[owasp-intrinsic-security] OWASP EU Summit - ISWG Working Sessions
arshan.dabirsiaghi at aspectsecurity.com
Thu Sep 11 10:33:28 EDT 2008
We hope to see all of you at the OWASP EU Summit 2008 in the beautiful Algarve, Portugal!
The ISWG will be hosting 2 working sessions that take place immediately before the conference: Browser Security on Monday, November 3rd and Framework Security on Tuesday, November 4th.
The Browser Security session will be 1-day discussion-oriented workshops where anyone can share research and we can all discuss, threat model, and try to solidify positions regarding all the W3C drafts that are reaching "last call" status. Also, we'll try to solidify the OWASP Top 10 browser wishlist. We'll be inviting representatives from the browser organizations to attend, and we'll keep you posted on that front, but they don't have to be there for us to help them.
The Framework Security session will also be be a 1-day session. We're going to take a look at the programming frameworks (think Struts, ASP.NET, RoR, etc.) and see what security gaps exist, and see if we can identify any patterns of weakness across the frameworks. Hopefully we can come up with some solutions to fill in those gaps. We want attendees from the frameworks to leave with a good idea of how to help programmers write more secure applications.
Hopefully after both working sessions we'll have some actionable advice for the target audience. I'm very excited for the workshops, I think we can start making some big changes in this space!
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the owasp-intrinsic-security