THIS MONTH: Defense Against the Dark Arts
In 2017, the Open Web Application Security Project (www.owasp.org) invited security experts from across the world to a summit to analyze, discuss, and finalize the creation of the latest edition of the OWASP top 10 most critical web application security risks. This threat model represents a broad consensus about the state of web application security and is, in part, created through analysis of publicly known breaches since four years ago in 2013.
I will be going over the world of web security, what's new and what's changed in the top-10 list, and some basic strategies on how to mitigate or eliminate those risks to your customers' data. This will all be with a focus on what ways DotNet is vulnerable to, or mitigates and responds to, these threats.
OUR SPEAKER: Jason Myers, also known as @syliddar wherever usernames are a thing, mostly stays out of trouble during the day by writing and maintaining Dot-Net applications for a local niche software company. As a former Marine, he got his start in development working at the Navy Base in Millington, maintaining applications for the Naval Personnel Command. It was there, somewhere in the hundreds of cumulative hours of required training on security, that he developed an enthusiasm for application security that continues to influence him through his career.
He lives at home alone with two cats (one feral rescue, one adopted), and his wife (also feral), and can typically be found in the #memtech Slack, MemTech Lunches, Coworking Day events, and various User Group meetings. Failing that, any good bar with craft beer on tap or a vegetarian-friendly menu.
As usual, pizza will be served about 6:00 PM and the meeting will start at 6:30 PM. If you plan to attend, please RSVP so we know how much pizza to get, and who to contact if there are any changes that need to be communicated.
If needed, the door and elevator code will be 1242#.