This event has ended

OWASP France - Meeting de Mars

OWASP France

Wednesday, March 28, 2012 from 5:30 PM to 7:30 PM (CEST)

Paris, France

OWASP France - Meeting de Mars

Ticket Information

Type Remaining End     Quantity
Gratuit Sold Out Ended Free  
Gratuits dernière minute Sold Out Ended Free  

Share OWASP France - Meeting de Mars

Event Details

Bonjour,

 

Le meeting du premier trimestre aura lieu le 28/03 à partir de 18h, ouverture des portes à 17h30.

Titre de la présentation (en anglais) : Web Application Access Control Design Excellence.


Abstract: Access Control is a necessary security control at almost every layer within a web application. This talk will discuss several of the key access control anti-patterns commonly found during website security audits. These access control anti-patterns include hard-coded security policies, lack of horizontal access control, and "fail open" access control mechanisms. In reviewing these and other access control problems, we will discuss and design a positive access control mechanism that is data contextual, activity based, configurable, flexible, and deny-by-default - among other positive design attributes that make up a robust web-based access-control mechanism.


Speaker : Jim Manico 

Jim Manico is the VP of Security Architecture at WhiteHat Security. Jim has been a web application developer since 1997. He has also been an active member of OWASP since 2008 supporting projects that help developers write secure code.



Attention, le nombre de places est limité si vous voulez être assis sur un siège...

Have questions about OWASP France - Meeting de Mars? Contact OWASP France

When & Where



Groupe Y Audit
69 Rue de la Boëtie
75008 Paris
France

Wednesday, March 28, 2012 from 5:30 PM to 7:30 PM (CEST)


  Add to my calendar

Please log in or sign up

In order to purchase these tickets in installments, you'll need an Eventbrite account. Log in or sign up for a free account to continue.