Security Mythbusters: The Truth Behind Common Application Security Myths March 25, 2009

An SD Times Webinar
Wednesday, March 25, 2009, 1:00 pm Eastern, 10:00 am Pacific

More and more of today's development organizations are implementing serious software security initiatives. And it's easy to understand why. With the number and cost of security breaches rising exponentially, they can't afford not to. Additionally, many industries must comply with legislated security standards and requirements such as Sarbanes-Oxley, PCI DSS, and others. But the prominence of software security in the news and in our daily lives has given rise to a number of security myths that can prevent security auditing teams and software development teams from implementing effective security solutions.

In this valuable and informative webinar, Hugh Thompson, noted software security expert and chief strategist at People Security, and Ben Chelf, co-founder and CTO of Coverity Inc., will discuss common application security myths, their impact on organizations' ability to deliver high-integrity software, and the role of source code scanning in battling the business risks posed by application vulnerabilities.

Who should attend:

♦ CSOs and security auditors looking to better align with development teams.

♦ Developers interested in building security into code early.

♦ Development managers responsible for ensuring the delivery of high-integrity software products.

Speaker: Dr. Hugh Thompson:
Dr. Thompson is a world-renowned expert in application security. He has co-authored or edited 12 books including, How to Break Software Security: Effective Techniques for Security Testing (with Dr. James Whittaker), and most recently, The Software Vulnerability Guide. As the chair of the Application Security Industry Consortium Inc. (AppSIC), he leads an association of industry technologists and leaders to help establish and define cross-industry application security guidance and metrics. Thompson continually lends his perspective and expertise on the trends driving security testing, including vulnerability detection and management, secure software development, security ROI, and threat modeling. He is the principal investigator on several U.S. Government research grants and has authored more than 60 academic and industrial publications on software security. Thompson earned his Ph.D. in Applied Mathematics from Florida Institute of Technology.

Ben Chelf: Co-founder, Coverity:
Before he co-founded Coverity, Ben Chelf was a founding member of the Stanford Computer Science Laboratory team that architected and developed Coverity's underlying technology. He is one of the world's leading experts on the commercial use of static source code analysis. In his role at Coverity, Chelf works with organizations such as the U.S. Department of Homeland Security, Cisco, Symantec, and IBM to improve the security and quality of software globally. He holds an M.S. and B.S. in Computer Science from Stanford University. Ben frequently provides expert insight into software security and quality to the press, public audiences, and in published writings.

Moderator: David Worthington, Senior Editor, SD Times:
David Worthington is a Senior Editor at SD Times and has been covering technology in print and online for the past seven years.

Official Website: https://event.on24.com/eventRegistration/EventLobbyServlet?target=registration.jsp&eventid=136973&sessionid=1&key=F7EC769FAF8C8EE4B2CAD4CC52C30933&partnerref=coverity1&sourcepage=register