Difference between revisions of "Vancouver"

From OWASP
Jump to: navigation, search
m
m
 
(87 intermediate revisions by 4 users not shown)
Line 1: Line 1:
 +
Welcome to the OWASP [https://en.wikipedia.org/wiki/Vancouver Vancouver] chapter homepage. We are located in the beautiful province of [https://en.wikipedia.org/wiki/British_Columbia British Columbia], on the West Coast of [https://en.wikipedia.org/wiki/Canada Canada].
  
{{Chapter Template|chaptername=Vancouver|extra=The chapter leader is [mailto:yvanboily@gmail.com Yvan Boily]
+
Our mission is to enrich Vancouver's application security community. We hope you can join us in accomplishing that.
|mailinglistsite=http://lists.owasp.org/mailman/listinfo/owasp-vancouver|emailarchives=http://lists.owasp.org/pipermail/owasp-vancouver}}
 
  
 +
[[File:Vancouver1000x450.png]]
  
== 2013 Meetings ==
+
= Events =
 +
Our monthly sessions take place on the 4th Thursday of each month. We also host one off events and workshops around town.
  
{| class="wikitable"
+
Have a look at [http://owaspvancouver.eventbrite.com/ our calendar of awesome events] and join us!  
|-
 
! Date !! Location !! Speaker !! Topic <nowiki>Insert non-formatted text here</nowiki> !! Registration Info
 
|-
 
| August 7, 2013 || Mozilla Vancouver || Raymond Forbes || Owasp Canada Intro & Bug Bounty Programs || [[http://www.eventbrite.ca/event/7683697145 Register Here!]]
 
|-
 
| September 30, 2013 || TBD || TBD || TBD ||
 
|-
 
| October 28, 2013 || TBD || TBD || TBD ||
 
|-
 
| November 25, 2013 || TBD || TBD || TBD ||
 
|}
 
  
== 2012 Meetings ==
+
= Contact  =
You can subscribe to the OWASP Vancouver Calendar [https://www.google.com/calendar/ical/osgb36r55fqlt3m10jc4e2ef70%40group.calendar.google.com/public/basic.ics here].
+
The OWASP Vancouver chapter board members are:
 +
* [mailto:farshad.abasi@owasp.org Farshad Abasi](Chapter lead)
 +
* [mailto:me@jeevan.ca Jeevan Singh]<br>
 +
[https://groups.google.com/a/owasp.org/forum/#!forum/vancouver-chapter Click here] to join the local chapter mailing list and Google Group (pre-Google mailing list archives can be found [http://lists.owasp.org/pipermail/owasp-vancouver here])
  
=== May 2012 ===
+
= Watch Online =
 +
'''Subscribe''' to the '''[https://www.youtube.com/channel/UCSXBb_cPvieNm-MoLjjtbXw OWASP Vancouver YouTube channel]''' where you can check out live streams of upcoming sessions as well as archives of previous sessions (big thanks to '''George Pajari''' and volunteers).
  
'''OAuth-based single sign-on in Real-world Implementations'''
+
= Speakers =
 +
We welcome speakers of all level! You don't have to be a pro to talk at one of our events, but we do ask that you talk be related to an application security domain and you provide value to attendees. To be a speaker, simply review the [[Speaker_Agreement |speaker agreement]] and then contact the our [mailto:farshad.abasi@owasp.org chapter lead] with details of what OWASP project, independent research or related application security topic you would like to present on.
  
'''Speaker:''' San-Tsai Sung
+
= Membership =
 +
OWASP Foundation ([https://docs.google.com/a/owasp.org/presentation/d/10wi1EWFCPZwCpkB6qZaBNN8mR2XfQs8sLxcj9SCsP6c/edit?usp=sharing Overview Slides]) is a professional association of [[Membership |global members]] and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the [[Chapter_Leader_Handbook]].
  
'''Date & Time:''' Monday, May 28th, 2012 @ 5:30pm
+
Consider the value of [[Membership | Individual, Corporate, or Academic Supporter membership]]. Ready to become a member? [[Image:Join_Now_BlueIcon.JPG|75px|link=https://www.owasp.org/index.php/Membership]]
  
Millions of web users today employ their Facebook accounts to sign into more than one million relying party (RP) websites. This web-based
 
single sign-on (SSO) scheme is enabled by OAuth 2.0, a web resource authorization protocol that has been adopted by major service providers. The OAuth 2.0 protocol has proven secure by several formal methods, but whether it is indeed secure in practice remains an open
 
question. We examine the implementations of three major OAuth identity providers (IdP) (Facebook, Microsoft, and Google) and 96 popular RP
 
websites that support the use of Facebook accounts for login.  Our results uncover several critical vulnerabilities that allow an attacker to gain unauthorized access to the victim user's profile and social graph, and impersonate the victim on the RP website. Closer
 
examination reveals that these vulnerabilities are caused by a set of design decisions that trade security for implementation simplicity. To improve the security of OAuth 2.0 SSO systems in real-world settings, we suggest simple and practical improvements to the design and implementation of IdPs and RPs that can be adopted gradually by individual sites.
 
  
'''Registration:''' Registration is strongly recommended since an invite will be extended to other groups to try to improve participation in OWASP. If space runs out, preference will be given to those who have registered!
+
__NOTOC__
  
Please register at: [https://docs.google.com/spreadsheet/viewform?formkey=dHZSeTY1ZnFKTFo1elBRZ3BsenNvRnc6MQ here].
+
<headertabs />
''(Registration details are not retained after the meeting, however a sign-up sheet will be available for those claiming CPEs)''
 
  
'''Location:'''
+
= Sponsors  =
Mozilla Vancouver, Suite 209, 163 West Hastings,
 
Vancouver, BC (Buzzer code is in the directory)
 
  
 +
As a [[About_OWASP | 501(c)(3)]] non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button.
  
=== January 2012 ===
+
[[Image:Btn_donate_SM.gif|link=https://www.owasp.org/index.php/Local_Chapter_Supporter]] to this chapter or become a local chapter supporter.
  
'''Outsourcing Identity: Understanding Privacy and Security in Identity Services'''
+
= Our 2019 Sponsors =
 
 
'''Speaker:''' Yvan Boily, Web Security Engineer, Mozilla Corporation
 
 
 
'''Date & Time:''' Monday, January 23rd, 2012 @ 5:30pm
 
 
 
Social Media has taken over the online world; what Microsoft attempted with Passport has been made reality by Facebook, Twitter, Google, and other service providers.  In addition to the proprietary identity services these platforms offer, several support protocols such as OpenID, This will be a one hour presentation that will contrast the security and privacy features available in major online identity protocols, and contrast these with Mozilla's BrowserID protocol.
 
 
 
'''Registration:'''  Registration is strongly recommended since an invite will be extended to other groups to try to improve participation in OWASP. If space runs out, preference will be given to those who have registered!
 
 
 
Please register [https://docs.google.com/spreadsheet/viewform?formkey=dHZSeTY1ZnFKTFo1elBRZ3BsenNvRnc6MQ here].
 
''(Registration details are not retained after the meeting, however a sign-up sheet will be available for those claiming CPEs)''
 
 
 
'''Location:'''
 
Ping Identity,
 
200 - 788 Beatty St,
 
Vancouver
 
 
 
'''About Ping Identity
 
'''
 
Ping Identity has generously offered their downtown office space, located on the corner of Beatty and Robson, to host our chapters meetings moving forward. The office is 6000sq/ft of a mostly open floor plan, so we should be able to accommodate a large group.
 
  
 +
We would like to thank the following companies for providing us with space, pizza and pop, and helping us with our mission to enrich Vancouver's application security community.
  
 +
{|
 +
|-
 +
| &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[File:FwdSec.png|frameless|200px|thumb|left|link=https://www.forwardsecurity.com]] || &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[File:PlentyOfFish.png|frameless|200px|thumb|left|link=https://www.pof.com/en/press/]] || &nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;[[File:zenefits.png|frameless|200px|thumb|left|link=https://www.zenefits.com]]
 +
|-
 +
| [[File:Galvanize.jpg|frameless|200px|thumb|left|link=https://www.wegalvanize.com/]] || [[File:CISCO.png|frameless|200px|thumb|left|link=https://www.cisco.com/c/en_ca/index.html]] || [[File:cmd.png|frameless|200px|thumb|left|link=https://www.cmd.com]]
 +
|}
  
[[Category:British Columbia]]
+
[[Category:Vancouver]]
 +
[[Category:OWASP Chapter]]

Latest revision as of 03:49, 15 May 2019

Welcome to the OWASP Vancouver chapter homepage. We are located in the beautiful province of British Columbia, on the West Coast of Canada.

Our mission is to enrich Vancouver's application security community. We hope you can join us in accomplishing that.

Vancouver1000x450.png

Our monthly sessions take place on the 4th Thursday of each month. We also host one off events and workshops around town.

Have a look at our calendar of awesome events and join us!

The OWASP Vancouver chapter board members are:

Click here to join the local chapter mailing list and Google Group (pre-Google mailing list archives can be found here)

Subscribe to the OWASP Vancouver YouTube channel where you can check out live streams of upcoming sessions as well as archives of previous sessions (big thanks to George Pajari and volunteers).

We welcome speakers of all level! You don't have to be a pro to talk at one of our events, but we do ask that you talk be related to an application security domain and you provide value to attendees. To be a speaker, simply review the speaker agreement and then contact the our chapter lead with details of what OWASP project, independent research or related application security topic you would like to present on.

OWASP Foundation (Overview Slides) is a professional association of global members and is open to anyone interested in learning more about software security. Local chapters are run independently and guided by the Chapter_Leader_Handbook.

Consider the value of Individual, Corporate, or Academic Supporter membership. Ready to become a member? Join Now BlueIcon.JPG



Sponsors

As a 501(c)(3) non-profit professional association your support and sponsorship of any meeting venue and/or refreshments is tax-deductible. Financial contributions should only be made online using the authorized online chapter donation button.

Btn donate SM.gif to this chapter or become a local chapter supporter.

Our 2019 Sponsors

We would like to thank the following companies for providing us with space, pizza and pop, and helping us with our mission to enrich Vancouver's application security community.

          
thumb
          
thumb
          
thumb
thumb
thumb
thumb