[Owasp-kolkata] Know Your Options for Data Validation (Level 300)

[Rudra Kamal Sinha Roy]

Here is an upcoming webcast on data validation:

Description:   Data streams are the most popular vector to carry an
attacker's payload. A scan of any vulnerability database will reveal
that the cause of most application security faults can be traced to
ineffective data validation. Hence, whether we are concerned with the
age-old buffer overflow or newer and highly prevalent Web-based
techniques such as SQL injection and cross-site scripting, we can
mitigate all of these threats by implementing a smart data validation
strategy. This webcast weighs the advantages and disadvantages of a
variety of validation techniques, considers their performance
implications and illustrates a simple but elegant and efficient
solution through a demonstration of Foundstone's free developer tool,
Validator.NET.

Presenter: Rudolph Araujo, Senior Software Security Consultant, Foundstone, Inc.

Rudolph Araujo is a senior software security consultant and trainer at
Foundstone. He is responsible for content creation and training
delivery for Foundstone's Building Secure Software and Writing Secure
Code-ASP.NET class. Rudolph is an experienced C/C++ and .NET developer
and the author of Foundstone's .NET Security Toolkit, SSLDigger and
Hacme Bank tools. His research interests include virus and worm
threats over peer-to-peer networks and the reliability and security of
Web services. Rudolph holds a Masters Degree from Carnegie Mellon
University with a focus on information security and a Bachelors Degree
in Computer Engineering from Goa University in India.

 http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032272596&Culture=en-US