<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<body bgcolor="#ffffff" text="#000000">
We have agreed on the date for the next chapter meeting and lined up
two excellent speakers. Full information can be seen below:<br>
<p><b>Location: Harcourt Street, thanks to Ernst & Young. <br>
<h3> <span class="mw-headline">Agenda</span></h3>
<p>Next Meeting 23rd July 2009 </p>
<p>Venue: Ernst & Young, Harcourt Street
<p><b>Niall Jordan (Realex Payments) </b>
<p><b>Evading SQL injection detection through encoding</b>
<p>The purpose of this presentation is to give a basic understanding of
character set encoding can be used to evade common SQL injection
detection techniques. It will start with a brief introduction to
character set encoding to give the viewer the necessary overview to
adequately understand the attack vectors. It will then move on to
quickly describe normal SQL injection techniques and their detection
and then go into detail on using character set encoding to bypass
conventional detection methods. Practical examples will be shown along
with methods to prevent these attacks.
<p><b>Colin Watson (Watson Hall)</b>
<b>Software Assurance Maturity Model 1.0</b>
The Software Assurance Maturity Model (SAMM) is now an OWASP project
and in March became release quality. What is software assurance? What
is a maturity model? What is SAMM? The presentation will explain how
SAMM can be used to assess and improve software development security
practices, reducing security risk and increasing software assurance, in
all sizes of organisation.<br>
Colin Watson's initial work was in the production and process
engineering fields, but since completing an MSc in Computation at the
University of Oxford in 1995, he has been employed in web software
development, with an increasing focus on the security aspects. He is
now a consultant, based mainly in London, working with developers,
testers, auditors and people from a non-IT background to improve
security practices. Colin joined the OWASP Global Industry Committee in
<h3> <span class="mw-headline">Time</span></h3>
<h3> <span class="mw-headline">Location</span></h3>
Ernst & Young,<br>
Harcourt Centre, Harcourt St, <br>
Opposite the Odeon Pub<br>
If you have any questions please do not hesitate to ask.<br>
Don't forget OWASP Ireland:<br>
<p>OWASP are holding an event in Ireland.
The venue is Trinity College, Dublin.
Date: September 10, 2009
<p>More information: <a
title="OWASP Ireland AppSec 2009 Conference">OWASP_Ireland_AppSec_2009_Conference</a>
<p>We have a host of international speakers lined up for the event such
as Professor <a href="https://www.owasp.org/index.php/Ian_O._Angell"
title="Ian O. Angell">Ian_O._Angell</a> of the London School of
Economics and <a href="https://www.owasp.org/index.php/Danny_Allen"
title="Danny Allen">Danny_Allen</a>, Director of security research,
<pre class="moz-signature" cols="72">--
David Rook | <a class="moz-txt-link-abbreviated" href="mailto:email@example.com">firstname.lastname@example.org</a>
Enabling thousands of businesses to sell online.
Visit our new website: <a class="moz-txt-link-abbreviated" href="http://www.onlinepayments.ie">www.onlinepayments.ie</a>
Follow us on Twitter! <a class="moz-txt-link-abbreviated" href="http://www.twitter.com/realexpayments">www.twitter.com/realexpayments</a>
Castlecourt, Monkstown Farm, Monkstown, Co Dublin, Ireland
|t: +353 1 2808559 | f: +353 1 2808538 | <a class="moz-txt-link-abbreviated" href="http://www.realexpayments.com">www.realexpayments.com</a>
1 Lyric Square, London W6 0NB
t: +44 203 1785370 | f: +44 207 6917264 | <a class="moz-txt-link-abbreviated" href="http://www.realexpayments.co.uk">www.realexpayments.co.uk</a>
27 avenue de l'Opéra, 75001 Paris.
t: +33 (0)1 70 38 51 37 | f: +33 (0)1 70 38 51 51
Visit our other Realex Payments websites:
<a class="moz-txt-link-abbreviated" href="http://www.airlinepayments.com">www.airlinepayments.com</a>
<a class="moz-txt-link-abbreviated" href="http://www.sepa.ie">www.sepa.ie</a>
Pay and Shop Limited, trading as Realex Payments has its registered office at Castlecourt, Monkstown Farm, Monkstown, Co. Dublin, Ireland and is registered in Ireland, company number 324929.
This mail and any documents attached are classified as confidential and are intended for use by the addressee(s) only unless otherwise indicated. If you are not an intended recipient of this email, you must not use, disclose, copy, distribute or retain this message or any part of it. If you have received this email in error, please notify us immediately and delete all copies of this email from your computer system(s).