OWASP Dorset Chapter Meeting (First one)

OWASP Dorset Chapter
OWASP Dorset Chapter
Public group

3 Sided Cube

18 Christchurch Rd · Bournemouth

How to find us

The nearest car park is Cotlands Road, just behind the building. Guests will need to walk round to the front entrance of the building and press the buzzer in order to call up to the 3 Sided Cube office.

Location image of event venue

Details

Wednesday, 30th January 2019 (Bournemouth) [masked])
Location: 3 Sided Cube, Telephone House, 18 Christchurch Road, Bournemouth, Dorset, England, BH1 3NE

Nearest Train: Bournemouth Station (15-minute walk)

Time: Doors Open at 6:30pm for registration, pizza, drinks and networking. The talks start at 7:00pm (we start on time), close meeting by 9.00pm

TALKS:
OWASP Dorset Introduction, Welcome and News - Daniel W
Welcome and an update on OWASP Projects & Events from the OWASP Dorset Chapter Leader.

OWASP Projects - Open Source Security at its finest - Daniel W
Overview of OWASP Projects Deep Dive on Top 3 Flagship, Lab and Incubator

Focusing on how to fire up your stance on security with minimal investment.

"I know what you did last summer: New persistent tracking mechanisms used in the wild" - Dr. Alexios Mylonas

Web Storage, Indexed Database API and Web SQL Database allow web browsers to store information in the client in a much more advanced way compared to other techniques, such as HTTP Cookies. They were originally introduced with the goal of enhancing the capabilities of websites, however, they are often exploited as a way of tracking users across multiple sessions and websites. The presentation will be divided into two parts. First, it will quantify the usage of these three primitives in the context of user tracking. This is done by performing a large-scale analysis on the usage of these techniques in the wild. The second part reviews the effectiveness of the removal of client-side storage data in modern browsers.

SPEAKERS:
Daniel W
Founder of OWASP Dorset and Director of Warden Group.
Warden Group provides services to clients across the globe with a strong focus on Enabling Secure Business. Client engagements vary from Security Strategy Planning to maximise return on investment, through to bespoke Red/Blue Team Activities including Penetration Tests, Vulnerability Assessments and Emergency Incident Response. Daniel W has a deep and well founded experience across the complete Security spectrum, having spent many hours working round the clock to bring strategic assets online, sleeping in deserts, ascending mountains on remote islands, and all while leading teams across the globe to provide assurance wherever may be required. Daniel W is keen to share his passion for security and encourage others to take up the mantle of improving the world we all live in, good security brings greater confidence to all.

Dr. Alexios Mylonas
Program leader for the BSc (Hons) Forensic Computing and Security at Bournemouth University. Lecturer in Computing.
PhD in Information and Communication Security and a BSc (Hons) in Computer Science from Athens University of Economics and Business, MSc in Information Security from Royal Holloway, University of London. Fellow of HEA, teaching and research focuses on Cyber Security and Digital Forensics. Before joining BU, Lecturer at Staffordshire University and before that a security consultant working within VeriSign's PKI Trust Network. Holds more than 20 well referenced, esteemed journal and conference publications. Served as as PC and TC member in a number of reputable conferences (e.g. ESORICS, ARES, etc.) and journals (Computer & Security, Computer, Computers & Electrical Engineering, etc.). Member of IEEE and ACM.
His research falls in the area of cybersecurity and digital forensics. Currently, his work focuses on : (a) smartphone security and privacy, (b) IoT security, (c) Android memory forensics, (d) web security and online fraud prevention, and (e) intrusion detection.

TICKETS:
This event is free to attend for both members and non-members of OWASP and is open to anyone interested in application security and cyber security. Please note that you MUST RSVP to book your place and get a ticket to be admitted to the event by the building security - your name will be checked against the guest list.

Register to attend this event on Meetup.