Hong Kong

http://www.infosechk.org/download/OWASP/owasp_banner.jpg

The Hong Kong chapter was formed in December 2004. The objectives to establish OWASP Hong Kong Chapter are mainly because: -There are many web applications established in past 10 years. However, how many developers know that their developed application are secure. Meanwhile, there are many transactional-based systems, we should not ignore that the web application is another channel for hackers to compromise one's confidential information and interrupt any critical business operations.

- Raise the security awareness of web application development among the professionals.

- Encourage professionals to reference standard like ISO7799 for their web application security and post-deployment review as well as audit.

- Accelerate to Share, learn, discuss and review best practices of the experienced web application development security professionals even across various user groups (Java User Group and .NET User Group ) and security associations (i.e. PISA) in Hong Kong.

http://www.clarencewong.com/photo/owasp_meeting.jpg

From left to right: James Tsao, Anthony Lai, David Walker, Richard Stagg, Marco Leung and Gary Kung

Coding Practice

- Mainstream web technologies (i.e. .NET, J2EE and PHP on Linux) security assessment

- Web application platform (i.e. Apache, IIS, Linux, Database) security assessment and review.

- Recent Web application security concerns.

- Regularly convey latest projects and presentations from OWASP.

News from Hong Kong Chapter
http://www.takungpao.com/images/new.gif OWASP(HK Chapter) sparks web application security concern in Infosecurityproject Conference: http://www.infosecurityproject.com/

'''OWASAP Committee Member, Richard Stagg, uncovered Security Reality (Mar 2007) Richard from Handshake Networking could tell you the truth of that. URL:http://www.cw.com.hk/computerworldhk/article/articleDetail.jsp?id=409104

'''Hong Kong Standard: HKU changes Internet policy to boost security Hong Kong University has changed its Internet policy a week after The Standard reported that improperly indexed material listed on its Web sites could be accessed by users of the Google Internet search engine. Doug Crets 4/3/2006'''

URL: http://www.thestandard.com.hk/news_detail.asp?pp_cat=11&art_id=15675&sid=7341056&con_type=1&d_str=20060403&sear_year=2006

'''Hong Kong Standard: Online enemy within The biggest threats to computer users are not hackers but their own ignorance, complacency or carelessness, writes Doug Crets 3/27/2006''' URL:http://www.thestandard.com.hk/news_detail.asp?pp_cat=11&art_id=15121&sid=7238709&con_type=1&d_str=20060327&sear_year=2006

Web Application Security with PISA: http://www.pisa.org.hk/event/web-appl-sec.htm

http://www.pisa.org.hk/event/web-appl-sec.jpg

OWASP (Hong Kong Chapter): Successful Web Application Security and Hacking Demo seminar co-organized with Hong Kong Java User Group (30 Jul 2005 https://hkjug.dev.java.net/gatherings/2005/0730.html http://www.infosechk.org/download/OWASP/20050730/2_exposure.JPG

OWASP (Hong Kong Chapter): Web Application Security organized with Sun Wah Pearl Linux (29 Oct 2005)

http://www.infosechk.org/download/OWASP/20051029/seminar.jpg

Contact Us
Chapter Mailbox

P.O. Box No. 6684, General Post Office, Hong Kong SAR

Recent Update
--Anthony Lai 11:25, 6 July 2006 (EDT)