[Owasp-austin] [Invitation] OWASP - Web Application Security in the Airline Industry:... @ Fri Feb 27 11:30am – 1pm (owasp-austin at lists.owasp.org)

James Wickett wickett at gmail.com
Tue Feb 3 17:17:00 EST 2009

owasp-austin at lists.owasp.org, you are invited to

Title: OWASP - Web Application Security in the Airline Industry: Stealing  
Airlines’ Online Data
Time: Fri Feb 27 11:30am – 1pm (Timezone: Central Time)
Where: National Instruments, 11500 N Mopac, Building C, Austin, TX
Calendar: owasp-austin at lists.owasp.org
Owner/Creator: wickett at gmail.com

Description: When: February 27, 2009, 11:30am - 1:00pm
Topic:  Web Application Security in the Airline Industry: Stealing the  
Airlines’ Online Data
In this session, attendees will learn about the types of airline
data that is at risk of being stolen by online data thieves. In
addition, the following topics will be further explored:
1. Important attack scenarios and Web-based vulnerabilities
accompanied by examples of how these attacks can be mitigated by
deploying comprehensive defense solutions;
2. Protection strategies and tools, such as Web application
scanners and Web application firewalls, which help equalize the gap
between the advanced Web hacker and the security professional; and
3. Compliance and Software development life cycle approaches.
Following the September 11 attacks, the airline industry
recognized its need to ‘webify’ online ticket reservation systems, crew
scheduling, and passenger profiles in order to enhance operational
efficiency. This ultimately served to decrease the airlines’ operating
costs, thereby increasing their operating profits. However, the
following questions remain: At what costs? What are the information
systems and customer data security risks associated with the airline
‘webification’ process?
Please join in this presentation, which will outline some of
the challenges that members of the airlines industry may face when
attempting to protect their online services. Additionally, attendees
will discover methodologies that airlines may utilize to identify,
assess, and protect against the various risks associated with Web-based
application attacks.
Who: Quincy Jackson
Quincy Jackson, a CISSP and Certified Ethical Hacker, has more
than 15 years of experience in the Information Technology (“IT”)
profession, which include 8 years in Information Security. In addition,
Quincy has 15 years in the aviation industry. His career in the
aviation industry began in the United States Army as an Avionics System
Specialist. Quincy began to explore his passion for IT Security as Sr.
Manager - Information Security for Continental Airlines. Over his
8-year tenure at Continental Airlines, Quincy was instrumental in the
development of the Company’s first Information Security Program. Quincy
currently serves as the IT Security Manager for Universal Weather and
Aviation, Inc. (“UWA”). UWA provides business aviation operators
various aviation support services, including flight coordination,
ground handling, fuel arrangement and coordination, online services,
and weather briefings. Quincy enjoys both learning about and sharing
his knowledge of Web application security with others, including ISSA
and OWASP members.
Where: National Instruments, 11500 N Mopac, Building C
which is the tallest building on campus (8 levels). There will be signs
posted in the lobby to direct you where to go and the receptionists
will be able to assist you as well. See directions to National Instruments.
Cost: Always Free
Questions or help with Directions... call: Scott Foster 512-637-9824.

You can view this event at  

You are receiving this courtesy email at the account  
owasp-austin at lists.owasp.org because you are an attendee of this event.

To stop receiving future notifications for this event, decline this event.  
Alternatively you can sign up for a Google account at  
http://www.google.com/calendar/ and control your notification settings for  
your entire calendar.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-austin/attachments/20090203/2174e090/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/calendar
Size: 4972 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-austin/attachments/20090203/2174e090/attachment-0002.bin 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: invite.ics
Type: application/ics
Size: 5051 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-austin/attachments/20090203/2174e090/attachment-0003.bin 

More information about the Owasp-austin mailing list