AppSec ASIA 2016
- Speaker Bios
- Open Source Projects
- Registration and Fees
- Travel and Accommodation
- Networking Events
- Chapter Leader Workshop
APPSEC ASIA 2016
Call for Paper
OWASP AppSec ASIA 2016 will bring together application security experts and software engineers from all over the world on May 21, 2016. Industry and academia meet to discuss open problems and new solutions in web & mobile security. For this event, we will invite application security researchers, thought leaders and developers worldwide to submit papers for presentations looking for “the next”, cutting edge research in the context of web applications, secure development, security management and privacy. Don't miss the opportunity to share and discuss your ideas and knowledge with other experts and practitioners.
The topics of interest, but not limited:
- Web Security
- Mobile Security
- Cloud Security, specifically secure Cloud Apps
- Infrastructure security
- Secure development
- Application Security Testing
- Privacy protection in web based apps
- Emerging web technologies and associated security considerations
- Security Trainings, Certificates and CTP
Papers should describe new ideas, new implementations, or experiences related to web & mobile security. We are glad to have some leading-edge topics and ideas as well as in-depth discussion in the conference. The conference planning team will review your submission based on a descriptive abstract of your intended presentation. Feel free to attach a preliminary version of your presentation if available, or any other supporting materials. Remember: the better your description is, the better our review will be.
Submission deadline: Mar 25, 2016.
Notification of acceptance: Mar 31, 2016.
Presentation PPT due: April 30, 2016.
To submit a proposal please use easy chair https://easychair.org/conferences/?conf=appsecasia2016wuhanc
To contact the conference planning team, please mail to firstname.lastname@example.org
OWASP Speaker Agreement: https://www.owasp.org/index.php/Speaker_Agreement
Likely we can cover travel expenses or costs for accommodations.
By your submission you agree to the OWASP Speaker Agreement. OWASP values vendor neutrality. You need to use the OWASP presentation template and you’re not allowed to place marketing pitches in your slides. All presentation slides will be published on the conference website after the conference. Please make sure that any pictures and other materials in your slides don’t violate any copyrights. You are solely liable for copyright violations. You may choose any CC license for your slides, including CC0. OWASP does suggest open licenses.
No training plan.
OWASP Project Track Talks
OWASP AppSensor the future of Application Security
Dennis Groves (Download the Presentation)
The OWASP AppSensor is commonly described as an application layer intrusion detection system. However, it is far more that this. It is also an architecture design pattern, as well as a development practice and an operations methodology. I propose the following outline for my talk:
- (describe) I will describe what OWASP AppSenor is and why you would want one.
- (design) I will give a brief talk about the principles of secure architecture and design.
- I will give a brief history of IDS and NIDS, their strengths and weaknesses.
- I will then discuss how how and where AppSensor fits into that history, and how it improves upon the past for example:
- (development) The concept in implementation is roughly analogous to an intrusion detection (and prevention) system in the network security world. However, this concept can be applied inside of an application in a more specific way that (importantly) reduces false positives, which is an issue that often plagues network intrusion detection systems. This means that the core of the AppSensor system performs detection, monitoring, and (possibly) response depending on configuration settings.
- (deployment) I will the discuss deployment and operation of AppSensor.
- I will then describe why I believe this is the most important development in application security, and why everbody will develop software this way by the end of the decade.
- I will then propose future developments and enhancements for the OWASP AppSensor
Using ESAPI for Java to Build Secure Web Applications
Jim Manico (Download the Presentation)
We cannot “firewall” or “patch” our way to secure websites. In the past, security professionals thought firewalls, Secure Sockets Layer (SSL), patching, and privacy policies were enough. Today, however, these methods are outdated and ineffective, as attacks on prominent, well-protected websites are occurring every day. Organizations around the world rely on web security services to maintain the safety of their websites in today’s hostile online environment. Website developers must also learn to code in a secure fashion to have any chance of providing organizations with proper defenses in the current threat-scape. The session will provide specific tips and guidelines to make website code both low risk and less vulnerable using the OWASP ESAPI for Java project.
AppSec APAC 2013 will be held at the Hyatt Regency in Jeju, South Korea.
The conference training and talk will be held in the Regency Ballroom and Terrace Ballroom. Exhibitor booths will be set up in the foyer outside the ballrooms on Thursday and Friday.
Conference Registration is now open! Click Here to Register.
OWASP AppSec Asia Pacific features two days of training February 19-20, and two days of talks, February 21-22, 2013
Please note - all prices below appear in USD; however arrangements can be made for payment in South Korean Won.
Conference Registration Fees (not including training)
| Ticket Type
||Early (until January 18)||Regular Price|
|Non-Member||$295 USD||$395 USD|
|Non-Member plus 1-year OWASP Membership!||$295 USD||$395 USD|
|Active OWASP Member||$275 USD||$375 USD|
|Student||$75 USD||$100 USD|
|Training Only||(See pricing table below)|
| Course Length
|| Course Date(s)
|1-Day Class||Wednesday, Feb 20||$400 USD|
|2-Day Class||Tuesday and Wednesday, Feb 19-20||$800 USD|
Price per attendee. Please note that conference Registration is separate.
For more information on available training courses and trainer bios, please select the "Trainers and Training Schedule" tab.
Optional Conference Events
|| Date & Time
|1/2 Day Developer Workshop||Wednesday, Feb 20, 1-5pm||Complimentary|
|Chapter Leader Workshop||Wednesday, Feb 20, 6:30-9:30pm||Complimentary|
|Conference Networking Dinner||Thursday, Feb 21, 7-9pm||$50 USD|
Sign up for any of these optional items by registering for the conference.
10% off for groups of 10-19 20% off for groups of 20-29 30% off for groups of 30 or more
Please Contact Us for more information about registering a group.
We are pleased to offer $20 off admission for active OWASP members. Multiple discounts can not be applied.
Registration for Trainers and Speakers
If you have been selected to deliver a training or talk at the conference, you should have received a discount code for complimentary admission.
If you did not receive this code or have questions, please Contact Us.
Registration for OWASP Leaders
Complimentary admission to the conference is offered to active OWASP Chapter and Project Leaders. Additionally, two seats for each of the training courses are available at no cost to active OWASP Chapter and Project Leaders (available on a first come, first serve basis). To register as an active Chapter or Project leader, please select the general event registration option and enter discount code: OWASPLEADER.
Please note: conference and training registration using the OWASPLEADER discount code will be verified by the conference team and if you are not an active OWASP Chapter or Project Leader, you will be contacted regarding your status and your registration may be subject to cancellation.
We are looking for sponsors for 2013 edition of Global AppSec APAC.
If you are interested to sponsor Global AppSec APAC 2013, please contact the conference team: AppSecAPAC2013@owasp.org
Sponsorship Deadline is January 15, 2013.
To find out more about the different sponsorship opportunities please check the document below:
OWASP AppSec APAC 2013 Sponsorship Options - English
OWASP AppSec APAC 2013 Sponsorship Options - Korean
For assistance with booking a flight or hotel, feel free to utilize OWASP's preferred travel agency:
Segale Travel Service contact information is: +1-800-841-2276
Sr. Travel Consultants:
Maria Martinez...ext 524
Linn Vander Molen...ext 520
Additionally, the Conference Planning Team is available to answer any questions!
We've been able to arrange for special rates at the Hyatt Regency Jeju(where the training and conference will be held).
The special room rates are available two nights either side of the event ensuring that if you are travelling domestic or international it's easy to find a room at a good rate.
Hyatt Regency Jeju
114, Jungmungwangwang-ro 72 beon-gil, Seogwipo-si
Jeju Special Self-Governing Province
South Korea 697-130
Tel: +82 64 733 1234 Fax: +82 64 732 2039
To book a room at the special rate: *Add the room to your online conference registration or *Complete the Hotel Booking Form and fax or email to the address on the form.
Please notice that if you add the room to your conference registration, the rates are in USD and include all service fees and taxes.
Jeju International Airport is approximately 40 minutes by car from the Hyatt Regency. Hotel Map & Directions
Arrival by Airport Limousine Bus (Recommended)
The Airport Limousine Bus (Bus No.600) will be waiting at the Airport exit at all times during its operating hours of 6:20 am to 10:10 pm. The bus will leave the airport at 15 minute intervals, and will take around 50 minutes to reach the hotel’s main entrance. The price is KW 3,900 per person (less than $4 USD).
Arrival by private car
- Exit Jeju International Airport and enter Jungmun Highway.
- Follow the signs to Jungmun.
- Make a right from the junction where the wind power plant can be seen on the right.
- Go straight ahead to find the sign for the hotel.
- Follow the road indicated by the sign for Hyatt Regency Jeju.
Arrival by rental car
- Press the navigation code ‘4327’ for the rental car.
- Input the address: 3039-1 Saekdal-Dong Seogwipo-Si, Jeju Island.
- Input the telephone number: 064-733-1234.
Parking at the Hyatt Regency Jeju
Hyatt Regency Jeju offers the outdoor parking on hotel premises available to hotel guests at no charge.
Complimentary valet parking is also available on request. The hotel’s parking area is accessible 24 hours a day.
Information +82 64 735 8495
We will be hosting a networking dinner with Korean-style food and beverages on Thursday evening, February 21 from 7:00pm to 9:00 pm at the Hyatt Regency Jeju.
The cost of this dinner is approximately 53,000 KRW ($50 USD) and can be added to your online conference registration.
About the Workshop
When: Wednesday evening, February 20th, from 6:30 to 9:30 pm
Where: Hyatt Regency Jeju.
The Global Chapter Committee invites all chapter leaders to participate in the upcoming Chapter Leader Workshops at AppSec APAC 2013.
The Chapter Leader Workshop format will continue to follow the Q & A format used during AppSec USA and AppSec LATAM. Questions and discussion will focus on sections of the Chapter Leader Handbook, OWASP Global Chapter resources, and local chapter challenges.
Dinner will be provided for workshop participants.
Register for the Workshop
To confirm your participation in the event, register for the conference and be sure to select "Chapter Leader Workshop" as an optional registration item.
Chapter Leader Sponsorships
- January 7, 2013 - Appsec APAC Chapters Workshop sponsorships applications due
- January 14 - Applicants notified of status
- If you need financial assistance* to attend the Chapter Leader Workshops please contact us by the application deadline.
- Priority of sponsorships will be given to those not covered by sponsorship to attend a previous workshop. Additionally, we are looking for new or struggling chapter leaders who need assistance kick starting their chapter.
- When you apply for funding, please let us know *why we should sponsor you*. While we prefer that chapter leaders use their own chapter's funds before requesting a sponsorship, this is not a requirement for application.
- If your chapter has fund but will not be using them to sponsor your attendance, please include why you will not be using the funds for this purpose (i.e. what are the other plans for those funds?).
If any questions, please contact us