Difference between revisions of "AppSec Washington 2005/Agenda"

From OWASP
Jump to: navigation, search
Line 24: Line 24:
 
  | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
 
  | style="width:10%; background:#7B8ABD" | 12:30 - 13:45 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | Lunch
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Alex Stamos - iSEC Partners - Web Services Project ([http://www.owasp.org/docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt ppt]) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps
+
  | style="width:10%; background:#7B8ABD" | 13:45 - 15:00 || style="width:40%; background:#BC857A" align="left" | Alex Stamos - iSEC Partners - Web Services Project ([http://www.owasp.org/docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Alex_Smolen-OWASP_WebServices_Project.ppt ppt]) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps ([http://old.owasp.org/docroot/owasp/misc/OWASP_DC_2005_Presentations/Track_1-Day1/AppSec2005DC-Alex_Stamos-Attacking_Web_Services.ppt ppt])
 
  | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project
 
  | style="width:40%; background:#BCA57A" align="left" | Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project
  

Revision as of 06:55, 31 May 2006

OWASP DC 2005 Conference Schedule

Day 1 - October 11, 2005
Track 1: Red Auditorium Track 2: Green Auditorium
08:00 - 09:00 Registration and Coffee
09:00 - 09:10 Introduction: Dave Wichers, OWASP Conferences Chair & COO Aspect Security (video)
09:10 - 10:00 Keynote: Joe Jarzombek - Dir. of Software Assurance - DHS - Software Assurance: Considerations for Advancing a National Strategy to Secure Cyberspace (| ppt)
10:00 - 11:00 Ron Ross - FISMA Project Lead - NIST - Status of the Federal Information Security Management Act (FISMA) Project (ppt)
11:00 - 11:20 Break
11:20 - 12:30 Jack Danahy - CEO Ounce Labs - The Business Case for Software Security Assurance (ppt, video) Arian Evans - FishNet Security - The OWASP Tools Survey Project

(ppt, video)

12:30 - 13:45 Lunch
13:45 - 15:00 Alex Stamos - iSEC Partners - Web Services Project (ppt) - Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps (ppt) Paul Black - NIST - The Software Assurance Metrics and Tool Evaluation (SAMATE) Project

Michael Kass - NIST - A Taxonomy of Software Assurance Tools and the Security Bugs They Catch

15:00 - 15:20 Break
15:20-16:40 Diniz Cruz - OWASP .NET Project Lead - Rooting the CLR Paul Black - NIST - Developing a Reference Dataset

Rick Kuhn - NIST - Software Fault Interactions

16:40-17:00 Break
17:00 - 18:00 Alex Smolen - Parasoft - Application Logic Defense Daniel Cuthbert - OWASP Testing Project Lead - The Evolution of Web Application Penetration Testing
18:00 - 19:00 Bus to Dinner Event at Holiday Inn
19:00 - 21:00 Dinner Even (Optional) at Holiday Inn
Day 2 - October 12, 2005
08:00 - 09:00 Coffee
09:00 - 09:50 Keynote Day 2: Ira Winkler - Secrets of Superspies
09:50 - 10:50 Jeremy Poteet - AppDefense - In the Line of Fire: Defending Highly Visible Targets
10:50 - 11:10 Break
11:10 - 12:30 Jeff Williams - OWASP Chair & CEO Aspect Security - The OWASP Guide Project v2 (ppt) and OWASP Membership Plan (ppt) (video both) Danny Allan - Watchfire - Identity Theft, Pfishing, and Pharming: Accountability and Responsibilities
12:30 - 13:45 Lunch
13:45 - 15:00 Dinis Cruz - OWASP .NET Project Lead - OWASP .Net Tools Project Matt Fisher - SPI Dynamics - Worms Now Targeting Web Applications
15:00 - 15:20 Break
15:20 - 16:30 Tony Canike - The Vanguard Group - Establishing an Enterprise-Wide Application Security Program (ppt / video) Rogan Dawes - OWASP WebScarab Project Lead - Advanced Features of WebScarab (ppt / video)
16:30 - 16:50 Break
15:20 - 16:30 John Steven - Cigital - Building a Scalable Software Security Practice within your Organization Gunnar Peterson - Arctec Group - Integrating Identity Services into Web Applications (ppt / video)