Difference between revisions of "OWASP Software Assurance Day DC 2010"

From OWASP
Jump to: navigation, search
m
(updated with schedule put forth by SwA Forum planners.)
Line 39: Line 39:
 
  ! colspan="3" align="center" style="background:#4058A0; color:white" | September 27th, 2010
 
  ! colspan="3" align="center" style="background:#4058A0; color:white" | September 27th, 2010
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 08:15-08:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | '''OWASP Software Assurance Day DC Introduction'''  
+
  | style="width:10%; background:#7B8ABD" | 08:30-08:35 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | '''OWASP Software Assurance Day DC Introduction'''  
 
''Doug Wilson, Mandiant''
 
''Doug Wilson, Mandiant''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 08:30-09:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | '''Intro to OWASP'''  
+
  | style="width:10%; background:#7B8ABD" | 08:35-09:05 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | '''Intro to OWASP'''  
 
''Jeff Williams, Aspect Security''
 
''Jeff Williams, Aspect Security''
 
  |-
 
  |-
  | style="width:10%; background:#7B8ABD" | 09:00-10:15 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[Getting Started with the Top Ten and OWASP Guides, a dialog]]
+
  | style="width:10%; background:#7B8ABD" | 09:05-10:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[Getting Started with the Top Ten and OWASP Guides, a dialog]]
 
''Dave Wichers, Aspect Security''
 
''Dave Wichers, Aspect Security''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 10:15-10:35 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Morning Break'''
+
  | style="width:10%; background:#7B8ABD" | 10:30-11:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Morning Break'''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 10:35-11:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[How to build a software assurance program with OpenSAMM]]
+
  | style="width:10%; background:#7B8ABD" | 11:00-12:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[How to build a software assurance program with OpenSAMM]]
 
''Pravir Chandra, Fortify''
 
''Pravir Chandra, Fortify''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 11:30-1:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Lunch'''
+
  | style="width:10%; background:#7B8ABD" | 12:00-12:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP Live CD]]
|-
+
| style="width:10%; background:#7B8ABD" | 1:00-1:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP Live CD]]
+
 
''Matt Tesauro, Trustwave''
 
''Matt Tesauro, Trustwave''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 1:30-2:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP ESAPI]]
+
| style="width:10%; background:#7B8ABD" | 12:30-1:30 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Lunch'''
 +
|-
 +
  | style="width:10%; background:#7B8ABD" | 1:30-2:15 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP ESAPI]]
 
''Jeff Williams, Aspect Security''
 
''Jeff Williams, Aspect Security''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 2:00-2:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP O2]]
+
  | style="width:10%; background:#7B8ABD" | 2:15-3:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP O2]]
 
''John Steven, Cigital''
 
''John Steven, Cigital''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 2:30-3:00 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Afternoon Break'''
+
  | style="width:10%; background:#7B8ABD" | 3:00-3:30 || colspan="2" style="width:80%; background:#C2C2C2" align="left" | '''Afternoon Break'''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 3:00-4:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP in Action -- Implementing a DISA STIG with OWASP tools]]
+
  | style="width:10%; background:#7B8ABD" | 3:30-4:30 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[OWASP in Action -- Implementing a DISA STIG with OWASP tools]]
 
''Jason Li (& Dave Wichers), Aspect Security''
 
''Jason Li (& Dave Wichers), Aspect Security''
 
|-
 
|-
  | style="width:10%; background:#7B8ABD" | 4:00-5:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[Conclusion and Q&A]]
+
  | style="width:10%; background:#7B8ABD" | 4:30-5:00 || colspan="2" style="width:80%; background:#F2F2F2" align="left" | [[Conclusion and Q&A]]
 
''TBD''
 
''TBD''
 
|}
 
|}

Revision as of 17:01, 9 September 2010

Register | Directions to NIST | 13th Semi-Annual Software Assurance Forum

Welcome

Welcome to the OWASP Software Assurance Day DC 2010 wiki page.

This page is still being updated with information please treat is as a draft

This single-day training session will be held on September 27th as a part of the 13th Semi-Annual Software Assurance Forum (September 27th - October 1st) sponsored by the US Department of Homeland Security (DHS), Department of Defense (DoD) and National Institute of Standards and Technology (NIST). The event will be held at the NIST campus in Gaithersburg Maryland.

We are pleased to invite OWASP members, attendees of the Software Assurance Forum and any other interested parties to join us for this event.

At this day-long training, OWASP will be answering the questions of:

  • How do I get started in formulating an application security program using OWASP tools and resources?
  • What does OWASP have to offer for those interested in software assurance?
  • How do I engage with OWASP to effectively realize OWASP's potential and the wealth of resources OWASP makes freely available?
         (This will include upcoming OWASP events and contact information for local chapters in the DC/NOVA/Maryland area)

This day is a part of the 13th Semi-Annual Software Assurance Forum. The week-long event is free and open, but requires registration for participation in any or all days of the event, including the OWASP day on the 27th.

For more information about the Software Assurance Forum, please go to DHS "Build Security In" site, or go to the NIST site for the Software Assurance Forum to register.


Location

The OWASP Software Assurance Day DC 2010 is the first day of the DHS/DOD/NIST Software Assurance Forum at the NIST Campus in Gaithersburg, Maryland.

YOU MUST REGISTER IN ADVANCE IN ORDER TO BE ADMITTED TO THE NIST CAMPUS

Specific directions will be provided upon registration.

Further information about the area around the NIST campus is available here.

Agenda

Agenda and Presentations for 27 September 2010

September 27th, 2010
08:30-08:35 OWASP Software Assurance Day DC Introduction

Doug Wilson, Mandiant

08:35-09:05 Intro to OWASP

Jeff Williams, Aspect Security

09:05-10:30 Getting Started with the Top Ten and OWASP Guides, a dialog

Dave Wichers, Aspect Security

10:30-11:00 Morning Break
11:00-12:00 How to build a software assurance program with OpenSAMM

Pravir Chandra, Fortify

12:00-12:30 OWASP Live CD

Matt Tesauro, Trustwave

12:30-1:30 Lunch
1:30-2:15 OWASP ESAPI

Jeff Williams, Aspect Security

2:15-3:00 OWASP O2

John Steven, Cigital

3:00-3:30 Afternoon Break
3:30-4:30 OWASP in Action -- Implementing a DISA STIG with OWASP tools

Jason Li (& Dave Wichers), Aspect Security

4:30-5:00 Conclusion and Q&A

TBD

Registration

The 13th Semi-Annual Software Assurance Forum is a free event, but no one will be admitted to the NIST campus if they have not registered in advance.

Despite the fact that this is a free conference, we still need you to register to fulfill security requirements of the facility and to ensure that we don't exceed venue capacity.

Accommodations

TBD

Transportation

More information will be forthcoming about this subject.

By plane

The venue area can be reached by commercial aviation through either Dulles International Airport or Reagan National Airport.

How to get to the venue?

See the NIST directions and maps page.


Contact

For more information please contact the team below for conference details, sponsorship or registration.


Mr Doug Wilson (Event Organizer) , OWASP DC Chapter Lead, AppSec DC 2010 Organizer

Email: doug.wilson@owasp.org

Mobile: 301.814.1348


Kate Hartmann

OWASP Operations Director

9175 Guilford Road, Suite 300

Columbia, MD 21046, USA

Phone: +1-301-575-0189

Facsimile: +1-301-604-8033

Email: kate.hartmann@owasp.org


Conference Sponsors

If you are interested in sponsoring this OWASP event, please contact Doug Wilson.