Difference between revisions of "OWASP Newsletter 17"

From OWASP
Jump to: navigation, search
(Updated Pages)
(OWASP references in the Media)
 
(One intermediate revision by one user not shown)
Line 79: Line 79:
  
  
====Updated chapter pages:====
 
  
* TBD
 
  
 
== OWASP references in the Media==
 
== OWASP references in the Media==
Line 87: Line 85:
 
[http://www.net-security.org/dl/insecure/INSECURE-Mag-16.pdf OWASP Featured Article: Producing Producing Secure Software With Software Security Enhanced Processes, In-secure Magazine, Page 57-67]
 
[http://www.net-security.org/dl/insecure/INSECURE-Mag-16.pdf OWASP Featured Article: Producing Producing Secure Software With Software Security Enhanced Processes, In-secure Magazine, Page 57-67]
  
NSA:
+
NSA: http://www.nsa.gov/notices/notic00004.cfm?Address=/snac/support/I733-034R-2007.pdf
http://www.nsa.gov/snac/downloads_all.cfm?doc=%22Web%20Application%20Securit
+
y%20Overview.pdf%22
+
  
 
FFIEC: http://www.occ.treas.gov/ftp/bulletin/2008-16.html  
 
FFIEC: http://www.occ.treas.gov/ftp/bulletin/2008-16.html  
  
 
FTC: http://www.ftc.gov/bcp/conline/pubs/buspubs/security.shtm  
 
FTC: http://www.ftc.gov/bcp/conline/pubs/buspubs/security.shtm  
 
  
 
NIST: http://csrc.nist.gov/publications/PubsSPs.html  
 
NIST: http://csrc.nist.gov/publications/PubsSPs.html  
  
DHS:
+
DHS: https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition.pdf
https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition.pdf
+
  
 
== Application Security News==
 
== Application Security News==

Latest revision as of 15:27, 15 August 2008

Contents

OWASP Newsletter #17 (12-August-2008)

Welcome to the 17th edition of the OWASP Newsletter, featuring The New York City AppSec Conference .

As always, if you have any content to add to the next edition, please feel free to add it directly to its WIKI page OWASP Newsletter 18.

Kate Hartmann - OWASP Operations Director - Tel: 301-575-0197 - eMail: Kate.Hartmann@owasp.org

Featured Item: OWASP NYC 2008

OWASP NYC AppSec 2008 Conference Schedule – Sept 24th - Sept 25th Full details In association with: WASC, NYM InfraGard, AITGlobal, NYC PHP, NYCBUG, ISACA, ISSA and Pace University your invited to (2) days of Seminars and Technology Pavilion from the world's best application security technology minds, (2) days of hardcore hands-on training, all held at Pace University, located in downtown New York City at One Pace Plaza New York, NY 10038. Event Fees: $350 for 2 days of seminars, $675 for 1-day training classes and $1,350 for 2-day courses. With capacity of 1000 folks from around the world, don't miss this event!

NYC08_468x60_72_newdates.gif


Featured Item: India Conference

OWASP AppSec India Conference 2008

OWASP India-mhnew.gif


Featured Item: Israel Conference

OWASP AppSec Israel Conference 2008

OWASP AppSec India Conference 2008 - August 20th-21st 2008

Featured Projects

  • Four new projects have been set up, namely:
    • OWASP EnDe Project - This tool is an encoder, decoder, converter, transformer, calculator, for various codings used in the wild wide web. Achim Hoffmann is the project leader.
    • OWASP Google Hacking Project - This is a Google SOAP Search API with Perl. Christian Heinrich is the project leader.
    • OWASP NetBouncer Project - This is secure by default centralised input/output validation library which combines security rules and business rules as well as escaping in the output level. Ferruh Mavituna is the project leader.
    • OWASP Open Review Project - A project to openly check open source libraries and software that are vital to most commercial and non-commercial apps around. Mario de Boer is the project leader.


Latest additions to the WIKI

New Pages

Chapter News

Paypal now Accepted

Chapter pages are being updated with the new link to paypal. This will allow your chapter sponsors to make donations to your chapter or project directly. Because the funds will be managed through the OWASP Foundation, your local chapter or project may take advantage of the non-profit status! Reimbursement of expenses will be processed through submission of an expense report. Please contact Alison McNamee with any questions.

New Chapter Pages

Iran

Vietnam

Nigeria

Saudi Arabia

Alabama

Croatia

Hawaii





OWASP references in the Media

OWASP Featured Article: Producing Producing Secure Software With Software Security Enhanced Processes, In-secure Magazine, Page 57-67

NSA: http://www.nsa.gov/notices/notic00004.cfm?Address=/snac/support/I733-034R-2007.pdf

FFIEC: http://www.occ.treas.gov/ftp/bulletin/2008-16.html

FTC: http://www.ftc.gov/bcp/conline/pubs/buspubs/security.shtm

NIST: http://csrc.nist.gov/publications/PubsSPs.html

DHS: https://buildsecurityin.us-cert.gov/swa/downloads/SwA_in_Acquisition.pdf

Application Security News

Application Security News Feed

This news feed is moderated by OWASP and will feature high-quality posts focused on application security that advance the field, provide useful insight, or are useful educational resources.