OWASP-NL 'Secure Development' December 20, 2007

Program
17.30 - 18.30 Check-In (catering included)

18.30 – 19:00 Introduction (OWASP organization, projects, sponsor)

19.00 - 19.30 Practices of developing optimal security (dutch), Andre Post
This presentation highlights a number of current practices that lead to sub-optimal security, and suggests ways of avoiding these problems, focusing on the technical side of development.
André Post works for Fox-IT on a variety of projects including core product development, software architecting, security code reviews, and software project management.

19.30 – 19:45 Break

19:45 – 20:30 Problems of developing secure and correct applications (dutch), Erik Poll
This presentation will discuss different possibilities to improve software security. The problem of getting time and money available to be spend on security, not only for developing applications, but also for developing programming languages, will be raised.
Erik Poll is head of the Security of Systems (SoS) group at the Radboud University of Nijmegen. His research does focus on the security and correctness of software.

20.30 - 21.00 Protecting Web services and Web applications against security threats (dutch), Rix Groenboom
During this session, Rix will explore how to implement development and security best practices in the code to make sure that your webservices and applications perform solidly when they are being hacked or used in malicious ways.
Rix Groenboom supports fortune 2000 companies in field automated software error prevention and correction for Parasoft. His main area of expertise is in the use of formal languages for the specification, design and validation of software applications.

21.00 – 21:30 Discussion, questions and social

Registration
If you want to attend, please send an email to: [email protected].
Please register before December 14th, because of the necessary catering arrangements. The number of registries is limited to 50 due to the capacity of the location and will be handled in order of receipt.

All OWASP chapter meetings are free of charge and you don’t have to be an OWASP member to attend. There are never any vendor pitches or sales presentations at OWASP meetings.

NOTE TO CISSP's: OWASP Meetings count towards CPE Credits.

The announcement and full descriptions can be found here:
Media:Announcement_20_December.pdf
Media:Announcement_20_December_2.pdf

Official Website: http://www.owasp.org/index.php/Netherlands#Announcement_20_december:_Secure_Development