Virginia

Last Month
We had two talks on 10 May:

"Securing Web Services using XML Security Gateways", Tim Bond from WebMethods. Tim has been a regular participant of our chapter over the last couple of years. He gave this talk recently at the Infosec World 2007 conference.

"Software Assurance in the Acquisition Process", Stan Wisseman from Booz Allen.

Next Meeting
Our next meeting will be on 14 June at 6pm back at Booz Allen's Herndon facility. See directions below. Our speakers will be:

- Brian Chess, Fortify (Chief Scientist and co-founder)

Fortify has offered use of their public scanning services to selected Open Source projects (the Java Open Review Project, see http://opensource.fortifysoftware.com) on all OWASP projects that use Java code. The idea is to put these checks as part of the OWASP SDL. Apart from OWASP being able to use Fortify's SCA, Fortify is supporting OWASP with 5,000 USD which will be used to sponsor an individual to: analyze the current OWASP tools, publish a report with the findings and set up a system / workflow that ensures the regular review of OWASP new (and existent) code base. Brian will also discuss their new Tracer and Defender products.

- "Security at the VMM Layer", Theodore Winograd, Booz Allen Hamilton. Ted did this talk for one of his Master's courses. He is very active supporting NIST with Special Publications, including plans for an upcoming SP on Virtualization.

Pizza will be provided for a small fee.

Directions
To Booz Allen's One Dulles facility:

13200 Woodland Park Road Herndon, VA 20171

From Tyson's Corner:

1. Take LEESBURG PIKE / VA-7 WEST 2. Merge onto VA-267 WEST / DULLES TOLL ROAD (Portions Toll) 3. Take the VA-657 Exit (Exit Number 10 towards Herndon / Chantilly) 4. Take the ramp toward CHANTILLY 5. Turn Left onto CENTERVILLE ROAD (at end of ramp) 6. Turn Left onto WOODLAND PARK ROAD (less than 1⁄2 mile) 7. End at 13200 WOODLAND PARK ROAD