Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
m (https://www.owasp.org/images/2/2f/Donatenow.jpg)
 
(340 intermediate revisions by 2 users not shown)
Line 1: Line 1:
== Welcome to the Los Angeles Chapter!  ==
+
== '''Welcome to the Los Angeles Chapter!''' ==
  
 +
[[Image:New_OWASP_LA_Logo-08-2014.jpg|700px|New_OWASP_LA_Logo-08-2014.jpg]]
  
=====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]=====
+
<!-- =====[http://www.regonline.com/donation_1044369 https://www.owasp.org/images/2/2f/Donatenow.jpg]===== -->
  
 
Single Meeting Supporter:
 
Single Meeting Supporter:
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
 
Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission  
  
Get the following benefits::
+
''[[File:Button_red_sponsor.png|300px| center | link=https://www.regonline.com/Register/Checkin.aspx?EventId=1044369]]''
  - Meet upwards of 60-90 potential new clients
+
 
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
+
<br>
 +
Get the following benefits:
 +
 
 +
  - Meet upwards of 80-120 potential new clients
 +
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
  - Have a table at local chapter meeting  
+
  - Have a table at local chapter meeting with lots of time to meet and greet attendees
 
  - Promote your products and services
 
  - Promote your products and services
  - Bring a raffle prize to gather business cards
+
  - Bring a raffle prize to gather business cards and contact information
 +
The cost is only $1,400
  
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
  
== '''Announcements''' ==
+
== '''Chapter Organizational Sponsors''' ==
  
=== Change in Leadership ===
+
''[[File:akana.jpeg|150px| center | link=http://www.akana.com/]]''
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
+
Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com
  
 +
<br>
 +
== '''Participation'''  ==
  
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
+
OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [https://www.owasp.org/index.php/Chapter_Leader_Handbook Chapter_Leader_Handbook]. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the [https://www.owasp.org/index.php/Speaker_Agreement speaker agreement] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.
==== We are on Meetup. Please join our community there. ====
+
 
 +
== '''Announcements'''  ==
 +
 
 +
<br>
 +
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
 +
<br>
 +
'''<h2>[http://www.meetup.com/OWASP-Los-Angeles https://www.owasp.org/images/8/82/Meetup_logo3.jpg] [http://www.meetup.com/OWASP-Los-Angeles] [http://www.meetup.com/owasp-los-angeles OWASP-Los-Angeles '''''We are on Meetup. Please join our community here''.''']</h2>'''
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
 
===== If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer. =====
  
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
 
===== http://www.meetup.com/OWASP-Los-Angeles/ =====
  
<br>  
+
<br>
== '''OWASP Mailing List'''==
+
===== Sign up for the OWASP Los Angeles mailing list, very low volume and spam free.  =====
+
  
===== https://lists.owasp.org/mailman/listinfo/owasp-losangeles =====
+
== '''Become an OWASP Member TODAY'''==
 +
===== Support your LA Chapter: only $50 for the entire year! =====
  
<br>
+
===== https://www.owasp.org/index.php/Individual_Member  =====
  
== '''Next Meeting  February 20, 7PM:'''==
+
<br>
*'''At: Symantec Offices'''
+
  
*900 Corporate Pointe, Culver City, CA 90230
+
== '''Next OWASP Meeting'''==
 +
'''''**[http://www.meetup.com/OWASP-Los-Angeles/pages/Symantec_Parking_Information/ NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014] **'''''
 +
<br>
  
*Note the change in date, due to RSA
+
== '''[http://www.meetup.com/OWASP-Los-Angeles/events/219134708/ July 29, 2015 7pm at Symantec - Culver City, Ca] '''<br> ==
  
 +
  Speaker: Leif Dreizler
  
 +
  Topic: Inherent differences between the hacker and developer mentality
  
== '''Speaker: iMan Louis''' ==
+
'''<u>Abstract:</u>'''  
*''' Abstract: Secure Password Storage Practices '''
+
Leif Dreizler, BugCrowd, explores the inherent differences between the hacker and developer mentality. In this discussion, the audience will hear from a former breaker and fixer of security flaws on how developers who acknowledge the existence of ‘The Bogeyman’ come that much closer to being active participants in ensuring their company’s security, rather than passive victims. During his talk you'll learn... how to decrease friction between dev and security teams, how crowdsourced security testing merges into the SDLC, how organizations can increase ROI on security testing with a pay for performance model and more.
(or Why "Hashing + Salting != Secure Passwords")
+
  
Many web applications require passwords that are hard for users to remember, cumbersome to type, yet easy for hackers to crack. With affordable, lightning-fast hardware aiding hackers, we have recently seen a number of large organizations in the news for user-password security failures. Join us as we discuss common attacks on password lists/tables as well as some password storage practices that can make any cracking attempts not worth the attackers’ time.
+
'''<u>Speaker bio:</u>'''
 +
Leif is a Senior Security Engineer at Bugcrowd, the innovator in crowdsourced security testing for the enterprise, where he works to customize and support security testing solutions for Bugcrowd clients. Prior to Bugcrowd, Leif worked as Senior Application Security Engineer at Redspin, performing application security assessments. During his time at Redspin he served as the Application Team Lead, working with clients large and small at the engineering and sales level. Leif is an OWASP speaker and member, and contributes to the Firebug project. Leif attended the University of California where he studied Computer Science. Most recently, Leif spoke at Bsides-SF and invited to be part of the department’s “Array of Talks” panel, a speaker series that he helped develop.
 +
<br>
  
 +
<div style="text-align: center;">
 +
Thanks to our sponsor: Bugcrowd
  
*'''Bio: iMan Louis '''  
+
<!-- ''[[File:Bugcrowd.jpg|200px| center | link=http://www.bugcrowd.com/ ]]''
iMan is a Senior Consultant with Cigital Inc., where he conducts security code reviews, ethical hacking, and web application security assessments for some of the largest global corporations. He has also developed courseware for Cigital's Defensive Programming course series and delivered instructor-led training for many years. He brings 12 years of experience in software development and application security. iMan has recently moved from San Francisco to the Greater L.A. area and is looking forward to being an active member of our L.A. OWASP chapter.
+
sponsor info:
  
 
+
An innovator in crowdsourced security testing for the enterprise, Bugcrowd harnesses the power of more than 18,000 security researchers to surface critical software vulnerabilities and level the playing field in cybersecurity. Bugcrowd also provides a range of responsible disclosure and managed service options that allow companies to commission a customized security testing program that fits their specific requirements. Bugcrowd’s proprietary vulnerability disclosure platform is deployed by Western Union, Pinterest, Drupal and many others. Based in San Francisco, CA, Bugcrowd is backed by Costanoa Venture Capital, Rally Ventures, Paladin Capital Group and Blackbird Ventures. For more information visit www.bugcrowd.com.
== '''Sponsors: Arxan Technologies and Cigital'''==
+
</div>
''' Arxan Technologies '''
+
 
+
Sharing thought leadership & best practices on mobile apps security.
+
 
+
MOBILE APPLICATION PROTECTION
+
Application Security for Digital Media, Enterprise, Financial Institutions, Gaming, Software Publishers and more.
+
 
+
WORLD LEADER IN PROTECTING THE APP ECONOMY
+
Security for Mobile, Desktop, Embedded and Server Applications.
+
 
+
ACTIVE CONTENT PROTECTION TO SECURE PREMIUM CONTENT AND DIGITAL MEDIA APPLICATIONS
+
 
+
ANTI-TAMPER, ANTI-PIRACY SOFTWARE PROTECTION
+
Prevent lost revenue and compromise of intellectual property from hacker attacks in global markets
+
 
+
 
+
''' Cigital '''
+
 
+
The world’s largest consulting firm specializing in software security
+
 
+
Cigital, Inc is the global leader in helping organizations design, build, and maintain secure software. Our unique expertise, technologies, and training services are a culmination of over twenty years of research and thousands of successful software security consulting engagements at leading public and private organizations throughout the world.
+
  
  
Line 86: Line 84:
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
  
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
+
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg] OR [mailto:Stuart.Schwartz@owasp.org Stuart Schwartz]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
  
 
<br>  
 
<br>  
  
 +
== '''Upcoming OWASP Meetings'''  ==
 +
 +
<br>
 
== '''Other Events'''  ==
 
== '''Other Events'''  ==
*'''ISSA Los Angeles Monthly Meeting'''
+
<br>
        Special Discount for OWASP Members
+
        WEDNESDAY, Feb 20, 2013 11:30 AM - 1:45 PM
+
        at Les Freres Taix French Restaurant
+
        1911 West Sunset Blvd., LA, Ca 90026
+
        (213) 484-1265
+
        issala.org
+
  
*''' [http://www.issala.org/summit/ Early Bird Registration now open for the ISSA LA Security Summit May 21 at the Universal City Hilton] '''
 
  
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2015 Meetings|2015 Meetings]]
 +
 +
[[Los Angeles/2014 Meetings|2014 Meetings]]
 +
 +
[[Los Angeles/2013 Meetings|2013 Meetings]]
 +
 
[[Los Angeles/2012 Meetings|2012 Meetings]]  
 
[[Los Angeles/2012 Meetings|2012 Meetings]]  
  
Line 113: Line 113:
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
  
[[Los Angeles Presentation Archive|List of presentations available from past meetings]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
+
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
<br>  
+
<br>
  
 
== Los Angeles Chapter  ==
 
== Los Angeles Chapter  ==
Line 122: Line 122:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker  <br>
+
Volunteers: Yev Avidon and Mikhael Felker  <br>
 +
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 13:15, 27 July 2015

Welcome to the Los Angeles Chapter!

New_OWASP_LA_Logo-08-2014.jpg


Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Button red sponsor.png


Get the following benefits:

- Meet upwards of 80-120 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting with lots of time to meet and greet attendees
- Promote your products and services
- Bring a raffle prize to gather business cards and contact information

The cost is only $1,400

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Chapter Organizational Sponsors

Akana.jpeg

Akana’s comprehensive suite of API Management, API Security, SOA Governance, Cloud Integration, and Microservices solutions helps businesses accelerate digital transformation by securely extending their reach across multiple channels – mobile, cloud and Internet of Things. Akana enables enterprises to quickly deliver scalable applications, share data as APIs, connect and integrate applications, drive partner adoption, monetize their assets and provide intelligent insights into their business and operations. The world’s largest companies including Bank of America, Pfizer, and Verizon use Akana to harness the power of their technology and transform their businesses. Akana is also recognized as a “Leader” by Forrester in API Management Solution Wave, Q3 2014, by other analyst firms. For more information on Akana’s API Platform, see http://www.akana.com


Participation

OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.

Announcements


OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


Meetup_logo3.jpg [1] OWASP-Los-Angeles We are on Meetup. Please join our community here.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


Next OWASP Meeting

**NOTE: Please review NEW parking rules (@meetup.com) for our monthly meetings at Symantec as of 7/22/2014 **

July 29, 2015 7pm at Symantec - Culver City, Ca

  Speaker: Leif Dreizler
  Topic: Inherent differences between the hacker and developer mentality

Abstract: Leif Dreizler, BugCrowd, explores the inherent differences between the hacker and developer mentality. In this discussion, the audience will hear from a former breaker and fixer of security flaws on how developers who acknowledge the existence of ‘The Bogeyman’ come that much closer to being active participants in ensuring their company’s security, rather than passive victims. During his talk you'll learn... how to decrease friction between dev and security teams, how crowdsourced security testing merges into the SDLC, how organizations can increase ROI on security testing with a pay for performance model and more.

Speaker bio: Leif is a Senior Security Engineer at Bugcrowd, the innovator in crowdsourced security testing for the enterprise, where he works to customize and support security testing solutions for Bugcrowd clients. Prior to Bugcrowd, Leif worked as Senior Application Security Engineer at Redspin, performing application security assessments. During his time at Redspin he served as the Application Team Lead, working with clients large and small at the engineering and sales level. Leif is an OWASP speaker and member, and contributes to the Firebug project. Leif attended the University of California where he studied Computer Science. Most recently, Leif spoke at Bsides-SF and invited to be part of the department’s “Array of Talks” panel, a speaker series that he helped develop.

Thanks to our sponsor: Bugcrowd



Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg