[Owasp-boston] OWASP Boston Wed. 4/11 Mtg

Weiler, Jim Jim.Weiler at starwoodhotels.com
Thu Apr 5 22:49:47 UTC 2012

Just a reminder - Wed. April 11, MS Waltham


Topic - Gray, the New Black: Gray-Box Vulnerability Testing 

Over the years, two key techniques have emerged as the most effective
for finding security vulnerabilities in software: Dynamic Application
Security Testing (DAST) and Static Application Security Testing (SAST).
While DAST and SAST each possess unique strengths, the "Holy Grail" of
security testing is thought to be "hybrid" - a technique that combines
and correlates the results from both testing methods, maximizing the
advantages of each. Until recently, however, a critical element has been
missing from first generation hybrid solutions: information about the
inner workings and behavior of applications undergoing DAST and SAST

This presentation will introduce you to the next generation of hybrid
security analysis - what it is, how it works, and the benefits it
offers. It will also address (and dispel) the claims against hybrid, and
leave you with a clear understanding of how the new generation of hybrid
will enable organizations to resolve their most critical software
security issues faster and more cost-effectively than any other
available analysis technology. 

Pizza will be sponsored by HP / Fortify


Jim Weiler       CISSP   CSSLP   GSSP - Java

Application Security Architect

Starwood Hotels      1505 Washington St.   Braintree MA. 02184

desk - 781 356 0067

mobile - 781 654 6048


This electronic message transmission contains information from the Company that may be proprietary, confidential and/or privileged. 
The information is intended only for the use of the individual(s) or entity named above.  If you are not the intended recipient, be 
aware that any disclosure, copying or distribution or use of the contents of this information is prohibited.  If you have received 
this electronic transmission in error, please notify the sender immediately by replying to the address listed in the "From:" field. 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-boston/attachments/20120405/b8923bba/attachment.html>

More information about the Owasp-boston mailing list