Loading…
AppSec Europe 2014 has ended
Welcome to the full schedule of the OWASP AppSec Research EU 2014 conference days

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Project Summit [clear filter]
Monday, June 23
 

09:00

Room LAB215: Summit Session - OWASP Education Projects
This will be the OWASP Education Project's community gathering of academics in order to discuss what OWASP can do for the academic community.

Working Session Specifics:

  1. Re-thinking the concept of OWASP University Supporter
  2. Expand the concept of the OWASP Student Chapters.
  3. Establish and expand the OWASP University Challenge. 
  4. Suggested application security curriculum.
  5. Discuss and establish the concept of OWASP Academic Advocate.
  6. Promote participation of OWASP projects into the Google Summer of Code program
 Please check attached PDF file for location

Speakers
avatar for Konstantinos Papapanagiotou, Spryros Gastreratos

Konstantinos Papapanagiotou, Spryros Gastreratos

Information Security Services Team Lead, OTE
Both trainers are Hackademic project leaders, long time OWASP members and application security professionals



Monday June 23, 2014 09:00 - 13:00
LAB215

09:00

ROOM LAB216: Summit Session - OWASP 24/7 Podcast Series
In the past 6 months, the OWASP 24/7 Podcast Series has been listened to over 30,000 times. In this session, Mark Miller, Executive Producer of the series, will talk about how the series was started, the equipment used to create the podcasts and the process of publication on SoundCloud for distribution to the iTunes channel. The session will include a live interview that will be recorded and published in real time.

Please check attache  Pdf fils for location 

Speakers
avatar for Mark Miller

Mark Miller

Senior Storyteller and DevSecOps Advocate, Sonatype
Mark is the co-founder of the "All Day DevOps" live online conference.As part of his community engagement initiatives, he is the Editor-in-Chief of the LinkedIn DevOps Group(65K+ members), Executive Producer of the DevSecOps Days Podcast Series (260,000+ listens), and Producer of... Read More →



Monday June 23, 2014 09:00 - 13:00
LAB216

09:00

Room LAB220: Summit Session - OWASP Python Security Project
Python Security is a free, open source, OWASP project that aims at creating a hardened version of python that makes it easier for security professionals and developers to write applications more resilient to attacks and manipulations.

Working Session Objectives: 

1. Presentation of the project. 

2. Project overview, goals and objectives.

3. Review of challenges faced by the team, case studies.

4. Brainstorming session on what should be the focus of our efforts.

5. Identify what needs to be secured.

 

Speakers
EB

Enrico Branca

Independent Consultant
Enrico Branca is an experienced researcher with specialist knowledge in Cyber security. He has been working in information security for over a decade with experience in software security, information security management, and cyber security R&D. He has been trained and worked in various... Read More →


Monday June 23, 2014 09:00 - 13:00
LAB220

14:00

Room LAB215: Summit Session - OWASP Code Review Guide
A gathering of software developers sharing good and bad coding examples, with the aim of educating everyone reading the code review guide on what to do and what not do do when coding web sites.

Working Session Proposed Outcomes:

  1. Collect a number of bad coding examples to show readers code they should avoid writing.
  2. Collect a number of good coding examples to show readers how security code should be written.
  3. Collect the above for Java, PHP and C# languages, plus possibly C/C++, Ruby, Python, Perl, etc.. 
  4. Raise awareness of the ongoing Code Review Guide and encourage OWASP members to participate in the project.
Please check attached PDF file for location

Moderators
avatar for Johanna Curiel

Johanna Curiel

Security Engineer and Researcher, Mobiquity
Johanna Curiel is a security engineer and researcher with 18 years experience in programming, testing and quality control. Her early encounters with hackers and cybercrime was a turning point in her career to work in the area of Cyber security.Between 2005 and 2007, she worked as... Read More →

Speakers


Monday June 23, 2014 14:00 - 18:00
LAB309

16:00

Room LAB220: OWASP OpenSAMM
During the AppSec conferences, the SAMM project team organises workshops for you to influence the direction SAMM evolves. This is an excellent opportunity to exchange experiences with your peers.

Understanding of SAMM is a prerequisite for participation in this OWASP summit session.

Please check PDF file for location 


Speakers
avatar for Seba Deleersnyder

Seba Deleersnyder

managing partner application security, Toreon
Co-founder & managing partner application security at Toreon.com As application security specialist for more than 10 years, Sebastien has helped various companies improve their ICT-, Web- and Mobile Security, including BNP Paribas Fortis, Atos Worldline, KBC, NationaleNederlanden... Read More →



Monday June 23, 2014 16:00 - 18:00
LAB220
 
Tuesday, June 24
 

09:00

Room LAB215: Summit Session - OWASP Development Guide
In this session, we will briefly take a short tour through the long and inter-twined history of OWASP and the Developer Guide, OWASP's first project. The Developer Guide has had various attempts to restart it over the years, and very nearly all of them failed. Let's have an interactive session on how to get the Developer Guide back on its feet, build community, and re-build a working project team.

Please check attached PDF file for location(MAP FLOOR) 

Speakers
avatar for Andrew van der Stock

Andrew van der Stock

Senior Principal Consultant, Synopsys
Andrew van der Stock is a long-time security researcher and is the current co-lead of the OWASP Top 10 and OWASP Application Security Verification Standard, and is formerly an OWASP Global Board member. Andrew has trained or spoken at many conferences worldwide, including Black Hat... Read More →



Tuesday June 24, 2014 09:00 - 12:00
LAB215

09:00

Room LAB216: Summit Session - OWASP 24/7 Podcast Series
In the past 6 months, the OWASP 24/7 Podcast Series has been listened to over 30,000 times. In this session, Mark Miller, Executive Producer of the series, will talk about how the series was started, the equipment used to create the podcasts and the process of publication on SoundCloud for distribution to the iTunes channel. The session will include a live interview that will be recorded and published in real time.

Please check attached PDF file for location(MAP FLOOR)  

Moderators
ML

Martin Law

Director, First Defence Information Security
With over 25 years in the security industry Martin and involved in many initiatives, he's a well known and popular individual that helps to evolve the industry and its community.OWASP Leeds Chapter Leader, former CREST board member, ISF council member and UK Chapter Leader, White... Read More →

Speakers
avatar for Mark Miller

Mark Miller

Senior Storyteller and DevSecOps Advocate, Sonatype
Mark is the co-founder of the "All Day DevOps" live online conference.As part of his community engagement initiatives, he is the Editor-in-Chief of the LinkedIn DevOps Group(65K+ members), Executive Producer of the DevSecOps Days Podcast Series (260,000+ listens), and Producer of... Read More →



Tuesday June 24, 2014 09:00 - 13:00
LAB216

09:00

Room LAB220 :Summit Session - OWASP Media Project
To brief project leaders on video sharing and live streaming to they can promote their project.
  1. Present the official OWASP YouTube channel
  2. Involve project leaders to promote their content
Please join us at this year's working session so you can pitch in and help with the work we are doing during the conference. 

Please check attached PDF file for location (MAP FLOOR)  

Speakers


Tuesday June 24, 2014 09:00 - 13:00
LAB220

14:00

Room LAB216: OWASP Cyber Security Startup Initiative
The initiative is a pre-startup accelerator that will leverage academia and startup communitys to build next generation cyber security startups

Please check attached PDF file for location(MAP FLOOR) .

Moderators
ML

Martin Law

Director, First Defence Information Security
With over 25 years in the security industry Martin and involved in many initiatives, he's a well known and popular individual that helps to evolve the industry and its community.OWASP Leeds Chapter Leader, former CREST board member, ISF council member and UK Chapter Leader, White... Read More →

Speakers
avatar for Neill Gernon

Neill Gernon

Lead for Cyber Security Startup Initiative, at OWASP
Business Innovation & Growth Strategist. Currently leading the Cyber Security Startup Initiative with OWASP.



Tuesday June 24, 2014 14:00 - 18:00
LAB216

14:00

Room LAB220: Summit Session - OWASP Development Guide
In this session, we will briefly take a short tour through the long and inter-twined history of OWASP and the Developer Guide, OWASP's first project. The Developer Guide has had various attempts to restart it over the years, and very nearly all of them failed. Let's have an interactive session on how to get the Developer Guide back on its feet, build community, and re-build a working project team.

Please check attached PDF file for location(MAP FLOOR)  

Speakers
avatar for Eoin Keary

Eoin Keary

CTO and Founder, BCC Risk Advisory Ltd.
Eoin Keary is an international board member of OWASP. He leads the OWASP code review project. Eoin is the CTO and founder of BCC Risk Advisory Ltd. He has also led global security engagements for some of the world’s largest financial services and consumer products companies. Eoin... Read More →



Tuesday June 24, 2014 14:00 - 18:00
LAB220

14:30

Room LAB215 -Understanding PCI-DSS and using OWASP PCI Toolkit
The PCI toolkit is based on a decision tree assessment methodology, which helps you identify if your web applications are part of the PCI-DSS scope and how to apply the PCI-DSS requirements. By decomposing , one by one , you will be able to create an assessment and a final report of your scope delimitation and which OWASP guidelines must be used

Please check attached PDF file for location(MAP FLOOR)  

Speakers
avatar for Johanna Curiel

Johanna Curiel

Security Engineer and Researcher, Mobiquity
Johanna Curiel is a security engineer and researcher with 18 years experience in programming, testing and quality control. Her early encounters with hackers and cybercrime was a turning point in her career to work in the area of Cyber security.Between 2005 and 2007, she worked as... Read More →



Tuesday June 24, 2014 14:30 - 17:00
LAB215
 
Monday, June 30
 

14:00

Summit Session - TBD
Monday June 30, 2014 14:00 - 18:00
LAB215