BeNeLux OWASP Day 2010
Eoin Keary (OWASP Board, E&Y)
Sebastien Deleersnyder (OWASP Board, SAIT Zenitel)
Radu State (University of Luxembourg)
N Nikiforakis (Katholieke Universiteit Leuven)
Marco Balduzzi (Eurecom)
Walter Belgers (Madison Gurkha)
Training, December 1st
|OWASP Projects and Resources you can use TODAY!|
|Overview & Goal|
|Date||Venue & Directions|
|December 1, 2010|| Fontys Hogescholen, Den Dolech 2, Traverse 3.43, Eindhoven, The Netherlands
How to get here:
|Price & Registration|
|COURSE'S MODULES DETAILS|
|Time||Module||Trainer||Presentation||Overview & Goal|
|11h00 (30m)||Guided tour of OWASP Projects||Tour of OWASP’s projects|| See details and Trainer's notes
|11h30 (45m)||Threat Risk Modeling||Martin Knobloch||Threat Modeling – how to do it|| See details and Trainer's notes
|12h15 (15m)||Coffee Break||
|12h30 (45m)||OWASP Testing Guide||Martin Knobloch||Application Security Using the Testing Guide|| See details and Trainer's notes
|14h30 (60m)||OWASP Top 10||Sebastien Deleersnyder||OWASP Top 10 - Issues and Remedies|| See details and Trainer's notes
|15h30 (90m)||OWASP Code Review Project||Eoin Keary||OWASP Code Review|| See details and Trainer's notes
|17h00 (15m)||Coffee Break||
|17h15 (60m)||OWASP Software Assurance Maturity Model||Sebastien Deleersnyder||Software Assurance Maturity Model & Secure Development Lifecycle||See details and Trainer's notes|
Conference, December 2nd
|Location - December 2nd, 2010|
|from - to||Registration|
|from - to||
|Eoin Keary (OWASP Board, E&Y)|
|Chapter Lead and founder of OWASP Ireland chapter. Co-Author,Co - Editor and team lead of the OWASP Testing Guide.
Co-Author, Editor/team lead of the OWASP Code Review guide.
|Sebastien Deleersnyder (OWASP Board, SAIT Zenitel)|
|Sebastien started the successful Belgian OWASP Chapter and performed several public presentations on web application and web services security. Sebastien specialises in (web) application security, combining his software development and information security experience. He is currently OWASP Foundation board member and Managing Technical Consultant at SAIT Zenitel.|
|Radu State (University of Luxembourg)|
|Radu received his PhD degree from INRIA, Nancy – University Henri Poincaré in 2001.|
Radu has held positions as Research Engineer and Senior Engineer at INRIA-LORIA and has been working as Senior Researcher at the University of Luxembourg, FSTC-CSC Research Unit from October 2008 to September 2010. Radu's research activity will be on one side investigate interoperability aspects to supply security components in the area of ubiquitous computing and on the other side set up a project specific interoperability research lab in close cooperation with industry.
|Nick Nikiforakis (Katholieke Universiteit Leuven)|
|Nick Nikiforakis is a PhD student at the Katholieke Universiteit Leuven, in Belgium. He belongs to the DistriNet research group and specifically in the “Security & Languages” task-force. His current research interests are: low-level security for unsafe languages and web application security. |
Nick holds a BSc in Computer Science and a MSc on Distributed Systems from the University of Crete in Greece. He worked for 3 years as a research assistant in the Distributed Computing Systems group at the Foundation of Research and Technology in Crete where he did research in network data visualization, authentication schemes using mobile devices and phishing countermeasures. In the past, Nick has presented his work in academic conferences as well as hacking conventions. His work can be found online at www.securitee.org.
|Marco Balduzzi (Eurecom)|
|Marco Balduzzi was born in Seriate (Italy) in 1982. He has studied Computer Engineering at the University of Bergamo where he has obtained his Master (Eng. Msc.) with a thesis titled «Security by virtualization: a novel antivirus for personal computers». During his graduation studies, in 2005 he has spent six months as exchange student at the University of Science and Technology of Trondheim (Norway), and the following year he has joined an IT-security company in Munich (Germany) to perform an internship oriented to the research of a new system architecture for computers defense. Marco is interested in Linux and Free-Software since the year 2000, when he co-founded the Bergamo's Linux User Group. Since 2004, he has worked as IT-security and networking specialist for several companies in Milan (Italy), Munich (Germany) and Sophia-Antipolis (France). In October 2008, he has joined EURECOM as Ph.D. student, where he works in the research group of Applied Security iSecLab under the supervision of Prof. Engin Kirda|
|Walter Belgers (Madison Gurkha)|
|Walter Belgers heeft Technische Informatica gestudeerd aan de Technische Universiteit Eindhoven met als extra vak o.a. Computercriminaliteit (Universiteit van Tilburg). Walter is in 1994 begonnen bij Philips C&P (tegenwoordig Atos Origin) als ontwikkelaar van wereldwijde firewall-diensten en de uitrol daarvan. Daarna heeft hij enkele jaren lesgegeven op het gebied van UNIX en Internet beveiliging bij AT Computing. In 2002 is hij toegetreden tot Madison Gurkha als partner. Naast zijn technische consultancy-activiteiten, houdt Walter zich bezig met het schrijven van artikelen en columns, het geven van lezingen en voorlichten van de pers. Walter is gecertificeerd security professional (CISSP) en security auditor (CISA).|
|Martin Knobloch (Sogeti Nederland B.V.)|
|Martin Knobloch is employed at Sogeti Netherlands as Senior Security Consultant. He is founder and thought leader of the Sogeti task force PaSS, Proactive Security Strategy, with an integral solution of information security within organisation, infrastructure and software. |
At OWASP, Martin is board member of the OWASP Netherlands Chapter and member of the Global Education Committee.
During both days, a Capture The Flag challenge will be online and available!
Do you have the skills to hack websites? Can you crack various codes? Can you think outside the box? Do you like challenges?
Then come and participate in the OWASP Capture The Flag Competition. Test your webhacking/codecracking skills against various challenges. Compete against yourself and others. The CTF will run the complete conference, so you can logon and play anytime you want. We will announce the winner at the last day of the conference. The winner will earn $100 worth of OWASP books and gets a OWASP membership for a year, the runner up wins $50 of OWASP books and gets a OWASP membership for a year, the person on third place will win a OWASP membership for a year.
So come and play and earn the bragging rights for the OWASP CTF Challenge at OWASP BeNeLux 2010.
The training day and the conference are free!
To support the OWASP organisation, consider to become a member, it's only US$50!
Check out the Membership page to find out more.
Eindhoven, The Netherlands (Den Dolech 2, Traverse 3.43)
The BeNeLux Day 2010 Program Committee:
- Martin Knobloch / Ferdinand Vroom (OWASP Netherlands)
- Bart De Win / Sebastien Deleersnyder (OWASP Belgium)
- Jocelyn Aubert / Andre Adelsbach (OWASP Luxembourg)
Contact netherlands <at> owasp.org for sponsorship
Social EventThere will be a social conference evening at the eve of the first day, December 1st
Details to be posted soon!