Sécurité des applications : Les fondements

Sécurité des applications : Les fondements

OWASP Montréal est fier d’accueillir au Midi Conférence du mois de mars, Mme Tanya Janca, Co-Leader du chapitre OWASP Ottawa et spécialiste de la sécurité applicative au sein du Gouvernement fédéral.

La conférence « Les fondements de la sécurité des applications » sera présentée en anglais.

Session Description : Everyone has heard about the problem; everyone is “getting hacked”. But what is the answer? From scanning your code with a vulnerability scanner to red teaming exercises, developer education programs and bug bounties, this talk will take the audience through all the possibilities of an extensive application security program, with a detailed explanation of each part.

Bio : Tanya Janca is an application security evangelist, a web application penetration tester and vulnerability assessor, a secure code reviewer, an ethical hacker, the Co-Leader of the OWASP Ottawa chapter, and has been developing software since the late 90’s. She has worn many hats and done many things, including; Custom Apps, Ethical Hacking, COTS, Incident Response, Enterprise Architect, Project and People Management, and even Tech Support. She is currently helping the Government of Canada secure their web applications.

Merci à notre commanditaire principal de cet événement: Ubitrak!

09905cce02942fb076f958f4b69fd8f6?s=128

OWASP Montréal

March 20, 2017
Tweet

Transcript

  1. 8-12 May, 2017 Pushing Left, Like a Boss Tanya Janca

    Tanya.Janca@OWASP.org, OWASP Ottawa Chapter Co-Leader
  2. What is 'Pushing Left'?

  3. Current state: everyone is 'getting hacked'.

  4. Current state: we’re looking the wrong way.

  5. “Application Security is the art (or is that battle?) of

    making an application secure.” -- Tanya Janca AppSec: In Plain English
  6. Current state: Pen Testing.

  7. Current state: CIA

  8. Pushing Left, Like a Boss!

  9. Pushing Left: The Main Course

  10. Pushing Left: The Gravy

  11. Pushing Left: The Dessert

  12. Pushing Left: Testing Your Code

  13. Pushing Left: A Word of Caution

  14. Pushing Left: Threat Modeling

  15. Pushing Left: Reviewing Code

  16. Pushing Left: Writing Better Code

  17. OWASP: Your New BFF

  18. OWASP

  19. 8-12 May, 2017 Pushing Left, Like a Boss Tanya Janca

    Tanya.Janca@OWASP.org, OWASP Ottawa Chapter Co-Leader