AppSecUSA 2015 Blog (18)

News about OWASP’s Application Security USA 2015 (AppSecUSA)

Session videos from AppSecUSA 2015 in San Francisco

Written by

On YouTube. Special thanks to Jonathan and Amelia without which this video would not be available. Jonathan and Amelia work on the OWASP Media Project is an infrastructure project that gather, consolidate and promote OWASP content in video format on a central appealing hub. The first and main instance of the project is the YouTube channel that is linked above.

RiskIQ Wednesday Night Party

Written by

The Wednesday Night Party will be held from 6pm-8pm on September 23, 2015 at the Hyatt Regency hotel (same location as where the conference is being held).  Upon entering, guests will be given a ticket which can be exchanged for a complimentary beverage. Hors d’oeuvres will be served and a cash bar will be also be available. Our sponsor, RiskIQ, will have additional drink tickets.

OWASP Invests in Students – Attend AppSecUSA for $75

Written by

The OWASP AppSecUSA conference is excited to announce that we’re offering a limited number of tickets exclusively available to university students for the greatly discounted price of $75 (regular price $995).

The challenges of application security are being fought by today’s security experts. However, the next generation of security experts will come from students in University today. For the security industry to be successful there are many things we must do. One of these items is increasing the pool of talented professionals. We hope by encouraging students to attend AppSecUSA we can provide them an insight into the opportunities in the field and make a small contribution to future security engineers.

The OWASP AppSecUSA conference has numerous events that will be of interest to students. The deep technical knowledge within the conference sessions will appeal to all students, lightning trainings are also a great place to learn a new security skill. In addition there is a career fair on Thursday that is a great opportunity for students and working security professionals!


The Details

Who is eligible?

Any university student enrolled in a full time accredited university is eligible for a student ticket. Students must bring a current and valid student id and proof of enrollment to obtain their ticket at the event. OWASP does reserve the right to invalidate the student ticket purchase if proper student identification is not provided at time of ticket pickup

How do students purchase this discounted ticket?

Student tickets can be bought here: There are a limited number of student tickets available, so don’t wait if you’re a student and interested in attending!

What access is provided with the student ticket?

Students will get access to all sessions and events on Thursday, Sept 24 and Friday, Sept 25. However, the student ticket is not eligible for the Thursday evening dinner cruise event.

Are student tickets refundable?

Student tickets are not refundable.


4 Things You Will Find At AppSecUSA

Written by

Here are 4 things you will find at OWASP’s Application Conference September 22/25 in SF.

OWASP’s conference is focused on application security – focus means better talks. Here’s AppSecUSA’s mother-load of appsec talks.

2. FACEBOOK’S CSO AND TWITTER’S TISO – So many companies are based in SF. Come meet all their leading appsec executives at AppSecUSA.


3. DINNER CRUIS UNDER THE GOLDEN GATE. OWASP’s Application Security Conference has an incredible dinner cruise under the real Golden Gate Bridge. #yachtlife


 ESPN says the best burrito is in SF. Anna Maria Barry-Jester, FiveThirtyEight’s burrito correspondent, dubbed the rice-less carnitas burrito at La Taqueria “a technical marvel with a monumental first bite worthy of a national title.” There it is below in all it’s glory, come get one. 


Hope to see you at OWASP’s Application Security Conference September 22-25 in SF.

[This article is cross-posted from Linkedin.]

OWASP’s AMA Is On Reddit Today At 1:30PM Pacific

Written by

Screen Shot 2015-07-30 at 12.02.58 PM

You are invited to join OWASP global board members Michael Coates and Jim Manico for a Reddit AMA on Thursday, July 30 at 1:30pm PT/ 4:30pm ET. Michael and Jim will answer questions on cloud, app and mobile security.

Michael and Jim are hosting the AMA to discuss the latest challenges in application security and raise awareness for OWASP’s annual event, AppSec USA 2015, in San Francisco this year on September 22-25, 2015. AppSec USA is a four day conference where developers, security experts and technologist discuss cutting edge approaches to securing web applications. This years keynotes are from Facebook, the Department of Homeland Security and more.

Participate in the AMA here!

OWASP Global Board Member Reveals Secrets To Stay Safe Online

Written by

Screen Shot 2015-07-30 at 12.13.46 PM

Twitter Inc.’s trust and information security officer tells CIO Journal that companies make the mistake of worrying too much about elite types of attacks and not enough about following security basics. Those basics include knowing where the company’s data is, knowing where its machines are, patching them quickly and controlling who has access to information.

“You don’t need to worry about someone parachuting through your chimney when you don’t close the back door to your house,” said Michael Coates.

Get his top five tips to stay safe online and minimize their chances of becoming a victim of a cyberattack from the full article in the Wall Street Journal.

OWASP Expert Says Encryption Doesn’t Cut It

Written by

Screen Shot 2015-07-30 at 12.10.48 PM

Michael Coates, trust and information security officer at Twitter and global board member of the Open Web Application Security Project (OWASP), suggests encryption gets more credit than it deserves.

“Encryption is thrown around as the solution to prevent people from seeing your data,” said Coates in an interview at InformationWeek’s San Francisco office. “But if you dive into the dynamics of how data is stolen, you’ll find that encryption actually is not effective in those scenarios.”

To read more of the article go to InformationWeek.