St. Louis OWASP - Intro to RASP, Homebrew 101 & Transitioning a Legacy App

Agenda:

6:00-6:30pm - Gather and mingle

(Food & Beverages provided courtesy of our sponsor)

6:30-7:15pm - The Map is not the Territory: Explorations in Runtime Application Self Protection

ABSTRACT: The general approach to securing software tends to work around the outer extents of an application. SAST focuses on the creation of secure code, and WAF technologies live at the front door. The focus on secure code going in, and bad traffic being filtered out - means that things are inevitably missed. RASP is a fundamental shift in position - moving security away from the outside and embedding it directly in the application itself. RASP can be used to secure legacy applications, third party applications, and net-new apps being pushed to production - without code changes. There will be a brief demo following the talk.

BIO: Timothy Plocinski is an industry veteran with 20+ years experience in writing, maintaining and testing secure code. As the Principal Security Architect for NXGN, Inc he is responsible for vetting and implementing cutting edge security solutions. Previously he has worked in the scientific engineering, e-retail and financial services industries.

Brief Break

7:20-7:45 - TurboTalk: HOMEBREWING 101

-Christian Powell, Happy Hop Brewery

Brief Break

7:50-8:25pm - Dealing with Legacy and how to move it into a new project.

Bio: Having worked in the Air Force as a Network Engineer. Tim transitioned to become a software engineer and is currently the Chief Engineer for a Software contract on Scott Air Force Base. The most recent major project has been a redesign of a legacy web application. Having graduated from McKendree University with Degree in Computer Science.

-Timothy Pickens, Chief Architect - SAIC

There will be an attendance prize raffle!

Event Sponsor:

https://a248.e.akamai.net/secure.meetupstatic.com/photos/event/2/a/6/3/600_454990851.jpeg

As always, please refer back to the OWASP Wiki Page for further details.

https://www.owasp.org/index.php/Saint_Louis

CPE Credit: This meeting will offer 2 hours of CPE Credit. Certificates presented at the end of the event.