OWASP Monthly Meeting - August 27, 2014
Hosted by OWASP Los Angeles
Details
Los Angeles OWASP Chapter Board WINS Best Chapter Leader (https://www.owasp.org/index.php/WASPY_Awards_2013)!
Join OWASP today and become a member of our community.
Opening Talk: Take-aways from Blackhat (https://www.owasp.org/index.php/WASPY_Awards_2013)
Speaker: Stu Schwartz (http://meetup.com)
Main Speaker: Jim Manico (https://www.owasp.org/index.php/WASPY_Awards_2013)
Jim Manico is an author and educator of developer security awareness trainings. He is also a frequent speaker on secure software practices and is a member of the JavaOne "rockstar hall of fame". He has a 17 year history building software as a developer and architect. Jim is also one of the members of the Global Board of Directors for the OWASP foundation where he helps drive the strategic vision for the organization. He manages and participates in several OWASP projects, including the OWASP cheat sheet series and several secure coding projects. Jim is currently working on a book with McGraw-Hill and Oracle-Press on Java Security. For more information, see http://www.linkedin.com/in/jmanico.
MAIN Topic: Securing Complex Forms (https://www.owasp.org/index.php/WASPY_Awards_2013)
The heart of how users interact with a web application is the HTML form submission. A great deal of very sensitive data flows over HTML forms. Securing web form submissions is critical for the construction of a secure web application. Multi-form workflows make securing form submissions even more complicated! This presentation will take you on a journey as untrusted data flows from a form submission into the many layers of a secure web application.
• Review some of the basic threats against web forms
• Learn some of the most important defense categories for building secure web forms
• Discuss some of the more complex aspects to form construction, such as workflow
Thanks to our Sponsor: WinMagic (http://www.winmagic.com/)
WinMagic makes it easy to secure data! Thousands of the most security conscious enterprises and government organizations around the world depend on SecureDoc to minimize business risks, meet privacy and regulatory compliance requirements, and protect valuable information assets against unauthorized access. With a full complement of professional and customer services, WinMagic supports over five million SecureDoc users in more than 80 countries.
