Tuesday, August 19, 2014
Monday, August 18, 2014
(From Daniel Cuthbert)
It gives me immense pleasure to finally release version 2 of the OWASP Application Security Verification Standard for all to enjoy. The community feedback on this has been overwhelming and it's great to see so many of you investing time and effort into what Sahba and I feel is an incredibly important OWASP project.
As with all standards, I'm sure this will be made better as people use it and we welcome the additions and feedback.
It can be downloaded from the OWASP ASVS page at https://www.owasp.org/index.php/Category:OWASP_Application_Security_Verification_Standard_Project
Again, a huge thanks to all the contributors who helped shape version 2 and I cannot wait to hear how this is being used.
Friday, August 15, 2014
OWASP AppSec USA 2014 Adds Leading Global Experts to List of Speakers
Are you registered for the upcoming OWASP conference? We are excited to be getting closer to the OWASP AppSec USA event and we have now announced our roster of keynote speakers.
The premier software security conference for developers, auditors, risk managers, technologists and entrepreneurs will take place at the Denver Marriott City Center, Sept. 16-19. Below are the keynotes:
• Bruce Schneier, CIO, Co3 Systems, Inc. is an American cryptographer, computer security and privacy specialist, and writer. He is the author of several books on general security topics, computer security and cryptography. (Sept. 18, 8:00 a.m.)
• Renee Guttmann, vice president, Accuvant Office of the CISO is an accomplished global information security and privacy executive with a proven track record of establishing internationally recognized information security programs for Fortune 500 companies. She is the former CISO of Coca-Cola. (Sept. 18, 4:30 p.m.)
• Gary McGraw, CTO, Cigital is a recognized authority on software security, an author of eight books on software security topics and is an editor of a software security series as well as several peer-reviewed papers. (Sept. 19, 8:00 a.m.)
• In addition to keynote sessions, AppSec USA will offer several interactive events. For the first time ever, the conference will feature “Code Brew,” a home-brewing contest judged by brewers from some of Colorado’s top craft breweries, and two full days of training featuring five tracks including developers, builders, breakers, defenders, and a hands on skills lab.
To find out more about OWASP AppSec USA 2014, participate in “Code Brew”, or REGISTER for the conference, please visit www.2014.appsecusa.org/2014/
Wednesday, August 13, 2014
Maa chi, maa ha, maa jo, OWASP Community, eti sen?
The OWASP Ghana Cybersecurity Conference will take place in Accra, Ghana this December for the second year in a row! The event dates are December 10 - 11, 2014. It amazes me that there are so many places on planet earth where OWASP is active in some way.
If you are interested in speaking at this conference, please contact Theo Sagoe at theodore.sagoe at owasp.org or visit https://www.owasp.org/index.php/Ghana#tab=About for more information.
I was lucky enough to be one of the speakers at the first OWASP Ghana conference in west Africa. It was quite an amazing experience. It's rare where you get the chance to attend a security conference in the morning and do some seine beach fishing with a large team of locals early that evening. They fish the whole ocean at once, it was quite amazing. :)
I hope you consider attending or speaking! Please contact theodore.sagoe at owasp.org if interested.
Me daa si,
- Jim Manico
Just a reminder that this FRIDAY, AUGUST 15 is the DEADLINE to submit your candidacy for the 2014 OWASP Global Board Of Directors.
For Information including eligibility requirements, primary responsibilities, election timeline and other important information, please visit our election page.