Security SIG (reminder & update): "Secure Web Application Development and Testing", Thurs., Nov. 6, 2008, 9am-noon, Sibley Auditorium

From: Chris Ashley <cashley_at_berkeley.edu>
Date: Wed, 05 Nov 2008 09:09:47 -0800

The Campus Security SIG presents:
"Secure Web Application Development and Testing"

This workshop by Gabriel Lawrence, Director of IT Security at UC San
Diego, will cover the basics of secure Web application development and
testing. You will leave this talk with a good understanding of how to
apply these techniques to secure your own applications.

We will begin by examining the code for a simple Web application that
tracks "To-Do" items. We will then shift roles and attack this
application to expose the security issues common to many Web
applications. Finally, we will shift back to the Web application
developer's role and examine the techniques used to fix the
vulnerabilities found in the application. The code, techniques, and
fixes used in this talk are applicable to any development environment.

PLEASE NOTE: The previous announcement for this session said, "Attendees
are welcome to bring a laptop and follow along using a VM image of the
environment," however the VM image will now not be available until after
the talk.

No RSVP or reservation is required.

Thursday, November 6, 2008, 9:00am-noon
Sibley Auditorium in the Bechtel Engineering Center
http://www.berkeley.edu/map/maps/AB45.html

Bio:
Gabriel Lawrence is the Director of IT Security at UC San Diego.
Gabriel's career has focused on large-scale secure enterprise IT
projects for over the last fifteen years. At UCSD, his responsibilities
include identity management, network security, application security and
system security. He has designed security standards and implementations
that have drastically reduced the exposure of systems while maintaining
the open collaborative environment that is the hallmark of a research
institution.

------------------------------------------------------------------------
The following was automatically added to this message by the list server:
-
Webnet information is available at http://webnet.berkeley.edu. Email sent to this list is archived at http://ls.berkeley.edu/mail/webnet/ . This archive is open to the general public and browsable by search engine spiders, email-address harvesting robots, your bosses, etc.
Received on Wed Nov 05 2008 - 09:15:40 PST

This archive was generated by hypermail 2.2.0 : Wed Nov 05 2008 - 09:15:41 PST