Difference between revisions of "Norway"

From OWASP
Jump to: navigation, search
(Medlemsmøter 2011)
(Medlemsmøte: 18. Oktober, kl 17:00)
(46 intermediate revisions by 5 users not shown)
Line 1: Line 1:
 
== Welcome to the OWASP Norway Local Chapter ==
 
== Welcome to the OWASP Norway Local Chapter ==
  
Welcome to the local Norway chapter homepage. The chapter leader is [mailto:kaare@mnemonic.no Kåre Presttun].
+
Welcome to the local Norway chapter homepage. The chapter leader is [mailto:erlend.oftedal@owasp.org Erlend Oftedal].
 
<paypal>Norway</paypal>
 
<paypal>Norway</paypal>
  
Line 12: Line 12:
 
To join the chapter mailing list, please visit our [https://lists.owasp.org/mailman/listinfo/owasp-norway mailing list] homepage. The list is used to discuss the meetings and to arrange meeting locations. You can also review the [https://lists.owasp.org/pipermail/owasp-norway/ email archives] to see what folks have been talking about. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.
 
To join the chapter mailing list, please visit our [https://lists.owasp.org/mailman/listinfo/owasp-norway mailing list] homepage. The list is used to discuss the meetings and to arrange meeting locations. You can also review the [https://lists.owasp.org/pipermail/owasp-norway/ email archives] to see what folks have been talking about. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.
  
== Medlemsmøter 2011 ==
+
== Medlemsmøter 2012 ==
  
 
=== [[OWASP Norway - Hall of fame ]] ===
 
=== [[OWASP Norway - Hall of fame ]] ===
Line 22: Line 22:
 
=== Neste møte ===
 
=== Neste møte ===
  
===== Medlemsmøte tirsdag 22. mars kl 16:00 --> =====
+
==== Medlemsmøte: 18. Oktober, kl 17:00 ====
 +
'''Ansvarlig:''' Erlend Oftedal ,
 +
'''Påmelding/lokasjon/agenda:''' [[http://www.meetup.com/OWASP-Norway/events/84322982/ Påmelding på meetup.com]]
 +
'''Tema:''' Sikkerhet i det norske eValg-systemet
  
Ansvarlig: Kåre Presttun,<br>
+
=== Tidligere møter ===
Sponsor: [https://wiki.cantara.no/display/PE/Communities+in+action+2011 Communities in Action 2011],<br>
+
Adresse: Radisson Blu Hotel, Holbergsgt. 30, [http://www.radissonblu.no/scandinaviahotell-oslo/beliggenhet Kart her], og [http://doodle.com/h53d9i9m8iuh2mib Meld på her]
+
  
Dette møtet er i samarbeid med Communities in Action 2011. OWASP Norway Chapter deltar sammen med javaBin, Kode kata, XP meetup, Framsia, Makers, Cocoaheads, NNUG og Oslo Lean Meetup. Dette er en spennende anledning til å mingle med andre "communities".
+
==== Medlemsmøte: 24. april, kl 19:30 ====
 +
'''Ansvarlig:''' Erlend Oftedal ,
 +
'''Sponsor:''' -,
 +
'''Adresse:''' [http://maps.google.com/maps?q=Tordenskiolds+gate+3%2C+Oslo Mesh Norway, Tordenskiolds gate 3],  
 +
'''Påmelding:''' [http://www.doodle.com/t7kaxy7a5u7v6u6s klikk her]
  
Program:
+
Tema denne gang er sikkerhet i mobile applikasjoner. Det blir først en introduksjon, deretter kommer
 +
Martin Knobloch fra OWASP Nederland for å snakke om iGoat og GoatDroid, for så å dele erfaringer fra
 +
en code review.
  
- 16:00 - 17:30 Enkel bevertning<br>
+
Slides:
- 17:30 - 19:30 Parallellsesjoner<br>
+
- 20:00 - 21:00 Paneldebatt<br>
+
- 21:00 --> Mingling i Skybar<br>
+
  
[https://wiki.cantara.no/display/PE/Program+CiA+2011 Detaljert program for CiA 2011 her]
+
[[Media:Mobil - Introduksjon til applikasjonssikkerhet.pdf|OWASP Mobile Top 10]] - Ståle Pettersen
  
==== Generalforsamling: Onsdag 27. april kl 17:00 - 17:15  ====
+
[[Media:OWASP-mobile aps.pdf|OWASP Mobile]] - Martin Knobloch
  
[[Norway/Generalforsamling 2011]]
 
  
Agenda:
+
==== Medlemsmøte: 19. mars, kl 17:00 ====
* Godkjenning av innkalling
+
'''Ansvarlig:''' Erlend Oftedal ,
* [[Årsberetning 2010/2011]]
+
'''Sponsor:''' F5,
* Eventuelt
+
'''Adresse:''' [http://maps.google.com/maps?q=the+dubliner+oslo&hl=en&client=ubuntu&channel=fs&fb=1&hq=the+dubliner&hnear=0x46416e61f267f039:0x7e92605fd3231e9a,Oslo,+Norway&cid=0,0,12890284609415510924&t=h&z=15&iwloc=A The Dubliner],
* Valg
+
'''Påmelding:''' [http://www.doodle.com/d4rfandvnakqydc6 klikk her]
 +
{|
 +
|'''"Web Application Access Control Design Excellence"''', Jim Manico<br>
  
==== Medlemsmøte: Onsdag 27. april kl 17:15 - 19:00  ====
+
Access Control is a necessary security control at almost every layer within a web application. This talk will discuss
 
+
several of the key access control anti-patterns commonly found during website security audits. These access control anti-patterns
Ansvarlig: Kåre Presttunl,  
+
include hard-coded security policies, lack of horizontal access control, and "fail open" access control mechanisms. In reviewing
Sponsor: mnemonic as ,
+
these and other access control problems, we will discuss and design a positive access control mechanism that is data contextual,
Adresse: Wergelandsveien 25, [http://maps.google.com/maps?q=wergelandsveien+25,+oslo&oe=utf-&um=1&ie=UTF-8 Kart her], og [http://doodle.com/ca5qvmrq6uzwfydi Meld på her]
+
activity based, configurable, flexible, and deny-by-default - among other positive design attributes that make up a robust
 
+
web-based access-control mechanism.
Agenda:
+
|}
 
+
*17.10 - 17.45 kommer
+
*17.45 - 18.15 Mat
+
*18.15 - 19.00 kommer
+
 
+
Kontaktperson: Kåre Presttun, tel: 4100 4908
+
 
+
=== Tidligere møter ===
+
  
 
== Lokale Nyheter ==
 
== Lokale Nyheter ==
Line 70: Line 67:
 
== Tidligere år ==
 
== Tidligere år ==
  
 +
=== [[Medlemsmøter 2011]] ===
 
=== [[Medlemsmøter 2010]] ===
 
=== [[Medlemsmøter 2010]] ===
 
=== [[Medlemsmøter 2009]] ===
 
=== [[Medlemsmøter 2009]] ===
Line 75: Line 73:
  
 
[[Category:OWASP Chapter]]
 
[[Category:OWASP Chapter]]
 +
[[Category:Norway]]
 +
[[Category:Europe]]

Revision as of 03:09, 1 October 2012

Contents

Welcome to the OWASP Norway Local Chapter

Welcome to the local Norway chapter homepage. The chapter leader is Erlend Oftedal.

funds to OWASP earmarked for Norway.

Se hvem som sitter i Norway Chapter styret og les Norway Chapter vedtekter. OWASP Norway Chapter er registrert i Bønnøysund med organisasjonsnummer 994 253 085.

Participation

OWASP chapter meetings are free and open to anyone interested in application security. We encourage members to give presentations on specific topics and to contribute to the local chapter by sharing their knowledge with others. Prior to participating with OWASP please review the Chapter Rules.

To join the chapter mailing list, please visit our mailing list homepage. The list is used to discuss the meetings and to arrange meeting locations. You can also review the email archives to see what folks have been talking about. Please check the mailing list before coming to a meeting to confirm the location and time and to catch any last minute notes.

Medlemsmøter 2012

OWASP Norway - Hall of fame

Forslagskasse for tema

Hvis du ikke er på e-postlista så meld deg på!

Neste møte

Medlemsmøte: 18. Oktober, kl 17:00

Ansvarlig: Erlend Oftedal , Påmelding/lokasjon/agenda: [Påmelding på meetup.com] Tema: Sikkerhet i det norske eValg-systemet

Tidligere møter

Medlemsmøte: 24. april, kl 19:30

Ansvarlig: Erlend Oftedal , Sponsor: -, Adresse: Mesh Norway, Tordenskiolds gate 3, Påmelding: klikk her

Tema denne gang er sikkerhet i mobile applikasjoner. Det blir først en introduksjon, deretter kommer Martin Knobloch fra OWASP Nederland for å snakke om iGoat og GoatDroid, for så å dele erfaringer fra en code review.

Slides:

OWASP Mobile Top 10 - Ståle Pettersen

OWASP Mobile - Martin Knobloch


Medlemsmøte: 19. mars, kl 17:00

Ansvarlig: Erlend Oftedal , Sponsor: F5, Adresse: The Dubliner, Påmelding: klikk her

"Web Application Access Control Design Excellence", Jim Manico

Access Control is a necessary security control at almost every layer within a web application. This talk will discuss several of the key access control anti-patterns commonly found during website security audits. These access control anti-patterns include hard-coded security policies, lack of horizontal access control, and "fail open" access control mechanisms. In reviewing these and other access control problems, we will discuss and design a positive access control mechanism that is data contextual, activity based, configurable, flexible, and deny-by-default - among other positive design attributes that make up a robust web-based access-control mechanism.

Lokale Nyheter

Tidligere år

Medlemsmøter 2011

Medlemsmøter 2010

Medlemsmøter 2009

Medlemsmøter 2008