OWASP Local Chapters - April

[Andrew van der Stock <vanderaj () greebo net>]

Here's the known April OWASP meetings around the world. If there's no  
meeting close to you, it could be an oversight. Directions to the  
meetings and times for the meetings can be found on the relevant  
chapter pages. Please check:

http://www.owasp.org/docroot/owasp/maps/index.jsp

to see if there's a chapter meeting happening in your neck of the  
woods. If there is no chapter close to you, please contact me or Jeff  
Williams about starting your own chapter. OWASP meetings count  
towards CISSP CPE Credits.


April 4 - Melbourne, Australia

Please RSVP to jabighanem () deloitte com au to attend the meeting.

Presentation – TBA


April 12 - Northern Virginia, USA

Deanne Harwood, DHS, "Web Application Security" (includes a review of
the OWASP Top Ten)

Keys Botzum, IBM, "WebSphere Application Server V6 Security: Application
Hardening"

Richard "Doc" Baum, ATT, Web application security scenarios. Doc will
float some approaches to security some simple apps and let us pick them
apart.


April 19 - New Jersey, USA

MANUAL WEB APPLICATION TESTING 101 - Talk will focus on the process  
of conducting a web application security assessment using non- 
commerical tools such as stunnel, paraos, webscarb and others.
Speaker: Michael Esposito, MBA

TOPIC B: BETWEEN 1 & 2 FACTOR AUTHENTICATION
A discussion of the tension between - FFIEC guidelines, - US customer  
preferences, - What's available from vendors, What financial service  
firms are doing and thinking about... in that gap between 1 and 2  
factor authentication.
Speaker: Bill Gebhardt, CISSP

TOPIC C: COMMON WEB APPLICATIONS VULNERABILITIES
Web applications are an essential component of doing business in the  
Internet age. This presentation focuses on common web application  
vulnerabilites often overlooked by developers and widely exploitied  
by attackers
Speaker: Steve Antoniewicz


April 19 - San Antonio, TX, USA

Topic: AJAX Security: Here We Go Again
Presenter: Dan Cornell of Denim Group, Ltd.
Date: Wednesday April 19th, 2006 11:30am - 1:00pm
Location:
San Antonio Technology Center (Web Room)
3463 Magic Drive
San Antonio, TX 78229
http://maps.google.com/maps?f=q&hl=en&q=3463+Magic+Drive,+San+Antonio, 
+TX+78
229

Abstract:
AJAX (or Asynchronous JavaScript And XML) is the hot new web programming
technique being used to create rich Internet applications.  By  
interacting
with the server behind the scenes and updating web page DOMs, AJAX
applications bring a new level of responsiveness to the web and opens
exciting new possibilities for creating new classes of applications.   
The
success of applications such as Google Maps and Flickr is a testament  
to the
exciting potential AJAX techniques bring to the discipline of web
application development.


April 20, New York, USA

When: April 20th, 6PM - 8:45PM
Where: American Stock Exchange
86 Trinity Pl.
New York, NY 10006-1872
14th Floor Conference

Topics for the evening:

1)      Project Liberty
2)      Finding Gold In Your Cache

April 26 - Cleveland, OH, USA

5:00 PM, the first meeting of OWASP Cleveland local
chapter will be taking place.  SecureState will be providing the meeting
area, snacks, and beverages at their Cleveland Location. Directions can
be found at http://www.securestate.net/page.aspx/id/ContactUs.

We expect this first meeting to last approximately 1 hour.  During this
first meeting, we are planning on having general discussions and go over
the OWASP organization. We also hope to determine what people are
interested in hearing about so future meetings can tailored to the
audience.

Attachment: smime.p7s
Description: