- 1 OWASP Orange County
- 2 Participation
- 3 Sponsorship/Membership
- 4 Local News
- 4.1 Future Meetings
- 4.2 Previous Meetings
- 5 2008 Upcoming Events
- 6 Orange County OWASP Board Members
OWASP Orange County
Click here to join the local chapter mailing list.
OWASP Foundation (Overview Slides) is a professional association of global members and is and open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook. As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button. To be a SPEAKER at ANY OWASP Chapter in the world simply review the speaker agreement and then contact the local chapter leader with details of what OWASP PROJECT, independent research or related software security topic you would like to present on.
Or consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? The chapter leaders are Neil Matatall, Kartik Trivedi, and Alex Smolen.
Thursday, January 21st 2010
Time: 7:30 Location: TBD
Title: Do VLANs allow for good application security?
Virtual Local Area Networks (VLANs) are not a new concept, and can help any organization better control network access. I will present some of the previous issues identified, what was the root cause, and how these have been fixed in current technology. In addition we will talk about how this can help to enhance security in your environment, and what controls must be in place in order to implement such an environment. We will also touch on how this can complicate your application environment, but improve overall security.
I will touch on the controls that need to be reviewed and audited when working with VMware, VLANs, and web applications, to ensure that these networks are secure, and what to look for to potentially pass audit criteria. I will also talk about where and how these controls have been implemented in order to protect thousands of users while accessing one of the most hostile networks in the world.
David M. N. Bryan Senior Security Consultant
David has over 9+ years of computer security experience including, consulting, engineering and administration. He has performed security assessment projects for health care, nuclear, manufacturing, pharmaceutical, banking and educational sectors. As an active participant in the information security community, he volunteers at DEFCON where he designs and implements the Firewall and Network for what is said to be the most hostile network environment in the world.
He is also an active participant in the local Minneapolis security groups both as a board member of OWASP MSP and DC612. His roots and experience come from working for a large enterprise banks, designing and managing enterprise security systems. In the more recent years he has been working as an Information Security Consultant to review the security and architecture of information computing environments.
Thursday December 17th 2009
7:30 PM, UC Irvine Campus, Room AIRB 1020
We will be meeting in the Anteater Instruction and Research Building on the UC Irvine campus. The building itself is inside of the Anteater Parking Structure at the corner of E. Peltason Dr and Anteater Dr and is room number 1020. Parking is $7 but feel free to park off campus and walk to the building. http://www.oit.uci.edu/computing/labs/training.html Buliding #653 in quadrant H9 on the campus map - http://today.uci.edu/pdf/UCI_09_map_campus_core.pdf
Title: Pulling the Plug: Security Risks in the Next Generation of Offline Web Applications
As the line between desktop and web applications becomes increasingly blurry in a web 2.0 world, browser functionality is being pushed well beyond what it was originally intended for. Persistent client side storage has become a requirement for web applications if they are to be available both online and off. This need is being filled by a variety of technologies such as Gears (formerly Google Gears) and the Database Storage functionality included in the emerging HTML 5 specification. While all such technologies offer great promise, it is clear that the vast majority of developers simply do not understand their security implications.
Michael Sutton Vice President, Security Research – Zscaler
Thursday, November 19th 2009
When: November 19th 2009, 7:30PM Where: Gina's Pizza, Irvine Topics: Facebook privacy, web application firewalls, penetration testing, the reluctance for hackers to execute attacks, and random new technology. Announced OWASP OC/LAs intention to submit a proposal for AppSec 2010.
Wednesday, October 14th 2009
Separate meetings will be held for OWASP OC and OWASP@UCI (student group).
When: Wednesday 10/14 7:30PM Where: Steelhead Brewery Topics: News, Ideas, Chit-chat
This is a restaurant/bar with plenty of seating, but room for a projector is out of the question so this would be an informal round table discussion.
I have a presentation I'm working on regarding WAFs and Vulnerability Assessment Tools. If it pleases the group, I'd love to go over the presentation and discuss everyone's experiences. Also, it's a great way to get feedback :)
I'm open to suggestions of any kind: location, time, topics, etc
Thursday, September 17th, 2009 7:30PM
Location: UC Irvine Building: Calit2 building,building number 325 in quadrant H8 on the UC Irvine Map Room: 3008
Parking will be $7. Please park in the Anteater Parking Structure
I can only unofficially say that if you park in the nearby shopping centers and walk, you may be able to park for free.
- The Rise of Threat Analysis and the Fall of Compliance, Policies, and Standards in mitigating Web Application Security Risks
Apr 30, 2009 6:30PM-8:30PM
Brooklyn Pizza Works, 1235 East Imperial Highway, Placentia, CA
Our fourth OC OWASP meeting will be an informal, roundtable discussion of current application security issues. Feel free to bring some ideas, code, slides, etc to contribute to the discussion. Hope to see everyone there!
Feb 19, 2009 6:30PM-8:30PM
Brooklyn Pizza Works, 1235 East Imperial Highway, Placentia, CA
Come talk application security at the third OWASP OC meeting. We'll discuss current application security topics and chapter issues over pizza. We have a room booked for 15-20 people so we'll be able to rant without disturbing the patrons :) See you there! Presentation Slides
Dec 17, 2008 6PM - 9PM
Microsoft Campus Room MPR1, 3 Park Plaza, Suite 1600, Irvine, CA, 92614
Aug 27, 2008, 7 PM - 9 PM
603 Valencia, Brea, CA 92822
Come meet up with web security professionals, have some pizza, and offer your thoughts for the direction of the OC chapter at our inaugural meeting! We are looking for speakers and venue sponsors for the next meeting. If you are interested, please contact the chapter leaders. Everyone is welcome to join us at our chapter meetings.
2008 Upcoming Events
Call for Papers (CFP) is NOW OPEN ~ to submit educational topic for upcoming meeting please submit your BIO and talk abstract via email. When accepted it will be required to use the following powerpoint OWASP Template To sponsor or host a upcoming event in Orange County please contact one of the board members below via email from more information.