[Owasp-ottawa] Next Event - What's Hiding in Your Software Components? - Thursday Sept 5th.

Sherif Koussa sherif.koussa at owasp.org
Thu Aug 29 15:29:59 UTC 2013


Hello All.

Hope everyone enjoyed their summer. We are back to a busy Fall and Winter
schedule. We are starting it off with a very interesting presentation about
OWASP's Newly added A9. Using Components with Known Vulnerabilities in the
2013 version of OWASP Top 10.

What's Hiding in Your Software Components?

*What*

Software is no longer written, it's assembled. With 80% of a typical
application now being assembled from components, it's time to take a hard
look at the new risks posed by this type of development -- and the
processes and tools that we'll need in order to keep them in check.

On the just released OWASP Top 10 for 2013, entry A9 highlights the
potential problems associated with the widespread use of open-source
components with known security vulnerabilities in modern-day application
development.

Join Ryan Berg, Sonatype CSO, as he shares real world data on component
risks, outlines the scope of the problem, and proposes approaches for
managing these risk. You'll learn how security professionals can work
cooperatively with application developers to reduce risk AND boost
developer efficiency.

*Who*

Ryan Berg is the Chief Security Officer at Sonatype. Before joining
Sonatype, Ryan was a co-founder and chief scientist for Ounce Labs which
was acquired by IBM in 2009. Ryan holds multiple patents and is a popular
speaker, instructor and author, in the fields of security, risk management,
and secure application development.


*When*: Thursday, Sept 5ht, 2013 : 6:00 PM


*Where: *World Exchange Plaza - Suite 500, 100 Queen Street
Ottawa, Ontario CA

*Registration: *Simply reply to this email or wait for the official RSVP.

Regards,
Sherif
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-ottawa/attachments/20130829/13128027/attachment.html>


More information about the Owasp-ottawa mailing list