[Owasp-italy] Fwd: Call For Papers: 2006 OWASP AppSec Europe Conference

Matteo Meucci matteo.meucci at gmail.com
Fri Jan 13 11:56:23 EST 2006


---------- Forwarded message ----------
From: Dave Wichers <conferences at owasp.org>
Date: Jan 12, 2006 4:18 AM
Subject: Call For Papers: 2006 OWASP AppSec Europe Conference
To: webappsec at securityfocus.org

Call For Papers - Refereed Papers Track at OWASP AppSec Europe 2006

The Open Web Application Security Project (OWASP, http://www.owasp.org) is
dedicated to finding and fighting the causes of insecure software. OWASP has
dozens of projects and over 50 chapters worldwide focused on application
security. Our high quality tools and documentation are used everywhere,
including the freely available book-length "Guide to Secure Web Applications
and Services", the leading web application penetration testing tool called
"WebScarab", and an advanced web application security training application
called "WebGoat". The OWASP Foundation, a not-for-profit charitable
organization, ensures the ongoing availability and support for this work.

The OWASP AppSec conferences (http://www.owasp.org/conferences.html) bring
together application security experts, researchers and practitioners from
all over the world. Industry and academia can meet to discuss open problems
and new solutions in application security. The conferences offer tutorials,
keynotes, and invited presentations.

For the first time, the 2006 OWASP AppSec Europe conference will feature
refereed papers. Original research papers pertaining to all aspects of web
application security are solicited. Papers should describe new ideas, new
implementations, or experiences related to web application security.

Topics of interest include, but are not limited to:

 - Web application security
 - Threat modeling of web applications
 - Vulnerability analysis of web applications (code review, pentest, static
analysis, scanning)
 - Countermeasures for web application vulnerabilities
 - Secure coding techniques
 - Static and dynamic analysis of web application technologies
 - Platform or language (e.g. Java, .NET) security features that help secure
web applications
 - Open source framework features that help secure web applications
 - How to use databases securely in web applications
 - Experiences or new ideas on Secure Development Lifecycles (SDLC)
 - Experiences using web application security scanning or code analysis
 - Access control in web applications
 - Web services security

It is the intention of the organizers to publish accepted papers in
conference proceedings.

Important dates:

Submission deadline (Draft Paper):        March 20
Notification of acceptance:               April 20
Final version due:                        May 20
Conference:                               May 29-31, 2006 (May 29 training
day) (May 30-31 Conference)

Review Committee: Frank Piessens - KU Leuven University
(Frank.Piessens at cs.kuleuven.ac.be)
and others to be announced (We are aiming for a committee with 4-5 people
from industry and 4-5 people from academia.)

Additional details on the Review Committee, submission format requirements,
and other details will be announced later.

All submissions should be sent to Frank Piessens at
Frank.Piessens at cs.kuleuven.ac.be

This List Sponsored by: Watchfire

Watchfire's AppScan is the industry's first and leading web application
security testing suite, and the only solution to provide comprehensive
remediation tasks at every level of the application. See for yourself.
Download AppScan 6.0 today.


Matteo Meucci
OWASP-Italy Chair, CISSP
site: http://www.owasp.org/local/italy.html
mail: matteo.meucci at owasp.org
ml: https://lists.sourceforge.net/lists/listinfo/owasp-italy

More information about the Owasp-italy mailing list