the best but works. You can get to both videos here:

https://www.owasp.org/index.php/Category:OWASP_Video#Videos

Upcoming Speakers: Tony Stieber from Wells Fargo will be speaking on Encryption on June 16. See announcement below. Gunnar Peterson will be presenting "Breaking Web Services." Andrew can der Stock has agreed to visit our chapter and discuss the new Enterprise Security API. We do not have an exact day yet, as soon us we get one I will let the members know.

Thanks Thanks to NetSpi for providing Coffee and Cookies for this event. If your organization would like to sponsor the book give-away or refreshments please contact Lorna Alamri at 651-259-1001.

OWASP Chapter meeting
DATE: April 21st 2008 TIME: 6 p.m. Rohy Belani - Phishing 2.0 -  Abstract: This presentation will discuss the evolution of phishing from being a means of stealing user identities to becoming a mainstay of organized crime. Today, (spear) phishing is a key component in a "hackers" repertoire. It has been used to hijack online brokerage accounts to aid pump 'n dump stock scams, and as a means of creating covert channels from compromised user machines to the Internet. During this talk, I will present the techniques used by attackers to execute such attacks and real-world cases that I have responded to that will provide perspective on the impact. This will be followed by a discussion on what works and what doesn't in building and testing user awareness to thwart such attacks against your organization. Please RSVP for the meeting. You will be sent a confirmation e-mail and a reminder e-mail for the event.

Location: Gourmet Dinning Room MnScu T building, 1501 Hennepin Avenue 1501 Hennepin Ave. Minneapolis, MN 55403

Directions:

http://www.metrostate.edu/bldgservices/location.html#mpls

RSVP:

http://www.go-integral.net/?q=OWASPApril_RohytBelani

Kuai Hinojosa OWASP Chapter Leader

Other Industry Events: Secure 360 Don't forget to register! Secure 360 is an annual conference providing high quality educational sessions and networking opportunities while working to identify developing trends in risk management, physical security, governance, audit, information security, contingency planning and human capital. Robert Hansen, Rohyt Belani, Robert Sullivan, Joe Teff and Kuai Hinojosa will all be speaking. OWASP will have a booth at the event where we will be showing demos of some of the OWASP projects. Make sure you stop by and say hi! http://www.secure360.org/ Security & Open Source Symposium For a growing number of organizations, both large and small, open source applications are accepted and well integrated components of their overall enterprise framework. Apache, Open SSL, Syslog, Nessus, Linux, MySQL, JBoss and many others are used in tandem with commercial and proprietary products to create an enterprise environment tailored to business needs. But what are the security implications within a mixed and often complex environment? And how can open source tools help manage and mitigate risks that arise from the nature of the environment itself as well as from external threats? The SOS symposium will address the identification and alleviation of security risks for enterprise users, as well as implementation of key open source tools used for security functions. Through a combination of overview presentations, informative educational sessions, open source product demonstrations and participant interaction, those who attend will gain a better understanding of the secure use of, and security provided by, open source applications.

http://www.strategicit.org/secureos.shtml MN ISACA- Will be having thier annual meeting and boat cruise May 21st. http://www.mnisaca.org/events.htm MN ISSA- Meets on Tuesday July 15th at the Four Points Sheraton, 1330 Industrial Blvd. Mpls, MN. For more information on speakers and topics. http://www.mn-issa.org/html/chaptermeetings.html TCJUG (Twin Cities Java Users Group) Meets May 21st. Josh Reed from Andrill will be speaking on Eclipse RCP Application and working in Antarctica. http://www.intertechtraining.com/UserGroups/JavaUserGroup.aspx