OWASP Foundation | January 2016 Connector
The OWASP Foundation
|
|
|
|
|
2016 OWASP Strategic Goals AnnouncedThe 2016 OWASP Strategic Goals are available to review. Five goals will guide our programs in the coming year: Look for an update shortly on the OWASP Blog from the board for further details. OWASP in the NEWS!Security Innovation Making Splash OWASP AppSec California - BusinessWire 1/25/2016 OWASP's Revamped Developer Guide will Help You Pass Pen Tests (Interview with Andrew Van der Stock on OWASP Application Security Verification Standard 3.0)- The Register 1/12/2016 Security Brief - Protecting Against the OWASP Mobile Top 10 - App Developer Magazine 1/7/2016 OWASP AppSec EU made list of the Top 11 Security Conferences in the world! - Tripwire 1/5/2016 OWASP PodcastsOWASP Projects and activities are often the subject of webcasts and podcasts. Sit back and relax as you watch and listen to these recent episodes. Johanna Curiel on the Growing Pains of OWASP and Management of Project Reviews |
|
|
|
Project Review a Team Members AnnouncedWe are happy to announce that we have formed a team of volunteers for the Project Review Committee to relaunch the Project review team and incentives for projects. We are redefining the goals of the Project Review Team (mostly known as the Project task force)
but we want to create clear goals by redefining some of the original committee goals launched almost 2 years ago. Main changes to this committee goals will be: If you want to be part of the team and would like to provide feedback. We are looking for: We just released the OWASP Proactive Controls Top Ten v2. (Download PDF). Big thanks Jim Bird and Katy Anton for their dedication in making this release a reality. This document is a "developer centric" answer to the OWASP Top Ten. It's meant to be an awareness document to inform developers about the basics of building secure software. As a process, we made the document "world editable" and fielded literally hundreds of community change requests (many from anonymous sources) from to hopefully represent consensus in our community. Thanks to everyone who helped make this happen. We hope it helps serve the cause in some way. A new release of the OWASP Security Knoledge Framework project is available! OWASP Cornucopia project co-leader Darío De Filippis conceived, created and published a wiki version of "OWASP Cornucopia - Ecommerce Website Edition", the web application security training and threat modeling card game. The wiki deck, comprising 91 new pages, complements the existing print versions and provides a single place to easily browse around the suits and cards, jump to the relevant cross-references, and most importantly includes an extra technical note for each card. The technical notes supplement the card text, providing additional information on each threat and attack. It also aids game play by providing some clarification between cards which at first might seem similar. The project team welcomes any contributions to correct, extend, and improve the technical notes for each card. The wiki deck can be found at: The main project page, including FAQs, how to play video, presentation, and how to obtain the decks of cards is at Have you heard about X-ChrOmeLogger-Data (XCOLD) Information leaks? No?? Then you better read the latest ZAP Newsletter! An updated version of our Transaction Authorization Cheat Sheet available: The ZSC Tool project needs volunteers. For details, visit https://www.owasp.org/index.php/OWASP_ZSC_Tool_Project | |
|
|
Global AppSec Events
OWASP AppSecEU The European OWASP Conference is going to be one of the best ever. Thanks to the impressive number of paper submissions received, the qualified organisations and people that submitted them and the important sponsors, this will be one of the best OWASP conferences ever. Do not miss the opportunity to hear and share ideas and knowledge with a wide number of experts! The next OWASP AppSecEU (http://2016.appsec.eu/) will take place at the Marriott Park Hotel in Rome, Italy. The Open Web Application Security Project is an open-source project for application security. OWASP provides advice on the creation of secure Internet applications and testing guides. It boasts a strong global community with more than 45,000 participants, more than 55 corporate members and 20 academic supporters through 249 active local chapters in 6 continents and 97 countries. More than 800 people are expected at the event, with 3 days of training followed by the 2-day conference that includes:
Do not miss the opportunity to participate as SPONSOR to this high level conference, mentioned in Tripwire as a TOP 11 SECURITY CONFERENCE IN 2016. More details on registration, program and speakers will be sent in a forthcoming communication. Please contact us with any questions or comments you may have at the following address: appsec...@owasp.org Other Global AppSec Events AppSecUSA 2016 will be held on 11-14 October 2016 in Washington DC. Mark your calendars! | |
Regional and Local Events
AppSec Cali 2016, Jan. 25, 2016 - Jan. 27, 2016, Santa Monica, CA Partner and Promotional Events
IoT Evolution Expo, January 25 - 28 , 2016 Ft. Lauderdale, FL - OWASP Members receive 25% off the list ticket cost by using discount code: OWASP |
|
Ads are not endorsements and reflect the messages of the advertiser only. They represent co-marketing arrangements |
|
|
New Chapters
Chapters Restarts
Transitions
New Student Chapter
Notable Chapter ActivityFunding Updates Some of our chapters and projects that ended the year with less than $500 will be seeing an increase in their funding allocations. It is our hope that these addition will help active chapters to jumpstart their activities for the new year without worry that they will not be able to afford to host a meeting. Chapters and projects with current activity and at least two leaders got an increase and we will soon announce a series of calls to discuss ideas for renewed activities. One of the best ways for our projects and chapters to raise funds is to recruit new, paid memberships and local sponsors. Individual memberships are a low $50 per year (pro rated in some countries) and corporate memberships are available at $5,000, $20,000 and $50,000, a portion of which can be allocated to a chapter and/or project. Local sponsorships are available in smaller amounts and can be allocated directly to a project or chapter, making a valuable contribution to their activities. Interested local sponsors can make a contribution via the "Donate" button on your favorite chapter or project's wiki page. Please show your support for OWASP Projects and Chapters by becoming an Individual or Corporate member today! We at the OWASP Global Foundation are looking forward to hearing about more such events in future. Share your chapter's successes! Submit your stories here |
|
|
|
New Contributing Corporate Members
Thanks to all of our Premier and Contributing Corporate Members for your support in 2015! |
|
|
|
OWASP Social Media Site |
|
|
Click to view this email in a browser
If you no longer wish to receive these emails, please reply to this message with "Unsubscribe" in the subject line or simply click on the following link: Unsubscribe |
|
The OWASP Foundation 1200-C Agora Drive #232 Bel Air, Maryland 21014 US
|
