THIS EVENT IS 'SOLD OUT'.

PLEASE NOTE THAT THIS EVENT WILL BE LIVE-STREAMED AND VIDEO-RECORDED. PLEASE FOLLOW @OWASPLondon ON TWITTER, FACEBOOK AND SUBSCRIBE TO OWASPLondon YOUTUBE CHANNEL FOR UPDATES

This event is kindly sponsored and hosted by Capital One.

Location: Capital One, White Collar Factory, 1 Old Street Yard, London, EC1Y 8AF

Nearest Tube: Old Street (1-minute walk)

Doors Open at 6pm for registration, pizza, drinks and networking. The talks start at 6:30pm (we start on time)

Talks:

OWASP Introduction, Welcome and News - Sam Stepanyan, Sherif Mansour & Greg Fragkos

Welcome and a brief update on OWASP Projects & Events from the OWASP London Chapter Leaders

Application Security Strategy and AST Lifecycle - Ilia Kolochenko

In the era of DevSecOps, CI/CD and Agile development many companies still become victims of disastrous data breaches caused by insecure applications. The presentation explains an application security strategy to reduce costs and assure holistic Application Security Testing (AST) of corporate web and mobile applications. The talk will also encompass application inventory and discovery, vulnerability correlation, virtual patching and practical usage of Machine Learning in application security.

Universal Second Factor authentication, or why 2FA today is wubalubadubdub? - Yuriy Ackermann

Today main 2FA solutions are OTP(TOTP, HOTP), RSA keys and SMS. All these solutions lack UX, security and privacy, easy to phish, and mostly not standardised. In this talk we will introduce FIDO U2F protocol, talk about its key strength, overview the protocol, discover how it works, how it mitigates attacks, what solutions there are on the market and who uses it, and for desert do some demos.

Speakers:

Ilia Kolochenko
Ilia Kolochenko is a Swiss application security expert and entrepreneur. Starting his career as a penetration tester, he founded High-Tech Bridge to incarnate his application security ideas. Ilia invented the concept of hybrid security assessment for web applications that was globally launched in 2014 under ImmuniWeb® brand. Afterwards, Ilia designed and managed implementation of numerous machine learning technologies for ImmuniWeb.

Ilia is a contributing writer for CSO magazine, SC Magazine UK, Dark Reading and Forbes, mainly writing about cybercrime and application security. He is also a member of the Forbes Technology Council. In 2016 he received "Forum des 100" award - 12th annual award for one hundred entrepreneurs, politicians and personalities who build the French speaking part of Switzerland. In 2017 Ilia was named a "Thought Leader" by SC Media Reboot Awards.

Yuriy Ackermann
Yuriy is a Senior Security Certification Engineer from New Zealand, working at FIDO Alliance. He loves maths, crypto, poetry, tea and port, portwine and generally enjoys ports.

TICKETS

This event is free to attend for both members and non-members of OWASP and is open to anyone interested in web application and cyber security. Please note that spaces are limited and you MUST book your place and get a ticket to be admitted to the event by the building security.