[Owasp-ireland] OWASP Ireland News: 14th April 2010

fabio.e.cerullo at aib.ie fabio.e.cerullo at aib.ie
Wed Apr 14 12:29:48 EDT 2010


*************************************************************************
OWASP Ireland News                             April 14th, 2010   
************************************************************************* 

1. April Event: OWASP Live CD Training 
2. May Event: Trials & Tribulations of WAF Implementation
3. New Educational Supporters


1. April Event: OWASP Live CD Training 

This is a reminder for the forthcoming OWASP Ireland chapter meeting to be 
held on April 16th, at 2:30pm-5:00pm (show up at venue between 
2:00pm-2:30pm). 

As usual our location are the Ernst & Young offices in Dublin who kindly 
agreed to host our event: 
- Ernst & Young, Harcourt Street, Dublin 2, Opposite the Odeon Pub, 
Dublin, Ireland 

A certificate of participation and a copy of the OWASP Live CD will be 
provided to those attending the event. 

Bringing your own laptop is 'optional' in case you want to tryout the 
OWASP Live CD tools during the training. However, there is no test network 
environment available so all testing will have to be done locally in your 
own laptop. 

This event is completely sold out. If you are no longer able to attend, 
please email us so your space can be released for someone else.

Fabio at fcerullo at owasp.org 
Eoin at eoin.keary at owasp.org 
Rahim at rahim.jina at owasp.org 

Further details and schedule for the night are available on the chapter 
page (https://www.owasp.org/index.php/Ireland) 

2. May Event: Trials & Tribulations of WAF Implementation

Next month, OWASP Ireland chapter meeting is going to be held on May 20th, 
at 6:30pm-7:30pm (show up at venue between 6:00pm-6:30pm).

As usual our location are the Ernst & Young offices in Dublin who kindly 
agreed to host our event:

If you are planning to attend you must RSVP at 
http://owasp-ireland-waf.eventbrite.com. 

Note, please enter your real name, as this will be given to Ernst & Young 
building security. If you don't RSVP, you may not be let into the 
building. 

A certificate of participation will be provided to those attending the 
event. 

== Talk ==

Title: Trials & Tribulations of WAF Implementation

Abstract: 

A web application firewall (WAF) is an appliance, server plugin, or filter 
that applies a set of rules to an HTTP conversation. Generally, these 
rules cover common attacks such as Cross-site Scripting (XSS) and SQL 
Injection. By customizing the rules to your application, many attacks can 
be identified and blocked. The effort to perform this customization can be 
significant and needs to be maintained as the application is modified. 

Mark will be presenting on his experience in implementing a Web 
Application Firewall solution through all phases from research to 
implementation.

== Presenter == 

Mark Hillick - Application Networking Team, Citrix Systems

Mark Hillick has 10 years experience in relation to Internet, networking, 
systems administration and security engineering. 

Mark graduated from Queen's University, where he studied Mathematics. 

Mark joined AIB from Queen's where he joined the Internet Infrastructure 
team, where he was responsible for designing, building and securing the 
Internet service in and out of AIB. He is a prominent member of the IT 
Security community in Ireland and has presented at several local security 
forums such as IISF and Owasp. Mark is one of the founding members of 
IRISS CERT, where he is also a Volunteer Incident Handler. He helped 
organise IRISSCon 2009, where he also designed and built HackEire 2009, 
the first Ethical Hacking  'Capture The Flag' contest in Ireland.

Further details and schedule for the night will be available on the 
chapter page (https://www.owasp.org/index.php/Ireland). 

** If you would like to be a sponsor of this or a future event please 
contact me directly by mail or phone at 087-7817468 for details.

3. New Educational Supporters

It is with great pleasure that we announce two new OWASP Ireland 
Educational Supporters: 

- Cork Institute of Technology (http://www.cit.ie)
- Dublin City University (http://www.dcu.ie)

This means OWASP Ireland and the educational insitutions could:

- collectively organize chapter meetings if required.
- jointly publicize season of code events which provide funding for 
students or faculty to perform security based research. 
- work together to host security seminars or provide introductory training 
sessions for students on OWASP tools, documentation, etc. 

Please join me in welcoming them to the OWASP Ireland Community!

Thank you,

Fabio Cerullo
Divisional Information Security 
Bankcentre D1, 
Ballsbridge,
Dublin 4,
Ireland.

Tel: +353 1 772 6309
Email: fabio.e.cerullo at aib.ie

******************************************************
This document is strictly confidential and is intended for use by the addressee unless otherwise indicated.

This email has been scanned by an external email security system.

Allied Irish Banks

AIB and AIB Group are registered business names of Allied Irish Banks p.l.c. Allied Irish Banks, p.l.c. is regulated by the Financial Regulator.  Registered Office: Bankcentre, Ballsbridge, Dublin 4. Tel: + 353 1 6600311; Registered in Ireland: Registered No. 24173

Please consider the environment before printing this e-mail. 
******************************************************
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-ireland/attachments/20100414/c140ee6b/attachment.html 


More information about the Owasp-ireland mailing list