Security SIG: "Secure Web Application Development and Testing", Thurs., Nov. 6, 2008, 9am-noon, Sibley Auditorium from Chris Ashley on 2008-10-16 (Webnet Mail Archive)

From: Chris Ashley <cashley_at_berkeley.edu>
Date: Thu, 16 Oct 2008 14:22:05 -0700

The Campus Security SIG presents:
"Secure Web Application Development and Testing"

This workshop by Gabriel Lawrence, Director of IT Security at UC San
Diego, will cover the basics of secure Web application development and
testing. You will leave this talk with a good understanding of how to
apply these techniques to secure your own applications. Attendees are
welcome to bring a laptop and follow along using a VM image of the
environment.

We will begin by examining the code for a simple Web application that
tracks "To-Do" items. We will then shift roles and attack this
application to expose the security issues common to many Web
applications. Finally, we will shift back to the Web application
developer's role and examine the techniques used to fix the
vulnerabilities found in the application. The code, techniques, and
fixes used in this talk are applicable to any development environment.

Thursday, November 6, 2008, 9:00am-noon
Sibley Auditorium in the Bechtel Engineering Center
http://www.berkeley.edu/map/maps/AB45.html

Bio:
Gabriel Lawrence is the Director of IT Security at UC San Diego.
Gabriel's career has focused on large-scale secure enterprise IT
projects for over the last fifteen years. At UCSD, his responsibilities
include identity management, network security, application security and
system security. He has designed security standards and implementations
that have drastically reduced the exposure of systems while maintaining
the open collaborative environment that is the hallmark of a research
institution.

------------------------------------------------------------------------
The following was automatically added to this message by the list server:
-
Webnet information is available at http://webnet.berkeley.edu. Email sent to this list is archived at http://ls.berkeley.edu/mail/webnet/ . This archive is open to the general public and browsable by search engine spiders, email-address harvesting robots, your bosses, etc.
Received on Thu Oct 16 2008 - 14:23:01 PDT

This archive was generated by hypermail 2.2.0 : Thu Oct 16 2008 - 14:23:03 PDT