[Owasp-summit-2013] OWASP Connector February 5, 2013

Kate Hartmann kate.hartmann at owasp.org
Tue Feb 5 20:07:31 UTC 2013

To make sure you receive future emails,
please add kate.hartmann at owasp.org to your address book or safe list.

OWASP Connector February 5, 2013



OWASP Embedded Application Security Project - There are many challenges in the embedded field including limited memory, a small stack and the challenge of pushing firmware updates.  The goal of this project is to identify the risks in embedded hardware applications, create a list of best practices and draw on the resources OWASP already has and bring that to the embedded world.  Please contact Aaron Weaver if you wish to contribute to the project.

OWASP OpenStack Security Project - The OWASP OpenStack Security Project is an effort to provide security testing techniques and tools to assess the security of the OpenStack code base.  Generally speaking, the OpenStack community is primarily developers of OpenStack and companies which are implementing all or parts of OpenStack.  This project provides a bridge between the OpenStack community and the OWASP community of security professionals.  The project leader is also a member of OpenStack and is a member of the OpenStack Security Group.  OpenStack has the desire to be the Linux of Cloud infrastructure, and OWASP can be the community that ensures the security of that Cloud.  Please contact Matt Tesauro if you wish to contribute to the project


OWASP ZAP 2.0.0 is now available for Download (http://code.google.com/p/zaproxy/downloads/list)

Simon Bennetts, OWASP Zap's Project Leader, is planning to host a Google hangout demonstrating many of these features at 17:00 UTC on Friday 8th Feb.  Details to be announced via twitter (https://twitter.com/zaproxy)

For more information on Zap 2.0 new features, please visit the OWASP Official Blog (http://owasp.blogspot.co.uk/2013/01/owasp-zed-attack-proxy-v-200.html)

OWASP AntiSamy Version 1.5 is finally released! (https://www.owasp.org/index.php/Category:OWASP_AntiSamy_Project)

AntiSamy V1.5 promises to be significantly faster than previous releases;  your mileage will vary anything from just some percent to a full 5 times faster, depending on use cases.  A lot of attention has been put to typical "server" validation cases in this release.  This version requires java 1.5.

For more information on this initiative, please visit the OWASP AntiSamy Project Page (https://www.owasp.org/index.php/Category:OWASP_AntiSamy_Project)

OWASP Foundation

Contact Us (http://owasp4.owasp.org/contactus.html)



OWASP & Black Hat EU - OWASP is proud to once again partner with Black Hat Europe in 2013.  Join us in Amsterdam, March 12-15, 2013 for the premiere conference on information security.  Take advantage of an exclusive 15% discount off Black Hat Europe Briefings.  OWASP members may simply enter the following code:  15OwaSpBHeu13 when completing the registration process. Click Here to Register  (http://www.blackhat.com/eu-13/registration.html)

OWASP & RSA Conference 2013 - New for this year, OWASP has partnered with​​ the RSA conference taking place February 25-March 1, 2013.  Register today (http://www.rsaconference.com/events/2013/usa/index.htm?utm_source=owasp&utm_medium=banner&utm_content=index&utm_campaign=discount-reg) to access the industry's most in-depth intelligence over five information packed days in San Francisco.  Use the following code to receive an additional $100 off the current registration price:  1213OWASPDL100.

While attending the conference, come check out our talk on Friday, March 1 in the Association Track "Security:  Looking Forward - Protecting critical applications with OWASP" presented by Michael Coates, Chairman of the OWASP Global Board of Directors

Call for 2014 Global AppSec Conference Proposals

We are currently solicitating proposals for our four OWASP Global AppSec conferences in 2014.  Conferences will be selected to facilitate on Global AppSec conference in each quarter of the year.  Conferences will be held in North America, South America, Europe, and the Asia Pacific regions.  New for 2014, we will be moving the North American event to Q2!

 - Global AppSec Asia Pacific - Q1 (Applications due by March 1, 2013)
 - Global AppSec North America - Q2 (Applications due by April 1, 2013)
 - Global AppSec Europe - Q3 (Applications due by July 1, 2013)
 - Global AppSec Latin America - Q4 (Applications due by September 1, 2013)
Those interested in submitting a proposal, should learn more about the recommended planning steps here and submit your application to the OWASP Event Management System (https://ocms.owasp.org/)

If you have any questions or need assistance with your application, do not hesitate to contact Sarah Baso (mailto:sarah.baso at owasp.org?subject=Global AppSec 2013 proposal) or the Global Conferences Committee (mailto:global_conference_committee at lists.owasp.org?subject=Global AppSec 2013 Proposal)






February 14, 2013 at 10am EST
(GMT -5)

February 14, 2013 at 10pm EST
(GMT -5)

Please add your recommendations for discussion to the meeting agenda (https://docs.google.com/folder/d/0B5Z9zE0hx0LNZ0pqZC1QWWRTM28/edit)

Links to the recordings of January's meetings can be found on the Initiatives Page (https://www.owasp.org/index.php/OWASP_Initiatives_Global_Strategic_Focus)

The 2013 OWASP LATAM Tour is being scheduled for March/April 2013.  Each location will host a day of training and a day of talks.  If you are interested in submitting a training proposal, or are interested in sponsoring this event, please visit the LATAM 2013 web page (https://www.owasp.org/index.php/LatamTour2013).

NEW CITATION:  The new document from PCI SSC references OWASP - 
Information supplement:  PCI DSS E-commerce Guidelines (https://www.pcisecuritystandards.org/pdfs/PCI_DSS_v2_eCommerce_Guidelines.pdf)

Other Citations of National & International Legislation, Standards, Guidelines, Committees and Industry Codes of Practice (https://www.owasp.org/index.php/Industry:Citations#National_.26_International_Legislation.2C_Standards.2C_Guidelines.2C_Committees_and_Industry_Codes_of_Practice)

   OWASP Social Media

 - Linkedin (http://www.linkedin.com/groups/Global-OWASP-Foundation-36874)
 - Twitter (http://www.twitter.com/OWASP)
 - Google + (https://plus.google.com/u/0/communities/105181517914716500346 )
 - Facebook (http://www.facebook.com/pages/OWASP/104106462960656 )
 - NING (http://myowasp.ning.com )
 - StackOverFlow (http://stackoverflow.com/search?tab=newest&q=owasp )

OWASP Blog (http://owasp.blogspot.com)

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-summit-2013/attachments/20130205/fc669e29/attachment-0001.html>
-------------- next part --------------
To unsubscribe from the Owasp-all mailing list, you will need to unsubscribe yourself from all OWASP mailing lists you belong too. This list is automatically generated to allow OWASP to contact all it’s members in one distribution.

Best regards, OWASP
-------------- next part --------------
You received this message because you are subscribed to the Google Groups "OWASP Summit 2013" group.
To unsubscribe from this group and stop receiving emails from it, send an email to owasp-summit-2013+unsubscribe at owasp.org.
To post to this group, send email to owasp-summit-2013 at owasp.org.
Visit this group at http://groups.google.com/a/owasp.org/group/owasp-summit-2013/?hl=en.
For more options, visit https://groups.google.com/a/owasp.org/groups/opt_out.

More information about the Owasp-summit-2013 mailing list