Difference between revisions of "Los Angeles"

From OWASP
Jump to: navigation, search
 
(163 intermediate revisions by 2 users not shown)
Line 9: Line 9:
 
Get the following benefits::
 
Get the following benefits::
 
  - Meet upwards of 60-90 potential new clients
 
  - Meet upwards of 60-90 potential new clients
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site(Image size for logos: gif, jpg or png with a size of 150px X 45px at 72dpi or 55px X 80px at 72dpi)
+
  - Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
 
  - Have a table at local chapter meeting  
 
  - Have a table at local chapter meeting  
Line 17: Line 17:
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
 
Contact us [[#Los Angeles Chapter]] for general questions relating to sponsorship and donations
  
== '''Announcements'''  ==
+
== '''Participation'''  ==
  
=== Change in Leadership ===
+
OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [https://www.owasp.org/index.php/Chapter_Leader_Handbook Chapter_Leader_Handbook]. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the [https://www.owasp.org/index.php/Speaker_Agreement speaker agreement] and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.
Tin Zaw has been a strong and effective visionary President and Leader for OWASP Los Angeles for several years. He will remain an active member of the Board, but effective January 1, 2013, Tin will be stepping down as Leader. Richard Greenberg -- Current Board Member, will assume this role going forward. We give our thanks to Tin for his efforts and dedication and look forward to the new year under Richard's leadership.
+
  
 +
== '''Announcements'''  ==
 +
 +
===''' [https://www.owasp.org/index.php/WASPY_Awards_2013/ OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY]===
 +
<br>
  
 
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
 
'''[http://www.meetup.com/OWASP-Los-Angeles/ http://img1.meetupstatic.com/892670376411449149876/img/header/logo.png]
Line 35: Line 38:
 
===== https://www.owasp.org/index.php/Individual_Member  =====
 
===== https://www.owasp.org/index.php/Individual_Member  =====
  
<br>  
+
<!--
 +
[[Image:Cigital image.jpg| 100px |thumb|left|link=http://www.cigital.com/]]      -->
 +
<br>
 +
== '''2013 December Holiday Party at Daily Grill in LA''' ==
 +
[[Image:holiday.jpg| 500px]]
 +
<br>
  
== '''Next Meeting Wednesday, April 24, 2013 7PM Symantec Offices, Culver City'''==  
+
<br>
 +
== '''Next OWASP Meeting'''==
 +
''**NOTE: Date for this event **''
 +
==''' 7pm July 23, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230'''==
  
 +
  '''Topic:  Aviator Secure Browser Presentation and Demo
  
*''' Speaker: Tin Zaw.'''
+
With every website you visit, you’re vulnerable to malicious hackers out to steal your surfing history, passwords, email access, bank account numbers, medical info, and more. And the “big browsers” don’t do enough to stop it.
  
 +
WhiteHat Aviator is touted as the Web’s most secure and private browser. We'll get more information and see a demo.
  
*''' Topic: Tales from the Crypt(o): Lessons About Secrecy from Julius Caesar to Moxie Merlinspike '''
+
  '''Speaker:   Nick Schilbe, Director, Solutions Architecture, WhiteHat Security
  
  
*''' Bio: Tin Zaw is the former president of OWASP Los Angeles chapter. '''
+
== '''Sponsor: WhiteHat Security '''==
  
 
+
[[Image:Whitehat.jpeg | 100px |thumb|center|link=http://www.whitehatsec.com/]]
== '''Sponsor: Beyond Trust'''==
+
 
+
+
[[File:BeyondTrust_image.png | link=http://www.beyondtrust.com/]]
+
 
+
The global leader in privileged identity and threat management solutions.
+
  
  
Line 62: Line 69:
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
 
== Would you like to speak at an OWASP Los Angeles Meeting? ==  
  
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
+
Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to [mailto:richard.greenberg@owasp.org Richard Greenberg] OR [mailto:Stuart.Schwartz@owasp.org Stuart Schwartz]. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.  
  
 
<br>  
 
<br>  
 +
 +
== '''Upcoming OWASP Meetings'''  ==
 +
 +
<!-- *''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ''' -->
 +
<!-- *''' February 19, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230''' -->
 +
<!-- *''' March 19, 2014: Joint Dinner Meeting with ISSA''' -->
 +
 +
<!-- *'''[http://www.meetup.com/OWASP-Los-Angeles/events/173835762/ July 23, 2014 OWASP meeting]'''
 +
    '''Topic: TBD'''
 +
    '''Speaker: TBD''' -->
 +
 +
*'''[http://www.meetup.com/OWASP-Los-Angeles/events/185698682/ Aug 27, 2014 OWASP meeting]'''
 +
    '''Topic: Securing Complex Forms'''
 +
    '''Speaker: Jim Manico'''
 +
The heart of how users interact with a web application is the HTML form submission. A great deal of very sensitive data flows over HTML forms. Securing web form submissions is critical for the construction of a secure web application. Multi-form workflows make securing form submissions even more complicated! This presentation will take you on a journey as untrusted data flows from a form submission into the many layers of a secure web application.
 +
 +
• Review some of the basic threats against web forms
 +
• Learn some of the most important defense categories for building secure web forms
 +
• Discuss some of the more complex aspects to form construction, such as workflow
 +
 +
 +
*'''[http://www.meetup.com/OWASP-Los-Angeles/events/185681402/ Sept 17, 2014 Joint OWASP and ISSA Dinner meeting]'''
 +
    '''Topic: Securing the SDLC in the real world'''
 +
    '''Speaker: Jim Manico'''
 +
The earlier you address security in the engineering of software, the less expensive it will be for your organization. There are many who will tell you that you need to change all of your current processes around building software so it is more secure. Many of those forces are consultants charging high rates to help you deeply modify what you are doing today. This talk will will take the opposite approach. How can you add a few reasonable and mostly lightweight processes to how you build software today to make it more secure? Software development is like driving a boat. You need to look ahead make small changes to steer effectively.
 +
 +
Jim Manico is an author and educator of developer security awareness trainings. He is also a frequent speaker on secure software practices and is a member of the JavaOne "rockstar hall of fame". He has a 17 year history building software as a developer and architect. Jim is also one of the members of the Global Board of Directors for the OWASP foundation where he helps drive the strategic vision for the organization. He manages and participates in several OWASP projects, including the OWASP cheat sheet series and several secure coding projects. Jim is currently working on a book with McGraw-Hill and Oracle-Press on Java Security. For more information, see http://www.linkedin.com/in/jmanico.
  
 
== '''Other Events'''  ==
 
== '''Other Events'''  ==
  
*''' [http://www.issala.org/summit/ Registration now open for the ISSA LA Security Summit May 21 at the Universal City Hilton] '''
+
<!-- *''' [https://www.eventbrite.com/e/issa-la-april-lunch-meeting-tickets-11075766917?ref=ebtnebregn ISSA-LA April lunch meeting at Taix French Restaurant - Wednesday, April 16, 2014 11:30am - 1:45pm ] '''
Come see the Opening Keynote by Obama's first Cybersecurity Czar, Howard Schmidt; an OWASP Top Ten session by Jim Manico; a CISO and a Law Enforcement Panel; and much more!
+
  '''Topic: Hacking Information Security Management'''
 +
  '''Speaker: Mikhael Felker, Director of Security & Compliance for ReachLocal'''
 +
<br> -->
 +
 
 +
*''' [http://www.eventbrite.com/e/summer-bbq-tickets-11697723205?aff=eorg/ July 10, 2014 11:30am - 1pm - You Are Invited to Join OWASP: HTCIA is Hosting a BBQ Lunch!] '''
 +
 
 +
<!-- *''' [http://www.issala.org/summit-vi-may-2014/ ISSA-LA 6th Annual Information Security Summit - Friday, May 16, 2014 at Universal City] ''' -->
 +
 
 +
<!-- *''' [http://www.issala.org/ ISSA-LA Monthly Lunch Meeting at Taix French Restaurant - Wednesday January 15th 2014 11:30am - 1:45pm ] ''' -->
  
  
 
== Archives of Previous Meetings  ==
 
== Archives of Previous Meetings  ==
 +
[[Los Angeles/2014 Meetings|2014 Meetings]]
 +
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
 
[[Los Angeles/2013 Meetings|2013 Meetings]]
  
Line 85: Line 129:
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
 
[[Los Angeles/2008 Meetings|2008 Meetings]]  
  
[[Los Angeles Presentation Archive|List of presentations available from past meetings]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
+
[[Los Angeles Presentation Archive | Presentation Archive ]] <!--A list of previous presentations conducted at the Los Angeles Chapter can be found [https://www.owasp.org/index.php/Los_Angeles_Previous_Presentations here].-->  
  
 
<br>  
 
<br>  
Line 94: Line 138:
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:tin.zaw@owasp.org Tin Zaw] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
 
*[mailto:edward@owasp.org Edward Bonver] -- Board Member
*[mailto:Kelly.Fitzgerald@owasp.org Kelly Fitzgerald] -- Board Member  
+
*[mailto:mike.francis@owasp.org Mike Francis] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 
*[mailto:Stuart.Schwartz@owasp.org Stuart Schwartz] -- Board Member  
 +
*[mailto:aaron.guzman@owasp.org Aaron Guzman] -- Board Member
 +
*[mailto:dave.wettenstein@owasp.org Dave Wettenstein] -- Board Member 
  
Volunteer OWASP Leaders: Yev Avidon and Mikhael Felker  <br>
+
Volunteers: Yev Avidon and Mikhael Felker  <br>
Volunteer OWASP Wiki: Mike Francis <br>
+
OWASP Wiki: [mailto:mike.francis@owasp.org Mike Francis] <br>
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
 
The Los Angeles chapter was founded by Cassio Goldschmidt.  
  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 
<br>The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!  
 +
 +
<!-- === ''' [http://appseccali.org/ OWASP AppSec California Summit January 27-28, 2014-] ===
 +
-->
  
 
Web archive: http://2010.AppSecUSA.org  
 
Web archive: http://2010.AppSecUSA.org  

Latest revision as of 11:12, 8 July 2014

Contents

Welcome to the Los Angeles Chapter!

Donatenow.jpg

Single Meeting Supporter: Organizations that wish to support the OWASP Los Angeles Chapter with a 100% tax deductible donation enable the OWASP Foundation to continue its mission

Get the following benefits::

- Meet upwards of 60-90 potential new clients
- Be recognized as a local supporter by posting your company logo on the local chapter page and on our Meetup site
- Have your marketing write-up included in e-mail blasts sent prior to a monthly meeting.
- Have a table at local chapter meeting 
- Promote your products and services
- Bring a raffle prize to gather business cards

Contact us #Los Angeles Chapter for general questions relating to sponsorship and donations

Participation

OWASP Foundation is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related security topic you would like to present on.

Announcements

OWASP Los Angeles received the BEST Chapter Leaders award at AppSec USA NY


logo.png

We are on Meetup. Please join our community there.

If you are unable to access Meetup from your work computer as a result of filtering of social sites, we recommend that you view it on your smart phone or via your personal computer.
http://www.meetup.com/OWASP-Los-Angeles/


Become an OWASP Member TODAY

Support your LA Chapter: only $50 for the entire year!
https://www.owasp.org/index.php/Individual_Member


2013 December Holiday Party at Daily Grill in LA

Holiday.jpg


Next OWASP Meeting

**NOTE: Date for this event **

7pm July 23, 2014 at Symantec offices, 900 Corporate Pointe, Culver City, CA 90230

  Topic:  Aviator Secure Browser Presentation and Demo 

With every website you visit, you’re vulnerable to malicious hackers out to steal your surfing history, passwords, email access, bank account numbers, medical info, and more. And the “big browsers” don’t do enough to stop it.

WhiteHat Aviator is touted as the Web’s most secure and private browser. We'll get more information and see a demo.

  Speaker:   Nick Schilbe, Director, Solutions Architecture, WhiteHat Security 


Sponsor: WhiteHat Security

Whitehat.jpeg


Please RSVP here: http://www.meetup.com/OWASP-Los-Angeles/events/


Would you like to speak at an OWASP Los Angeles Meeting?

Call for Papers (CFP) is NOW OPEN. To speak at upcoming OWASP Los Angeles meetings please submit your BIO and talk abstract via email to Richard Greenberg OR Stuart Schwartz. The talk must be vendor neutral and its content be available under Creative Common 3.0 license.


Upcoming OWASP Meetings

   Topic: Securing Complex Forms
   Speaker: Jim Manico

The heart of how users interact with a web application is the HTML form submission. A great deal of very sensitive data flows over HTML forms. Securing web form submissions is critical for the construction of a secure web application. Multi-form workflows make securing form submissions even more complicated! This presentation will take you on a journey as untrusted data flows from a form submission into the many layers of a secure web application.

• Review some of the basic threats against web forms • Learn some of the most important defense categories for building secure web forms • Discuss some of the more complex aspects to form construction, such as workflow


   Topic: Securing the SDLC in the real world
   Speaker: Jim Manico 

The earlier you address security in the engineering of software, the less expensive it will be for your organization. There are many who will tell you that you need to change all of your current processes around building software so it is more secure. Many of those forces are consultants charging high rates to help you deeply modify what you are doing today. This talk will will take the opposite approach. How can you add a few reasonable and mostly lightweight processes to how you build software today to make it more secure? Software development is like driving a boat. You need to look ahead make small changes to steer effectively.

Jim Manico is an author and educator of developer security awareness trainings. He is also a frequent speaker on secure software practices and is a member of the JavaOne "rockstar hall of fame". He has a 17 year history building software as a developer and architect. Jim is also one of the members of the Global Board of Directors for the OWASP foundation where he helps drive the strategic vision for the organization. He manages and participates in several OWASP projects, including the OWASP cheat sheet series and several secure coding projects. Jim is currently working on a book with McGraw-Hill and Oracle-Press on Java Security. For more information, see http://www.linkedin.com/in/jmanico.

Other Events



Archives of Previous Meetings

2014 Meetings

2013 Meetings

2012 Meetings

2011 Meetings

2010 Meetings

2009 Meetings

2008 Meetings

Presentation Archive


Los Angeles Chapter

Volunteers: Yev Avidon and Mikhael Felker
OWASP Wiki: Mike Francis
The Los Angeles chapter was founded by Cassio Goldschmidt.


The AppSec USA 2010 conference received rave reviews. Thanks to all the volunteers and great speakers who helped make it a success!


Web archive: http://2010.AppSecUSA.org

Videos: http://vimeo.com/user4863863/videos

AppSec Logo.jpg