Presentation is loading. Please wait.

Presentation is loading. Please wait.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Published byIrea Butler Modified over 11 years ago

Similar presentations

Presentation on theme: "Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP."— Presentation transcript:

1 Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP Foundation OWASP EU09 Poland http://www.owasp.org OWASP State of the Union Dave Wichers Sebastien Deleersnyder Dinis Cruz Foundation Board

2 OWASP AppSecEU09 Poland Agenda OWASP ? State of the union Season of Code 2009 OWASP near you ! 2

3 OWASP AppSecEU09 Poland Agenda OWASP ? State of the union Season of Code 2009 OWASP near you ! 3

4 OWASP AppSecEU09 Poland 4 OWASP Open Web Application Security Project started 2001, OWASP Foundation Inc. established 2004 Participation in OWASP is free and open to all International not-for-profit charitable organization funded primarily by volunteers time, OWASP Memberships ($50 Individuals, $5k Supporters), and OWASP Conference fees Website: 6,464 registered users, 21,552,771 page views, and 55,941 page edits, 10k members on mailing lists

5 OWASP AppSecEU09 Poland What Is Unique about OWASP? Everything we do is free and open…

6 OWASP AppSecEU09 Poland 6 OWASP Vision & Mission Vision: a software market that produces code thats secure enough to rely on. Mission (to achieve that vision): to make security visible (or transparent) so that software buyers and sellers are on equal footing and market forces can work.

7 OWASP AppSecEU09 Poland 7 7 www.owasp.org

8 OWASP AppSecEU09 Poland OWASP Principles Free & Open Governed by rough consensus & running code Abide by a code of ethics: http://www.owasp.org/index.php/About_OWASP http://www.owasp.org/index.php/About_OWASP Not-for-profit Not driven by commercial interests Risk based approach 8

9 OWASP AppSecEU09 Poland OWASP Resources and Community Documentation (Wiki and Books) Code Review, Testing, Building, Legal, more … Code Projects Defensive, Offensive (Test tools), Education, Process, more … Chapters Over 150 and growing Conferences Major and minor events all around the world

10 OWASP AppSecEU09 Poland OWASP Foundation - Structure Volunteer Board (5) Jeff Williams, Dave Wichers, Dinis Cruz, Tom Brennan, Sebastien Deleersnyder Volunteer Global Committees (6) (25+) Members 150+ Local Chapters120+ Projects OWASP Employees (5)

11 OWASP AppSecEU09 Poland 150+ chapters 11

12 OWASP AppSecEU09 Poland OWASP Conferences (2008-2009) 12 NYC Sep 2008 NYC Sep 2008 DC Mar & Nov 2009 DC Mar & Nov 2009 Brussels May 2008 Brussels May 2008 Poland May 2009 Poland May 2009 Taiwan Oct 2008 Taiwan Oct 2008 Portugal Summit Nov 2008 Portugal Summit Nov 2008 Israel Sep 2008/09 Israel Sep 2008/09 India Aug 2008 India Aug 2008 Gold Coast Feb 2008/09 Gold Coast Feb 2008/09 Minnesota Oct 2008 Minnesota Oct 2008 Denver Mar 2009 Denver Mar 2009 Germany Nov 2008 Germany Nov 2008 Ireland Sep 2009 Sweden May 2010 Sweden May 2010 New Zealand July 2009 New Zealand July 2009 Brazil Oct 2009 Brazil Oct 2009

13 OWASP AppSecEU09 Poland Mailing Lists 100+ Mailing Lists Local Chapters Projects Regional/Global Committees LinkedIn Group too… 2700+ members 13

14 OWASP AppSecEU09 Poland 2009 Organization Supporters

15 OWASP AppSecEU09 Poland 2009 Educational Supporters 15

16 OWASP AppSecEU09 Poland Agenda OWASP ? State of the union Season of Code 2009 OWASP near you ! 16

17 OWASP AppSecEU09 Poland Summit Portugal - Nov 2008 First time OWASP community got together 80+ OWASP leaders under the same roof 20+ countries 12h/day workload (& lots of beer consumed) 17

18 OWASP AppSecEU09 Poland Summit Portugal Outcomes: New Free Tools and Guidance (from SoC08) New Global Committee Structure Education, Chapter, Conferences, Industry, Projects, Membership (who will create the action plan for 2009) New Outreach Program technology vendors, framework providers, and standards bodies new program to provide free one- day seminars at universities and developer conferences worldwide 18

19 OWASP AppSecEU09 Poland Global Committees – Established late 2008 http://www.owasp.org/index.php/About_OWASP

20 OWASP AppSecEU09 Poland Projects Committee 1.Organizing the next OWASP Season of Code 2.Drafting proposals for standardization and organization of OWASP Projects and Releases 3.Establishing a baseline assessment of all OWASP Projects and Releases 4.Survey all OWASP projects More about projects tomorrow! 20

21 OWASP AppSecEU09 Poland Industry Committee Start outreach to critical infrastructures worldwide such as: electricity generation, transmission and distribution; gas production, transport and distribution; oil and oil products production, transport and distribution; telecommunication; water supply (drinking water, waste water/sewage, stemming of surface water (e.g. dikes and sluices)); agriculture, food production and distribution; heating (e.g. natural gas, fuel oil, district heating); public health (hospitals, ambulances); transportation systems (fuel supply, railway network, airports, harbors, inland shipping); financial services (banking, clearing); security services (police, military). 21

22 OWASP AppSecEU09 Poland Industry - Accomplishments 1.Has submitted RFC feedback for both British and US/NIST 800-53 rev 3 standards 2. Have been promoting supporter membership to raise awareness in industry verticals 3. Have established working relationships with ISSA & ISACA to assist with industry focused outreach and international insight 22

23 OWASP AppSecEU09 Poland Membership Committee Increase individual membership 100% in 18 months (Individuals)Individuals Increase organizational supporters 100% in 18 months (Supporters)Supporters Increase university supporters 100% in 18 months 1. Has created and launched a new membership model 2. Has created and launched Membership drive to support our efforts 3. Has created video to promote/explain 23

24 OWASP AppSecEU09 Poland 24 Education Committee The primary purpose of the Global Education Committee is: to work with the OWASP Education Project to provide educational materials for both internal and external users, develop liaisons with educational institutions worldwide.

25 OWASP AppSecEU09 Poland Current work Categorize (Organization) of educational materials Train the trainers (Teach the teachers) Create an online assessment and training portal Brazil – SoC09? OWASP Boot Camp Project OWASP CTF event NY CTF based - SoC09 proposal - "OWASP Challenge Framework" Speakers Bureau Project Marketing efforts Internationalization of the training materials Education material (Projects) Academic Educational Services 25

26 OWASP AppSecEU09 Poland Chapter Committee To provide the support required at the local level to accomplish the overall mission and goals of the association Define chapter and role in OWASP Identify the health of Chapters - number of Chapters Vs active chapters Define clear and transparent process of chapter Governance Develop Chapter Handbook 26

27 OWASP AppSecEU09 Poland Progress 27

28 OWASP AppSecEU09 Poland Agenda OWASP ? State of the union Season of Code 2009 OWASP near you ! 28

29 OWASP AppSecEU09 Poland SoC 09 (OWASP Season of Code) 4th edition of OWASP Grant program Pre-Lauched today here in Poland (see http://www.owasp.org/index.php/OWASP_Season_of_Code_2009)http://www.owasp.org/index.php/OWASP_Season_of_Code_2009 Proposed focus on 4 areas: OWASP Education Pack - managed by: Education Committee Enterprise usability of OWASP projects - managed by: Projects Committee) Additional Sources of Funding - managed by Membership & Chapters Committee) Marketing & PR - managed by Industry & Conferences Committee Initial budget of 90,000 USD 29

30 OWASP AppSecEU09 Poland Agenda OWASP ? State of the union Season of Code 2009 OWASP near you ! 30

31 OWASP AppSecEU09 Poland 31 OWASP Podcast Series Launched Nov 21, 2008 Episode 19 will be released May 13 13 Interviews, 2 Roundtables, 4 News Commentary Programs and counting Produced and Hosted by Jim Manico of Aspect Security News team consists of Arshan Dabirsiaghi, Andre Gironda and Jeff Williams http://www.owasp.org/index.php/OWASP_Podcast

32 OWASP AppSecEU09 Poland www.owasp.tv 56 videos 40+ hrs 32

33 OWASP AppSecEU09 Poland Local Chapter Resources Local Meetings Regional Mailing List Presentations Forum for discussion Meet fellow InfoSec professionals Create (Web)AppSec awareness Local projects JOBS = http://www.owasp.org/index.php/OWASP_Jobs

34 OWASP AppSecEU09 Poland Upcoming Conferences OWASP New Zealand Day 2009 - New Zealand July 13th - 2 track conference, University of Auckland OWASP AppSec Ireland 2009 September 10th Conference at Trinity College in Dublin OWASP AppSec Brazil 2009 October 27th-30th Conference and tutorials at Câmara dos Deputados OWASP AppSec US 2009 – November Washington, D.C. 34

35 OWASP AppSecEU09 Poland 35 TTD Visit www.owasp.orgwww.owasp.org Find your local chapter / conferences Listen to PodCasts Watch Videos Read Materials Post your (Web)AppSec questions Spread the word, invite peers Contribute to discussions Become member!

36 OWASP AppSecEU09 Poland 36 Get Involved WWW.OWASP.ORG

Download ppt "Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP."

Similar presentations

WPA-WHO Global Survey of Psychiatrists' Attitudes Towards Mental Disorders Classification Results for the Spanish Society of Psychiatry.

WPA-WHO Global Survey of Psychiatrists' Attitudes Towards Mental Disorders Classification Results for the Spanish Society of Psychiatry.
1 Nia Sutton Becta Total Cost of Ownership of ICT in schools.

1 Nia Sutton Becta Total Cost of Ownership of ICT in schools.
Copyright © 2003 Pearson Education, Inc. Slide 1 Computer Systems Organization & Architecture Chapters 8-12 John D. Carpinelli.

Copyright © 2003 Pearson Education, Inc. Slide 1 Computer Systems Organization & Architecture Chapters 8-12 John D. Carpinelli.
Chapter 1 The Study of Body Function Image PowerPoint

Chapter 1 The Study of Body Function Image PowerPoint
Copyright © 2011, Elsevier Inc. All rights reserved. Chapter 6 Author: Julia Richards and R. Scott Hawley.

Copyright © 2011, Elsevier Inc. All rights reserved. Chapter 6 Author: Julia Richards and R. Scott Hawley.
Author: Julia Richards and R. Scott Hawley

Author: Julia Richards and R. Scott Hawley
1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.

1 Copyright © 2013 Elsevier Inc. All rights reserved. Appendix 01.
ASTM Member Website Tools Jeff Adkins Diane Trinsey 1 September 2012 Officers Training Workshop.

ASTM Member Website Tools Jeff Adkins Diane Trinsey 1 September 2012 Officers Training Workshop.
September 2013 ASTM Officers Training Workshop September 2013 ASTM Officers Training Workshop ASTM Member Website Tools September 2013 ASTM Officers Training.

September 2013 ASTM Officers Training Workshop September 2013 ASTM Officers Training Workshop ASTM Member Website Tools September 2013 ASTM Officers Training.
International Telecommunication Union Committed to connecting the world 1 ITU-T Academia and the future Malcolm Johnson Director of the Telecommunication.

International Telecommunication Union Committed to connecting the world 1 ITU-T Academia and the future Malcolm Johnson Director of the Telecommunication.
1 RA I Sub-Regional Training Seminar on CLIMAT&CLIMAT TEMP Reporting Casablanca, Morocco, 20 – 22 December 2005 Status of observing programmes in RA I.

1 RA I Sub-Regional Training Seminar on CLIMAT&CLIMAT TEMP Reporting Casablanca, Morocco, 20 – 22 December 2005 Status of observing programmes in RA I.
FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.

FACTORING ax2 + bx + c Think “unfoil” Work down, Show all steps.
1 Click here to End Presentation Software: Installation and Updates Internet Download CD release NACIS Updates.

1 Click here to End Presentation Software: Installation and Updates Internet Download CD release NACIS Updates.
McGraw-Hill/Irwin Copyright © 2013 by The McGraw-Hill Companies, Inc

McGraw-Hill/Irwin Copyright © 2013 by The McGraw-Hill Companies, Inc
Copyright © 2006 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
Internet Governance Community Use Slide Deck Courtesy of ARIN May 2014.

Internet Governance Community Use Slide Deck Courtesy of ARIN May 2014.
1 September 27 and October 1, 2013. Introduction Jenny Hartfelder– Speaker, Rocky Mountain WEA Janet Hurley Cann– Speaker-Elect, WEA of South Carolina.

1 September 27 and October 1, Introduction Jenny Hartfelder– Speaker, Rocky Mountain WEA Janet Hurley Cann– Speaker-Elect, WEA of South Carolina.
REVIEW: Arthropod ID. 1. Name the subphylum. 2. Name the subphylum. 3. Name the order.

REVIEW: Arthropod ID. 1. Name the subphylum. 2. Name the subphylum. 3. Name the order.
PP Test Review Sections 6-1 to 6-6

PP Test Review Sections 6-1 to 6-6
EU Market Situation for Eggs and Poultry Management Committee 21 June 2012.

EU Market Situation for Eggs and Poultry Management Committee 21 June 2012.

Similar presentations

Ads by Google