Switzerland

= Welcome =



Welcome to the Home Page of the OWASP Switzerland Chapter.


 * The chapter leader is [mailto:sven.vetsch__AT__owasp.org Sven Vetsch] supported by [mailto:antonio.fontes__AT__owasp.org Antonio Fontes]. Please contact us with any questions regarding the chapter.
 * Please subscribe to the mailing list for meeting announcements and other news related to OWASP in Switzerland.
 * You can follow us on Twitter and Facebook

If you're living in the French speaking part of Switzerland, please also visit the OWASP Geneva chapter for more information.

= Next Meetings = We'd like to invite you to out next OWASP Switzerland meeting. If you want to attend, please make sure to register for the event with your *full name* through register. Space is limited to 50 attendees.




 * When: Tuesday, December 15th 2015
 * 17:00        | Doors will open
 * 17:30 – 17:45 | Update on OWASP
 * 17:50 – 19:00 | Talks
 * 19:15 – **:** | Dinner


 * What "Top X OAuth 2 Hacks" by Antonio Sanso (Adobe):
 * The Web Authorization (OAuth) protocol allows a user to grant a third-party Web site or application access to the user's protected resources, without necessarily revealing their long-term credentials, or even their identity.
 * As the web grows, more and more sites rely on distributed services and cloud computing or a third-party application utilizing APIs from multiple services.
 * OAuth 2 is widely used from major internet players (as Google, Facebook, Twitter) in order to secure their (also REST) APIs.
 * This talk will introduce the OAuth 2 framework and it will show security pitfalls and common implementation mistakes.


 * What "Reliable log data transfer: about syslog, logstash and log data signing” by Pascal Buchbinder:
 * Collecting and processing log data has never been so easy as it is today. However, there are still some implementation details to consider in order to ensure that you don't lose any data. Choosing the wrong approach might cause loss of data just in the moment when you need the data most. This short field report shows you the implementation using either rsyslog or logstash for the transport and also shows how log message signatures ensure that detect if anything get lost.


 * Where: [[Image:location.png|20px|link=https://goo.gl/maps/mMlSy]]
 * Liip AG
 * Limmatstrasse 183
 * 8005 Zurich


 * Who:
 * As usual, all of our meetings are open to everyone and free of charge.

Please find below the planned dates for the upcoming OWASP Switzerland Meetings:

= Past Meetings =

= Participation =

OWASP Chapter meetings are free and open. Our chapter's meetings are informal and encourage open discussion of all aspects of application security. Anyone in our area interested in application security is welcome to attend. We encourage attendees to give short presentations about specific topics.

Our main topics are:


 * Security testing
 * Secure development
 * Hacking
 * Secure Architectures

If you would like to give a presentation (make sure that you have read and understood the speaker agreement), or have any questions about the OWASP Switzerland Chapter, send an email to [mailto:sven.vetsch__AT__disenchant.ch Sven Vetsch].

= Sponsoring =

Help us to make application security visible and become a supporter of the OWASP or our Chapter in Switzerland. All information about becoming a member/sponsor can be found here.

If your company is interested in supporting us directly, please contact [mailto:sven.vetsch__AT__owasp.org Sven Vetsch] to talk about the following sponsoring possibilities.


 * Chapter Supporter
 * Single Meeting Supporter
 * Facility Sponsor
 * Organization Supporters (allocating 40% of your annual donation to our Chapter)

= Chapter Material =

Here you can find material related to the OWASP Switzerland Chapter.

OWASP Switzerland bylaws (in German) [[Media:Bylaws owasp switzerland.pdf|Download bylaws]]

OWASP Switzerland Update Presentation (December 13th 2011) [[Media:Owasp_update_presentation.pdf|Download Presentation]]

Switzerland