ITS Cybersecurity: Securing the Transportation App-Sec Space

NOTE: We will email attendees the address.

The following will be in effect and mandatory for this meeting venue.

• RSVPs will close at 11:59 PM PT on Tuesday, October 21st, so kindly submit your RSVP by then.
• Security mandates that RSVPs include your full name (in Meetup settings) and that you bring your ID, which will be checked at the entrance to match your RSVP.
• If your first and last name do not appear in our admin view, we will contact you.
• Alternatively, feel free to reach out directly or email us at orange-county-leaders@owasp.org to provide that information or any questions you may have regarding the event.

Abstract
As transportation systems become increasingly connected, securing the software that manages roadside and traffic infrastructure has never been more critical. This session explores how application security principles can be applied to Intelligent Transportation Systems (ITS) through the development of a mobile app that enables vendors and agencies to define and manage secure configuration settings for devices such as Dynamic Message Signs (DMS), Traffic Signal Controllers, and Roadside Units (RSUs). The architecture leverages cloud services, mobile frameworks, and embedded databases to deliver a scalable and reliable platform. The discussion highlights design considerations, threat surfaces, and implementation lessons learned for applying modern AppSec practices in the transportation domain.