[Owasp-austin] Austin OWASP Announcements

David Hughes david.hughes at owasp.org
Fri Sep 20 15:16:28 UTC 2013


Austin OWASPers,

Don't forget to register for LASCON 2013! Use the Discount code
OWASP_AUSTIN for an additional 10% off!

Seats are also filling up for the LASCON training!

  *     DEFENSIVE PROGRAMMING FOR JAVASCRIPT & HTML5 (1 DAY TRAINING)
  *     DEFENSIVE PROGRAMMING FOR PHP (1 DAY TRAINING)
  *     RAILSSEC -- RUBY ON RAILS SECURITY (2 DAY TRAINING)
  *     SECURE DEVELOPER TRAINING: OWASP TOP 10++ (2 DAY TRAINING)
  *     SECURING MOBILE DEVICES AND APPLICATIONS (2 DAY TRAINING)


http://lascon.org/register/


    OWASP Austin September Chapter Meeting- September 24th

*Title:* Bridging the gap between development cloud networks and our
corporate identity management strategy. Oh and adding
visibility/credibility to our IT shop.

*Abstract:* As I began my new job at Bazaarvoice a year or so ago I
started to notice some shifty authentication mechanisms within our cloud
deployed internal tools. Tools used by our developers and implementation
engineers to carry out their day-to-day jobs. Authentication mechanisms
ranged from none to CIDR but had no real security behind them. Knowing
that simply pointing out this risk would not be enough to enact change,
I began to work with our Systems Administrator on a possible solution to
use our enterprise directory as an identity provider. We immediately
realized that since our cloud environment has absolutely no visibility
into our corporate network -- for obvious reasons -- we had a tougher
challenge.

What followed was a series of iterations on a proof of concept to stand
up a federated authentication mechanism. One that would scale could be
easily configured and would take up little management time.

This abstract hints at the eventual solution, come hear all about how we
solved this issue and raised awareness and visibility of our corporate
IT group.

*Presenters:* Jay Paz, Staff Security Engineer Justine Reneau, Senior
Systems Administrator

*Cost:* Free, of course

*Food:* Oh yeah, Taco Deli time!

*Location:* National Instruments, 11500 N. Mopac.Building C

*When:* Tuesday, September 24th from 11:30am to 1:00pm

*RSVP:*http://owaspaustinsept.eventbrite.com/?s=17712853


*Webinar Registration Link:*https://www3.gotomeeting.com/register/433937510

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-austin/attachments/20130920/cd24af55/attachment.html>


More information about the Owasp-austin mailing list