The Colorado Springs Open Source Software Meetup Group Monthly Meetup

AGENDA
6:00 - 6:30 PM - Food, Drinks & Networking
6:30 - 6:35 PM - Announcements
6:35 - 7:15 PM - Basic Concepts
7:15 - 7:20 PM - Break
7:20 - 8:40 PM - Main Speaker
8:40 - 8:55 PM - Door Prize Drawings

ABSTRACT 1
JSON at Work: The JSON Ecosystem

JSON is more than just a simple replacement for XML when you make an AJAX call. JSON is becoming the backbone of any serious data interchange over the Internet. There are emerging standards and best practices that can be used to harness the energy and enthusiasm around JSON to build truly elegant, useful, and efficient applications. You’re already using JSON, and you may be thinking:

What else is there to talk about? What additional tools and standards are available, and why do they matter? Everything is great, so how would these tools and standards help?
In this presentation, we’ll cover:

The JSON Ecosystem

JSON Beginnings - language review, best practices, IDEs/tools, and the JSON Ecosystem Structuring JSON (JSON Schema) RESTing with JSON - modeling, prototyping, and testing with JSONPad, browser plugins, MockJax, MockJSON, Dyson Text Search with JSON –JSONPath, jsoniq, and JSONPointer Transforming JSON
Attendees will learn how to leverage JSON in new ways to enhance their architecture and development efforts.

ABSTRACT 2
RESTful Security at Work

You’ve been working with RESTful Web Services for a few years now, and you’d like to know if your services are secure. Maybe you're new to REST on your project. In any case, you have questions:

How do I design a secure service? Are there any guidelines and best practices? What is OWASP and how does it help? What is OAuth and how do I use it? How does RESTful Security tie to existing infrastructure?
In this presentation, we’ll cover:

RESTful Web Service Security Best Practices

OWASP Controlling Access – Authentication / Authorization Securing the Payload – Confidentiality & Integrity Protecting sensitive data Securing the URI Whitelisting Methods and Response Types Content Validation OAuth Overview Flow and Concepts
Security and Common RESTful APIs

Twitter LinkedIn Twilio Groupon
Security Tokens

JWT Custom
Security and Common Infrastructure

LDAP SSO (Single Sign-On) Open AM
We will look at a single business problem to secure a RESTful Web Service. Along the way, we'll walk through several well-known RESTful Web Service APIs. Attendees will gain a solid foundation in RESTful Web Service security.

SPEAKER BIOGRAPHY
Tom Marrs

Tom Marrs is a Technical Architect at Perficient, where he specializes in RESTful Web Services and Service-Oriented Architecture (SOA). He designs and implements mission-critical web and business applications using the latest SOA, Ruby on Rails, JSON, HTML5, JavaScript, Java/EE, and Open Source technologies.

Tom is the author of the JSON Refcard for DZone , and the upcoming book, JSON at Work for O’Reilly. Tom is also a speaker at the No Fluff Just Stuff (NFJS) and Great Indian Developer Summit (GIDS) conferences.

An active participant in the local technical community, Tom helps emcee at the HTML5 Denver User Group, helped found the Denver Open Source User Group (DOSUG), has served as President of the Denver Java Users Group (DJUG), and speaks at other local user groups.

OUR SPONSORS
Website Sponsor:HSC Careers (http://www.hshdcareers.com)
Food Sponsor: Systems Engineering Services (http://www.sesc.com)
Door Prize Sponsors:Jetbrains (http://www.jetbrains.com) - Software license (Several products to choose from)
Book Sponsor:OReilly Publishing (http://www.oreilly.com) - Technical books