Difference between revisions of "AppSecEU2013"

From OWASP
Jump to: navigation, search
(changed ":" --> ";" & Paul Stone)
m
 
(6 intermediate revisions by the same user not shown)
Line 15: Line 15:
 
=== Videos ===
 
=== Videos ===
 
Videos from the talks are available for [https://www.its.fh-muenster.de/owasp-appseceu13/rooms/Grosser_Saal/ Großer Saal]  
 
Videos from the talks are available for [https://www.its.fh-muenster.de/owasp-appseceu13/rooms/Grosser_Saal/ Großer Saal]  
and [https://www.its.fh-muenster.de/owasp-appseceu13/rooms/Aussichtsreich_+_Freiraum/ Aussichtsreich + Freiraum].
+
and [https://www.its.fh-muenster.de/owasp-appseceu13/rooms/Aussichtsreich_+_Freiraum/ Aussichtsreich + Freiraum]. There are also [https://ssl.really-force.net/owasp-appseceu13/ Mirror1] and [http://2013.appsec.eu/mirror-videos/ Mirror2].
 +
 
 +
Thx to Christiaan008 the conference videos were uploaded (unofficially but appreciated) to [http://www.youtube.com/playlist?list=PLwP_SiAcdui2WyA6YsaC9av_KHIEn4XRx youtube].
 
=== Slides ===
 
=== Slides ===
 
Quick links to the presentations. All slides are under [http://creativecommons.org/licenses/by-sa/3.0/ CC-BY-SA] license.
 
Quick links to the presentations. All slides are under [http://creativecommons.org/licenses/by-sa/3.0/ CC-BY-SA] license.
Line 22: Line 24:
 
* [[Media:Welcome_Note_-_Dirk_Wetter.pdf|Welcome Note]]: Dirk Wetter
 
* [[Media:Welcome_Note_-_Dirk_Wetter.pdf|Welcome Note]]: Dirk Wetter
 
* Keynote Angela Sasse -- [[Media:OWASP_angela_sasse_appsec_eu_aug2013.pdf|Busting The Myth of Dancing Pigs: Angela's Top 10 list of reasons why users bypass security measures]]  
 
* Keynote Angela Sasse -- [[Media:OWASP_angela_sasse_appsec_eu_aug2013.pdf|Busting The Myth of Dancing Pigs: Angela's Top 10 list of reasons why users bypass security measures]]  
* [[Media:OWASP_Where_we_are.._Where_we_are_going.pdf|OWASP: Where we are... Where we are going]]
+
* OWASP Introduction+Update: Michael Coates, Sarah Baso: [[Media:OWASP_Where_we_are.._Where_we_are_going.pdf|OWASP: Where we are... Where we are going]]
 
* [[Media:A Qualitative Comparison of SSL Validation Alternatives - Henning Perl+Michael Brenner+Mathew Smith.pdf|A Qualitative Comparison of SSL Validation Alternatives]]: Henning Perl, Michael Brenner
 
* [[Media:A Qualitative Comparison of SSL Validation Alternatives - Henning Perl+Michael Brenner+Mathew Smith.pdf|A Qualitative Comparison of SSL Validation Alternatives]]: Henning Perl, Michael Brenner
 
* [[Media:Recipes_for_enabling_HTTPS_-_Thomas_Herlea+Neils_Boucke+Johann_Peeters.pdf|Recipes for enabling HTTPS]]: Thomas Herlea, Neils Boucke, Johann Peeters
 
* [[Media:Recipes_for_enabling_HTTPS_-_Thomas_Herlea+Neils_Boucke+Johann_Peeters.pdf|Recipes for enabling HTTPS]]: Thomas Herlea, Neils Boucke, Johann Peeters
Line 38: Line 40:
  
 
* Keynote HackPra Allstars -- [[Media:]]: Jörg Schwenk
 
* Keynote HackPra Allstars -- [[Media:]]: Jörg Schwenk
* HackPra Allstars -- [[Media:HackPraAllstars_Rooting_Your_Internals_-_Michele_Orru.pdf|Rooting Your Internals]] -- Michele Orrù
+
* HackPra Allstars -- [[Media:HackPraAllstars_Rooting_Your_Internals_-_Michele_Orru.pdf|Rooting Your Internals]]: Michele Orrù
* HackPra Allstars -- [[Media:HackPra_Allstars-Burp_Pro_Tips_and_Tricks_-_Nicolas_Grégoire.pdf|Burp Pro Tips and Tricks]] -- Nicolas Grégoire
+
* HackPra Allstars -- [[Media:HackPra_Allstars-Burp_Pro_Tips_and_Tricks_-_Nicolas_Grégoire.pdf|Burp Pro Tips and Tricks]]: Nicolas Grégoire
 
* HackPra Allstars -- [[Media:HackPra_Allstars-Augmented_Reality_in_your_web_proxy_-_Roberto_Suggi_Liverani.pdf‎|Augmented Reality in your web proxy]]: Roberto Suggi Liverani
 
* HackPra Allstars -- [[Media:HackPra_Allstars-Augmented_Reality_in_your_web_proxy_-_Roberto_Suggi_Liverani.pdf‎|Augmented Reality in your web proxy]]: Roberto Suggi Liverani
* HackPra Allstars: Browser Timing Attacks [http://contextis.co.uk/files/Browser_Timing_Attacks.pdf| (Paper)][[Media:HackPra_Allstars-Browser_Timing_Attacks_-_Paul_Stone.pdf‎| Talk (updated slides)]]: Paul Stone
+
* HackPra Allstars -- Browser Timing Attacks [http://contextis.co.uk/files/Browser_Timing_Attacks.pdf| (Paper)] and the [[Media:HackPra_Allstars-Browser_Timing_Attacks_-_Paul_Stone.pdf‎| talk (updated slides)]]: Paul Stone
  
 
<!-- Slides entsprechen nicht dem Speakers Agreement
 
<!-- Slides entsprechen nicht dem Speakers Agreement
Line 75: Line 77:
 
* [[Media:JS_Libraries_Insecurity_-_Stefano_DiPaola.pdf|JS Libraries Insecurity]]: Stefano DiPaola
 
* [[Media:JS_Libraries_Insecurity_-_Stefano_DiPaola.pdf|JS Libraries Insecurity]]: Stefano DiPaola
 
* [[Media:Clickjacking_Protection_Under_Non-trivial_Circumstances_-_Sebastian_Lekies+Martin_Johns.pdf|Clickjacking Protection Under Non-trivial Circumstances]]: Sebastian Lekies, Martin Johns
 
* [[Media:Clickjacking_Protection_Under_Non-trivial_Circumstances_-_Sebastian_Lekies+Martin_Johns.pdf|Clickjacking Protection Under Non-trivial Circumstances]]: Sebastian Lekies, Martin Johns
* [[Media:Origin_Policy_Enforcement_in_Modern_Browsers_-_Frederik_Braun.pdf|Origin Policy Enforcement in Modern Browsers]]: Federik Braun
+
* [[Media:Origin_Policy_Enforcement_in_Modern_Browsers_-_Frederik_Braun.pdf|Origin Policy Enforcement in Modern Browsers]]: Frederik Braun
 
* [[Media:I_am_in_your_browser,_pwning_your_stuff_-_Krzysztof_Kotowicz.pdf‎|I am in your browser, pwning your stuff]]: Krzysztof Kotowicz
 
* [[Media:I_am_in_your_browser,_pwning_your_stuff_-_Krzysztof_Kotowicz.pdf‎|I am in your browser, pwning your stuff]]: Krzysztof Kotowicz
 
* [[Media:Sandboxing-Javascript_-_Lieven_Desmet+Nick_Nikiforakis.pdf|Sandboxing Javascript]]: Lieven Desmet, Nick Nikiforakis
 
* [[Media:Sandboxing-Javascript_-_Lieven_Desmet+Nick_Nikiforakis.pdf|Sandboxing Javascript]]: Lieven Desmet, Nick Nikiforakis

Latest revision as of 05:07, 15 March 2014

original photo from IqRS


For a more detailed description of everything see our main AppSec Research 2013 Web Site.


Presentations

Videos

Videos from the talks are available for Großer Saal and Aussichtsreich + Freiraum. There are also Mirror1 and Mirror2.

Thx to Christiaan008 the conference videos were uploaded (unofficially but appreciated) to youtube.

Slides

Quick links to the presentations. All slides are under CC-BY-SA license.

Thursday, August 22nd

Friday August, 23rd

Welcome

The German OWASP Chapter is hosting the global OWASP AppSec Research 2013 conference in Hamburg, Germany from August 20-23. Hamburg is the second biggest city in Germany, located in the north. To quote New York Times: No one tells you how pretty Hamburg is. We do.

The AppSec Research conference will be a premier gathering of Information Security leaders, also it has a research part.

Executives from Fortune 500 firms along with technical thought leaders such as security architects and lead developers will be traveling to hear the cutting-edge ideas presented by Information Security’s top talent. OWASP events attract a worldwide audience interested in “what’s next”. The conference is expected to draw 400-500 technologists from Government, Financial Services, Media, Pharmaceuticals, Healthcare, Technology and many other verticals.

The conference will be held from August 20-23, 2013 at the Emporio Hamburg. It's centrally located in the heart of the city with a splendid view over Binnen-, Aussenalster and River Elbe.


Facts in a nutshell

Date
Trainings: August 20-21, 2013
Conference: August 22-23, 2013
Location
Emporio Hamburg
Program
Complete Program
Trainings
Open Source (Security) Showcase
HackPra Allstars Track
Events
Dinner ...
Sponsors
Sponsorship Description, find out more here.
Call for ...
Closed: May 15, was extended: May 22: Papers (Research).
Closed: Presentations (Industry). Talk teasers are here, Program comming soon.
Closed: Call for Trainings. Program is published
Closed: OWASP Open Source (Security) Showcase (OSS)
Registration
Is open, please see http://2013.appsec.eu/registration/ .
Mailinglist
please subscribe to: https://lists.owasp.org/mailman/listinfo/appseceu2013
Partners + Supporters
External Web Site

Sponsorship

AppSec Research is seeking for sponsors. We have several possibilities how you can promote your company, seek for employees and on the other side support the conference. Please find the description, pricing and possible items in a PDF here.

Thanks to our following sponsors

Platin
www.riverbed.com/products-solutions/products/application-delivery-stingray/

Gold Silver Bronze
    www.hpenterprisesecurity.com

www.imperva.com  www.f5.com  
www.barracuda.com   www.securenet.de  www.checkmarx.com  www.acunetix.com   www.denyall.com    www.securityinnovation.com   www.whitehatsec.com www.schutzwerk.com

www.tele-consulting.com   www.trustwave.com  www.ergon.ch  www.microsoft.com www.sap.com

Call for {Presentations,Papers,Trainings}

We had there separate "Calls":

Ticket Challenge

.. for the record

Teams

Conference Orga

Dirk Wetter (Chair)
Kai Jendrian (Co-Chair)
Ingo Hanke
Boris Hemkemeier
Achim Hoffmann
Martin Johns
Hartwig Gelhausen
Tobias Glemser
Sebastien Deleersnyder
Kelly Santalucia
Sarah Baso

Contact: orga2013//lists/appsec/eu


Twitter
Twitter: @appseceu
Twitter: @OWASP_de (German account)

<Germany>