Toronto

The mailing list archive can be accessed from here.

Upcoming Meetings
 June 2008  We have a potential Security Compass Consultant speaking in June on ExploitMe Framework.

 July 2008  Whitehat Security will have consultant speaking in July.

 July - Dec 2008 

We are looking for speakers, if you are interested in speaking on security topics please email [mailto:nish@securitycompass.com Nish Bhalla]

Upcoming Meeting - 13th February 2008
The next chapter meeting will be held on Feb 13th at 20the floor, 79 Wellington Street West, Toronto, ON M5K 1B9 . Directions to the meetings

Topic:  Identity and Access Management Description: Identity and Access Management has become one of the most talked about topics in the Information Security space. Identity and Access Management products available in the marketplace have exponentially multiplied in the last few years. Shannon will provide a view into what has worked for Smart Systems for Health Agency (SSHA) to deliver identity and access management for healthcare application service owners in Ontario.

The presentation provides view into the world of identity and access management. Topics covered in the presentation will include: •	Components of identity and access management •	The complexity of identity and access Management •	The SSHA identity and access Management model •	Identity and access management challenges •	Healthcare specific identity and access management challenges •	Lessons learnt •	The direction of identity and access management

Speaker BIO: Shannon O’Keefe is a Business Architect in the Identity and Access Management Program at Smart Systems for Health Agency. Shannon assists Smart Systems for Healthcare clients integrate their applications into the One ID Identity and Access Management service.

OWASP Toronto chapter meetings are open to the public RSVP is requested by sending an [mailto:owasp-rsvp@securitycompass.com email]

22nd January 2008 Meeting
The next chapter meeting will be held on Jan 22nd at 20the floor, 79 Wellington Street West, Toronto, ON M5K 1B9 . Directions to the meetings

Topic: </B>Modern Trends in Network Fingerprinting Description:</B>

Speaker BIO:</B> Jay Graver and Ryan Poppa are Lead Engineers at nCircle Network Security. They specialize in interrogating Applications and Services over the network. Their years of experience have been focused on the non invasive detection of vulnerabilities.

Current Areas of research include; HTTP server analysis, graph theory, SSL library fingerprinting and unobfuscation techniques.

Based in Toronto Ontario, they hold degrees from University of Guelph and the University of Waterloo. You can find their latest posts at blog.glaciertech.ca & numerophobe.com

OWASP Toronto chapter meetings are open to the public RSVP is requested by sending an [mailto:owasp-rsvp@securitycompass.com email]

Sponsorship
Many thanks to Deloitte & Touche LLP. for sponsoring the location and food for these meetings.

Speakers
We are always looking for speakers to present on their topic of choice. If you are interested please contact [mailto:nish@securitycompass.com Nish Bhalla]

OWASP Toronto Chapter Committee
The OWASP Toronto Chapter has formed a committee which would help with direction of the chapter. Deloitte & Touches' Application Security Group and Security Compass's Professional Services Group are helping lead this initiative. We are looking for additional members to expand our chapter.

Current Committe Members
Nish Bhalla (Chapter Leader) Reza Kopaee

Meetings
Everyone is welcome to join us at our chapter meetings. These meetings are held every Second Wednesday of the month. We meet at the conference room at Deloitte & Touche. Beverages and snacks are provided.

Address and Directions to the meeting are:

20th floor, the TLC Room (signs will be provided on the floor) TD Centre, TD Waterhouse Tower 79 Wellington Rd. W. Toronto

Directions to the meetings

OWASP Toronto chapter meetings are open to the public RSVP is requested by sending an [mailto:owasp-rsvp@securitycompass.com email]

Past Presentations For Download
The past presentations are avaiable for download from here. If you have any comments on the presentations please send them to us.

Basic Web Application Testing Methodology by Nish Bhalla Security Compass

Basic Web Services Security by Rohit Sethi Security Compass

Authentication Security by Hui Zhu

Identity Management Basics by Derek Browne