[Owasp-boston] OWASP Rhode Island Wednesday Feb 12, 6 pm

Patrick Laverty patrick.laverty at owasp.org
Mon Feb 3 14:57:03 UTC 2014

Hi all!

We're back for 2014 with another meeting for OWASP RI. Even better, we're
in a new location with our sponsor Swipely. We've moved our meetings to the
new Swipely location at 10 Dorrance St. (http://goo.gl/maps/TQxew) The
meeting will be on the 9th floor, but you will need to check in with
security. Also, please simply RSVP to patrick.laverty at owasp.org as we need
a list of people who are coming, for the security desk.

Ok with that out of the way, the meeting info is as follows:

Preventing XSS with CSP

Cross-Site Scripting is one of the most pervasive web application security
flaws, and one attackers frequently target for attack. While the best line
of defense for Cross-Site Scripting is defensively programming with proper
input validation and context-sensitive output encoding, Content-Security
Policy is quickly becoming a very effective mitigation strategy to protect
sites' visitors and to warn application developers of potential attacks.
This talk will cover content injection (including Cross-Site Scripting) and
how Content-Security Policy mitigates many of the associated risks.

Will Stranathan is an application security professional in the Charlotte,
North Carolina area. He's been writing rotten code for 32 years, and has
spent the last ten years breaking rotten applications, analyzing rotten
code, and writing rotten code which helps the world's best programmers
identify their own rotten code, and training developers how to write code
that's not so rotten.


You can follow OWASP RI at https://www.owasp.org/index.php/Rhode_Island to
find out about future meetings. We do already have speakers for March and
April as the topics will be "Open Source Intelligence" and the "OWASP
Broken Web Apps Project".

Meetings are always free and open to anyone who wants to attend. So yes,
please spread the word and please forward this email to anyone else who may
be interested.

If you would like to present at a future meeting, please just let me know,
or even if you have suggestions on topics, as speakers usually ask "What do
you want to hear?"

Meeting location and refreshments are supplied by our generous sponsor,

Thank you and I hope to see you on the 12th!

Patrick Laverty
patrick.laverty at owasp.org
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-boston/attachments/20140203/f0362afa/attachment.html>

More information about the Owasp-boston mailing list