[Owasp-norway] Medlemsmøte: Jim Manico kommer 19. mars!

Erlend Oftedal erlend at oftedal.no
Man 19. Mar 2012 11:10:28 UTC


Hei

Minner om dagens møte. Møtet blir kl 18 på The Dubliner.
Se https://www.owasp.org/index.php/Norway for kart og påmelding.

Erlend


On Fri, 10 Feb 2012, Erlend Oftedal wrote:

>
> Hei
>
> Neste medlemsmøte går av stabelen 19. mars. Vi har vært så heldige å få Jim 
> Manico til Norge, sponset av F5!
> Klokkeslett og sted kommer vi tilbake til, men det blir trolig
> kl 17 et sted sentralt i Oslo.
>
> Agenda:
> "Web Application Access Control Design Excellence", Jim Manico
>
> Access Control is a necessary security control at almost every layer within a 
> web application. This talk will discuss several of the key access control 
> anti-patterns commonly found during website security audits. These access 
> control anti-patterns include hard-coded security policies, lack of 
> horizontal access control, and "fail open" access control mechanisms. In 
> reviewing these and other access control problems, we will discuss and design 
> a positive access control mechanism that is data contextual, activity based, 
> configurable, flexible, and deny-by-default - among other positive design 
> attributes that make up a robust web-based access-control mechanism.
>
>
> Påmelding: http://www.doodle.com/d4rfandvnakqydc6
> Oppdatert informasjon: https://www.owasp.org/index.php/Norway
>
>
> Med vennlig hilsen
> Erlend Oftedal


More information about the Owasp-norway mailing list