OWASP London Chapter Meetup - Thursday 22nd November 2018 6:30pm

Event Information

Share this event

Date and Time

Location

Location

The Microsoft Reactor London

70 Wilson Street

London

EC2A 2DB

United Kingdom

View Map

Event description

Description

This event is kindly hosted and sponsored by Microsoft

Location: Microsoft Reactor, 70 Wilson Street, London, EC2A 2DB

Nearest Tubes: Old Street (7-minute walk), Moorgate (7-minute walk), Liverpool Street (7-minute walk)

Doors Open at 6:00pm for registration, pizza, drinks and networking. The talks start at 6:30pm (we start on time)

TALKS:

OWASP Introduction, Welcome and News - Sam Stepanyan, Sherif Mansour & Greg Fragkos

Welcome and a brief update on OWASP Projects, Events and Conferences from the OWASP London Chapter Leaders.

"We Are All Equifax: Data Behind DevSecOps" - Stefania Chaplin

In March 2017 hackers took three days to identify and exploit a new vulnerability in Equifax’s web applications. In the post-Equifax world, moving new business requirements (e.g., a non-vulnerable version of Struts2) into production in under three days might just be your new normal. Find out what the analysis of 17,000 applications reveals about the quality and security of software built with open source components. Join this session to better understand how DevSecOps teams are applying lessons from W. Edwards Deming (circa 1982), Malcolm Goldrath (circa 1984) and Gene Kim (circa 2013) to improve their ability to respond to new business requirements and cyber risks.  

"I know what you did last summer: New persistent tracking mechanisms used in the wild" - Dr. Alexios Mylonas

Web Storage, Indexed Database API and Web SQL Database allow web browsers to store information in the client in a much more advanced way compared to other techniques, such as HTTP Cookies. They were originally introduced with the goal of enhancing the capabilities of websites, however, they are often exploited as a way of tracking users across multiple sessions and websites. The presentation will be divided into two parts. First, it will quantify the usage of these three primitives in the context of user tracking. This is done by performing a large-scale analysis on the usage of these techniques in the wild.
The second part reviews the effectiveness of the removal of client-side storage data in modern browsers.

SPEAKERS:

Stefania Chaplin

Stefania Chaplin (@DevStefOps) is a Solutions Engineer at Sonatype. At Sonatype Stefania is responsible for helping customers understand and implement DevSecOps across the EMEA region. Stefania holds a BSc degree in Computer Science from the University of Manchester and has a backgroud as a Python/Java developer. She enjoys the challenge of improving the quality of software across different languages and ecosystems. Stefania is passionate about women in technology and is Founder and President of 'Women at Sonatype'. She has spoken about DevSecOps at many conferences and meetups across Europe including; JavaZone in Norway, JFokus in Sweden and Cloud Expo, Women of Silicon Roundabout and Women in DevOps in London.

Dr. Alexios Mylonas

Dr. Alexios Mylonas is the program leader of the BSc Forensic Computing and Security at Bournemouth University
and he is also a member of the BU Cybersecurity Research Group. His teaching and research focuses on Cyber Security and Digital Forensics. Before starting his academic career he was a security consultant working within VeriSign's PKI Trust Network. He holds a PhD degree in Information and Communication Security and a BSc (Hons) in Computer Science from the Athens University of Economics and Business, as well as an MSc in Information Security from Royal Holloway. Dr Mylonas holds more than 20 well referenced, esteemed journal and conference publications.

TICKETS:

This event is free to attend for both members and non-members of OWASP and is open to anyone interested in application security and cyber security. Please note that you MUST book your place and get a ticket to be admitted to the event by the building security - your name will be checked against the guest list.

Code of Conduct

We hope you enjoy the event, we care deeply about inclusivity and diversity so that OWASP is a comfortable and welcoming community for everyone. Please reach out to one of our chapter leaders if you have any feedback or would like to speak to us, we take these matters very seriously. You can find out more about our policies here: https://www.owasp.org/index.php/Governance/Conference_Policies


Date and Time

Location

The Microsoft Reactor London

70 Wilson Street

London

EC2A 2DB

United Kingdom

View Map

Save This Event

Event Saved