South Florida OWASP Meeting - October 6, 2010
2 views
Skip to first unread message
HackMiami Information
Sep 23, 2010, 5:22:57 PM9/23/10
to HACKMIAMI
Greetings! Just wanted to remind everyone that the next South Florida
OWASP meeting WILL NOT be taking place on the usual last Wednesday of
the month, we have moved this next meeting to 10/6, the first
Wendesday of October.
The reason we are doing this is we have a special guest who is flying
in from Ireland to present at the meeting. Join us as we welcome Fabio
Cerullo to South Florida as he presents on OWAP's ESAPI project.
Wed. October 6, 2010 - 6pm - South Florida OWASP Meeting
Facility Location:
NOVA SOUTHEASTERN UNIVERSITY
Carl DeSantis Building, Main Davie Campus
Room 1124
3301 College Ave Fort Lauderdale, FL 33314-7796
Phone: 800-541-NOVA (6682)
6pm
Abstract: Improving application security with ESAPI Swingset
The primary aim of the OWASP Top 10 is to educate developers,
designers, architects and organisations about the consequences of the
most important web application security weaknesses. ESAPI is
Enterprise security API's for remediation of OWASP Top 10
vulnerabilities. The ESAPI libraries are designed to make it easier
for programmers to retrofit security into existing applications.
The ESAPI Swingset is a web application which demonstrates common
security vulnerabilities and asks users to secure the application
against these vulnerabilities using the ESAPI libraries. The
application is intended for Java Developers. The goal of the
application is to teach developers about the functionality of the
ESAPI libraries and give users a practical understanding of how it can
be used to protect web applications against common security
vulnerabilities.
Bio:
Fabio Cerullo is currently working as an Information Security
Specialist at AIB Bank (Dublin, Ireland). His tasks include performing
risk analysis, assessing the security of web applications developed
internally or purchased from third parties, define policies and
standards on secure coding, as well as providing training on web
application security to developers, auditors, executives and security
professionals.
Prior to joining AIB, he worked as a Security Engineer at Symantec
Security Response European Headquarters analyzing malicious code,
blended threats, security risks and vulnerabilities in various
applications. Before moving to Ireland, he worked in the development
of different training programs and activities with emphasis on secure
software development in his native Argentina.
As a member of the OWASP organization, Fabio is part of Global
Education Committee whose mission is to provide training and
educational services to businesses, governments and educational
institutions on application security, he coordinates international
conferences around this topic, and since early 2010 has been appointed
chairman of OWASP Chapter in Ireland. Fabio is a graduate in Computer
Engineering from the Universidad Católica Argentina and has been
granted the CISSP by (ISC) 2 back in 2006.
http://www.sfowasp.org
OWASP meeting WILL NOT be taking place on the usual last Wednesday of
the month, we have moved this next meeting to 10/6, the first
Wendesday of October.
The reason we are doing this is we have a special guest who is flying
in from Ireland to present at the meeting. Join us as we welcome Fabio
Cerullo to South Florida as he presents on OWAP's ESAPI project.
Wed. October 6, 2010 - 6pm - South Florida OWASP Meeting
Facility Location:
NOVA SOUTHEASTERN UNIVERSITY
Carl DeSantis Building, Main Davie Campus
Room 1124
3301 College Ave Fort Lauderdale, FL 33314-7796
Phone: 800-541-NOVA (6682)
6pm
Abstract: Improving application security with ESAPI Swingset
The primary aim of the OWASP Top 10 is to educate developers,
designers, architects and organisations about the consequences of the
most important web application security weaknesses. ESAPI is
Enterprise security API's for remediation of OWASP Top 10
vulnerabilities. The ESAPI libraries are designed to make it easier
for programmers to retrofit security into existing applications.
The ESAPI Swingset is a web application which demonstrates common
security vulnerabilities and asks users to secure the application
against these vulnerabilities using the ESAPI libraries. The
application is intended for Java Developers. The goal of the
application is to teach developers about the functionality of the
ESAPI libraries and give users a practical understanding of how it can
be used to protect web applications against common security
vulnerabilities.
Bio:
Fabio Cerullo is currently working as an Information Security
Specialist at AIB Bank (Dublin, Ireland). His tasks include performing
risk analysis, assessing the security of web applications developed
internally or purchased from third parties, define policies and
standards on secure coding, as well as providing training on web
application security to developers, auditors, executives and security
professionals.
Prior to joining AIB, he worked as a Security Engineer at Symantec
Security Response European Headquarters analyzing malicious code,
blended threats, security risks and vulnerabilities in various
applications. Before moving to Ireland, he worked in the development
of different training programs and activities with emphasis on secure
software development in his native Argentina.
As a member of the OWASP organization, Fabio is part of Global
Education Committee whose mission is to provide training and
educational services to businesses, governments and educational
institutions on application security, he coordinates international
conferences around this topic, and since early 2010 has been appointed
chairman of OWASP Chapter in Ireland. Fabio is a graduate in Computer
Engineering from the Universidad Católica Argentina and has been
granted the CISSP by (ISC) 2 back in 2006.
http://www.sfowasp.org
Reply all
Reply to author
Forward
0 new messages