Ottawa

Meetings Location
Third Brigade: 40 Hines Rd Suite 200 Ottawa, Ontario, Canada K2K 2M5 Map

RSVP
Please RSVP to owasp.ottawa@gmail.com. Please include name, company and how many attendees.

Next Meeting: Tuesday, March 30th, 2010
Meeting Sponsor: 

Meeting schedule:

6:00-6:30 Pizza, wings and pop 6:30-7:30 Main presentation 7:30-8:00 Open discussion and questions

Speaker: David Mirza Ahmad

'''David will be describing the CBC padding oracle attack, originally discovered by Serge Vaudenay and presented at Eurocrypt 2002. Recent applications of this attack affecting web applications discovered by Juliano Rizzo and Thai Duong, presented at Black Hat Europe in 2010, will be clearly described. There will also be a live demonstration of POET (padding oracle exploitation tool).

About The Speaker David started his career over ten years of professional experience as a founding member of SecurityFocus.com, which was acquired by Symantec in 2002. David also moderated the Bugtraq mailing list, a historically important forum for discussion of security vulnerabilities, for over four years. He has spoken at Black Hat, Can Sec West, AusCERT and numerous other security conferences, as well as made contributions to books, magazines and other publications. David also participated in a NIAC working group on behalf of Symantec to develop the first version of the CVSS (Common Vulnerability Scoring System) model. His current obsession is building a network security startup in Montréal and acting as editor for the Attack Trends section of the IEEE Security & Privacy journal..

Previous Meetings
September 10th, 2009 - Justin Foster - Speaker Notes: Download Here

April 6th, 2009 - Rafal Los - Speaker Notes: Download Here

July 16th, 2008 - John Linehan - Speaker Notes:

November 28th, 2007 - Eric Klien - Make my day