Difference between revisions of "OWASP Germany 2008 Conference"

From OWASP
Jump to: navigation, search
Line 2: Line 2:
 
(The OWASP Germany 2008 conference will be held on November 25, 2008 in Frankfurt.)
 
(The OWASP Germany 2008 conference will be held on November 25, 2008 in Frankfurt.)
  
== Vortragsvorschläge ==
+
Veranstaltungsort: Steigenberger Airport Hotel (per Bahn und Flieger sehr gut zu erreichen)
  
 +
== Agenda ==
 
{| class="wikitable" <hiddentext>generated with [[:de:Wikipedia:Helferlein/VBA-Macro for EXCEL tableconversion]] V1.7<\hiddentext>
 
{| class="wikitable" <hiddentext>generated with [[:de:Wikipedia:Helferlein/VBA-Macro for EXCEL tableconversion]] V1.7<\hiddentext>
|- style="background-color:#99CCFF"  valign="bottom"
+
|- style="background-color:#C0C0C0;font-size:12pt"  valign="top"
| width="316" height="13" | Vorschlagsliste (in der Reihenfolge des Eingangs)
+
| width="96" height="16" | 9 00-9:30
| width="60" | &nbsp;
+
|style="font-weight:bold" width="231" colspan="2" | Registrierung
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="16" | 9:30-9:45
| Dauer
+
|style="font-weight:bold" colspan="2" | Begrüßung
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
|style="font-weight:bold" height="13" | Überblick über OWASP
+
| rowspan="2" height="16" | 9:45-10:30
| &nbsp;
+
|style="font-weight:bold" colspan="2" | OWASP Overview (in Englisch)
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | Sebastien Deleersnyder
+
| colspan="2" | Sebastien Deleersnyder, OWASP Foundation Board Member
| &nbsp;
+
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="16" | 10:30-11:15
| &nbsp;
+
|style="font-weight:bold" colspan="2" | Wirtschaftlichkeitsbetrachtungen von IT-Sicherheitsmaßnahmen
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"
|style="font-weight:bold" height="13" | Server-side Detection of XSS / Cross-Site Request Forgery (CSRF) / Evaluating Static Code Analysis
+
| height="15valign="top" | &nbsp;
  | &nbsp;
+
| colspan="2" valign="top" | Max Dermann, Lufthansa Technik AG
  
|-   valign="bottom"
+
|- style="background-color:#C0C0C0;font-size:12pt"  valign="top"
| height="13" | _  Martin Johns
+
| height="15" | 11:15-11:30
| &nbsp;
+
| colspan="2" | Kaffeepause
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| rowspan="2" height="16" | 11:30-12:15
| &nbsp;
+
|style="font-weight:bold" colspan="2" | Kickstart für sichere Webanwendungen
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt" valign="top"
|style="font-weight:bold" height="13" | Kickstart für sichere Webanwendungen
+
| colspan="2" | Thomas Schreiber, SecureNet
| &nbsp;
+
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | _  Thomas Schreiber
+
| height="15" | 12:15-13:00
| &nbsp;
+
| colspan="2" | NN
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="15" | &nbsp;
 
  | &nbsp;
 
  | &nbsp;
 
|-  valign="bottom"
 
|style="font-weight:bold" height="13" | Vorstellung des OWASP Best Practices Guide zum Einsatz von Web Application Firewalls
 
 
  | &nbsp;
 
  | &nbsp;
  
|-   valign="bottom"
+
|- style="background-color:#C0C0C0;font-size:12pt"  valign="top"
| height="13" | _  Alex Meisel
+
| height="16" | 13:00-14:00
| &nbsp;
+
|style="font-weight:bold" colspan="2" | Mittagspause / Essen
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| rowspan="2" height="16" | 14:00-14:45
| &nbsp;
+
|style="font-weight:bold" colspan="2" | Vorstellung des OWASP Best Practices Guide zum Einsatz von Web Application Firewalls
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt" valign="top"
|style="font-weight:bold" height="13" | Wirtschaftlichkeitsbetrachtungen von IT-Sicherheitsmaßnahmen
+
| colspan="2" | Alex Meisel, Art of Defence
| &nbsp;
+
  
|-   valign="bottom"
+
|- style="background-color:#C0C0C0;font-size:12pt"  valign="top"
| height="13" | _  Maximilian Dermann
+
| height="15" | 5 min
| &nbsp;
+
| colspan="2" | Raumsuche
  
|-   valign="bottom"
+
|- style="font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="15" | &nbsp;
| &nbsp;
+
| colspan="2" | Tracks: 30 Min Präsentation , 10 Min Diskussion + Raumsuche
  
|-   valign="bottom"
+
|- style="font-size:12pt"  valign="top"
|style="font-weight:bold" height="13" | Cross-Site Scripting Filter Evasion
+
| height="16" | &nbsp;
| &nbsp;
+
|style="font-weight:bold" | Track 1
 +
|style="font-weight:bold" | Track 2
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | _  Alexios Fakos
+
| height="32" | 14.50-15:30
| &nbsp;
+
|style="font-weight:bold" | Sicherheit von Rich Internet Applications
 +
|style="font-weight:bold" | Server-side Detection of XSS
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="15" | &nbsp;
  | &nbsp;
+
  | Fukami
 +
| Martin Johns, Uni Hamburg
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
|style="font-weight:bold" height="13" | Security-by-Design durch Einsatz von MVC
+
| height="32" | 15:30-16:10
| &nbsp;
+
|style="font-weight:bold" | Measuring the Security of Web Applications
 +
|style="font-weight:bold" | Cross-Site Scripting Filter Evasion
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | _ Mirko Richter
+
| height="15" | &nbsp;
  | &nbsp;
+
  | Sebastian Schinzel, Virtual Forge
 +
  | Alexios Fakos, n.runs
  
|-   valign="bottom"
+
|- style="background-color:#C0C0C0;font-size:12pt"  valign="top"
| height="13" | &nbsp;
+
| height="15" | 16:10-16:30
| &nbsp;
+
| colspan="2" | Kaffeepause
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
|style="font-weight:bold" height="13" | Best Practices zur Inputvalidierung
+
| height="32" | 16:30-17:10
| &nbsp;
+
|style="font-weight:bold" | Security-by-Design durch Einsatz von MVC
 
+
|style="font-weight:bold" | Learning of Positive Security Models for Web-Applications
|-  valign="bottom"
+
| height="13" | _  Boris Hemkemeier
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
|style="font-weight:bold" height="13" | Sicherheit von Rich Internet Applications
+
  | &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | _ Fukami
+
| &nbsp;
+
 
+
|-   valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
|style="font-weight:bold" height="13" | Measuring the Security of Web Applications
+
| &nbsp;
+
 
+
|-   valign="bottom"
+
| height="13" | _  Sebastian Schinzel
+
| &nbsp;
+
 
+
|-   valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
|style="font-weight:bold" height="13" | Learning of Positive Security Models for Web-Applications
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | _  Christian Bockermann
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|}
+
 
+
 
+
== Agenda ==
+
(vorläufiges Template)
+
 
+
 
+
{| class="wikitable" <hiddentext>generated with [[:de:Wikipedia:Helferlein/VBA-Macro for EXCEL tableconversion]] V1.7<\hiddentext>
+
|- style="background-color:#99CCFF"  valign="bottom"
+
|style="font-weight:bold" width="65" height="13" | Vorabendveranstaltung 24.11.08
+
| width="177" | &nbsp;
+
 
+
|- style="background-color:#99CCFF"  valign="bottom"
+
| height="14" | 19:30 - 00:00
+
|style="font-style:Italic" | tobedone
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|- style="background-color:#C0C0C0;font-weight:bold"  valign="bottom"
+
| height="13" | Vormittagssession
+
| &nbsp;
+
 
+
|-  valign="bottom"
+
| height="13" | 9:00 - 9:10
+
| Begrüßung
+
 
+
|-  valign="bottom"
+
| height="13" | 9:10 - 10:00
+
| Überblick über die OWASP
+
 
+
|-  valign="bottom"
+
| height="13" | 10:00 - 00:00
+
| Vortrag V1
+
 
+
|-  valign="bottom"
+
| height="13" | 00:00 - 00:00
+
| Vortrag V2
+
 
+
|- style="font-style:Italic;text-decoration:underline"  valign="bottom"
+
|style="font-style:Italic" height="13" | 00:00 - 00:00
+
|style="font-style:Italic" | Vortrag V3 (opt.)
+
 
+
|-  valign="bottom"
+
|style="text-decoration:none" height="13" | &nbsp;
+
| &nbsp;
+
 
+
|- style="background-color:#FFFFCC"  valign="bottom"
+
| height="13" | 12:00 -  13:30
+
| Mittagspause
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|- style="background-color:#C0C0C0;font-weight:bold" valign="bottom"
+
| colspan="2" height="13" | Nachmittagssession 1
+
 
+
|-  valign="bottom"
+
| height="13" | 13:30 - 00:00
+
| Vortrag N11
+
 
+
|-  valign="bottom"
+
| height="13" | 00:00 - 00:00
+
| Vortrag N12
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
 
+
|- style="background-color:#FFFFCC"  valign="bottom"
+
| height="13" | 15:30 - 16:00
+
| Kaffeepause
+
 
+
|-  valign="bottom"
+
| height="13" | &nbsp;
+
| &nbsp;
+
  
|- style="background-color:#C0C0C0;font-weight:bold" valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt" valign="top"
| colspan="2" height="13" | Nachmittagssession 2
+
| height="15" | &nbsp;
 +
| Mirko Richter, SecureNet GmbH
 +
| Christian Bockermann
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | 16:00 - 00:00
+
| rowspan="2" height="16" | 17:10-17:50
| Vortrag N21
+
|style="font-weight:bold" colspan="2" | Goldene Regeln der IT-Sicherheit bei der Beauftragung und Erstellung von Software
  
|-   valign="bottom"
+
|- style="background-color:#CCFFFF;font-size:12pt"  valign="top"
| height="13" | 00:00 - 00:00
+
| colspan="2" | Tom Schröer, SAP AG (angefragt), Dr. Boris Hemkemeier, Commerzbank
| Vortrag N22
+
  
|-   valign="bottom"
+
|- style="background-color:#99CCFF;font-size:12pt"  valign="top"
| height="13" | 00:00 - 18:00
+
| height="16" | 17:50-18:00
| Schlussworte
+
|style="font-weight:bold" colspan="2" | Schlußwort
  
 
|}
 
|}

Revision as of 04:54, 15 October 2008

Die OWASP Germany 2008 Konferenz wird am 25.11.08 mit einer Vorabendveranstalung am 24.11.08 in Frankfurt stattfinden. (The OWASP Germany 2008 conference will be held on November 25, 2008 in Frankfurt.)

Veranstaltungsort: Steigenberger Airport Hotel (per Bahn und Flieger sehr gut zu erreichen)

Agenda

9 00-9:30 Registrierung
9:30-9:45 Begrüßung
9:45-10:30 OWASP Overview (in Englisch)
Sebastien Deleersnyder, OWASP Foundation Board Member
10:30-11:15 Wirtschaftlichkeitsbetrachtungen von IT-Sicherheitsmaßnahmen
  Max Dermann, Lufthansa Technik AG
11:15-11:30 Kaffeepause
11:30-12:15 Kickstart für sichere Webanwendungen
Thomas Schreiber, SecureNet
12:15-13:00 NN
     
13:00-14:00 Mittagspause / Essen
14:00-14:45 Vorstellung des OWASP Best Practices Guide zum Einsatz von Web Application Firewalls
Alex Meisel, Art of Defence
5 min Raumsuche
  Tracks: 30 Min Präsentation , 10 Min Diskussion + Raumsuche
  Track 1 Track 2
14.50-15:30 Sicherheit von Rich Internet Applications Server-side Detection of XSS
  Fukami Martin Johns, Uni Hamburg
15:30-16:10 Measuring the Security of Web Applications Cross-Site Scripting Filter Evasion
  Sebastian Schinzel, Virtual Forge Alexios Fakos, n.runs
16:10-16:30 Kaffeepause
16:30-17:10 Security-by-Design durch Einsatz von MVC Learning of Positive Security Models for Web-Applications
  Mirko Richter, SecureNet GmbH Christian Bockermann
17:10-17:50 Goldene Regeln der IT-Sicherheit bei der Beauftragung und Erstellung von Software
Tom Schröer, SAP AG (angefragt), Dr. Boris Hemkemeier, Commerzbank
17:50-18:00 Schlußwort