Difference between revisions of "User:Achim"

From OWASP
Jump to: navigation, search
(rfc6265)
m (links in wiki syntax)
Line 29: Line 29:
  
 
* [http://www.ietf.org/rfc/rfc6265.txt HTTP State Management Mechanism] RFC 6265 (Cookie) (contributor 2009/2010/2011)
 
* [http://www.ietf.org/rfc/rfc6265.txt HTTP State Management Mechanism] RFC 6265 (Cookie) (contributor 2009/2010/2011)
* [https://www.owasp.org/images/0/00/OWASP-Projektierung_der_Sicherheitspr%C3%BCfung_von_Webanwendungen_v101.de.pdf Best Practice: Projektierung der Sicherheitsprüfung von Webanwendungen] (author 2009)
+
* [[Media:OWASP-Projektierung der Sicherheitspr%C3%BCfung von Webanwendungen v101.de.pdf|Best Practice: Projektierung der Sicherheitsprüfung von Webanwendungen]] (author 2009)
 
* [http://projects.webappsec.org/Threat-Classification Web Application Security Threat Classification v2] (contributor 2008/2009/2010)
 
* [http://projects.webappsec.org/Threat-Classification Web Application Security Threat Classification v2] (contributor 2008/2009/2010)
* [http://www.owasp.org/images/1/1b/Best_Practices_Guide_WAF.pdf Best Practices: Einsatz von Web Application Firewalls] (co-author, 2008)
+
* [[Media:Best Practices Guide WAF.pdf|Best Practices: Einsatz von Web Application Firewalls]] (co-author, 2008)
 
* [https://www.bsi.bund.de/cae/servlet/contentblob/476464/publicationFile/30632/WebSec_pdf.pdf Sicherheit von Webanwendungen: BSI-Maßnahmenkatalog und Best Practices] (author, 2005/2006)
 
* [https://www.bsi.bund.de/cae/servlet/contentblob/476464/publicationFile/30632/WebSec_pdf.pdf Sicherheit von Webanwendungen: BSI-Maßnahmenkatalog und Best Practices] (author, 2005/2006)
 
<!-- new link 12/2010
 
<!-- new link 12/2010

Revision as of 15:18, 26 June 2011

Hello and welcome to my user page at OWASP.org. You'll find some details about my public work and things related to web application security here. My OWASP wiki contributions here.

You can reach me mailto: achim (at) owasp -dot- org, or check some popular social networks (i.e. [linkedin]) ...


"some" Security ..

It's difficult to describe my knowledge in the security world without being subjective, hence replace some by whatever your feel happy with. The official title on the v-card will be senior security and network consultant, which means something too.

(Short) CV

I'm doing software development since early '80s, used to networking all the time, and focused on web application security starting this millenium. Meanwhile I've seen coming, have evaluated, have configured and used, and have seen disappearing a lot of WAFs and web application security scanners. Founded sic[!]sec GmbH in 2010.

OWASP Activities

Public Papers / Work


Mach es so einfach wie möglich, aber nicht einfacher
Things should be made as simple as possible, but no simpler(Einstein)
KISS - keep it simple stupid