OWASP World Training Tour 2017 (TOKYO) | registration

Sat, 30 Sep 2017 10:30 - 18:30

Registration is closed

Get invited to future events

Free admission
Only for 6 Hours Training


OWASP World Training Tour



OWASP is committed to contributing to improvements in the quality of the world's software security. We advocate a multifaceted approach focusing on people, processes and technology, since the most effective approaches to application security include improvements in all of these areas. As part of our efforts to promote this philosophy, OWASP will be providing basic AppSec training to developers in hopes of including security throughout the entire SDLC.

In 2017, OWASP will be holding training events in the cities of Tokyo, Boston and Tel Aviv.

In accordance with the strategic goals for 2017, each of these one-day training events will target an audience of 500 developers and be delivered by Professional Trainers selected by OWASP through the Call For Trainers process.

Basic AppSec Training for Developers - Content

The goal of this training event is to provide an overview of core application security concepts to developers including but not limited to the following topics. Rather than focusing on the breadth of topics covered, instructors are expected to focus on the practicality of the training content.

General Security Principles as they related to Application Security

Least Privilege, Defense in Depth, Reducing Attack Surface, Failing Securely / Closed, Using Secure Defaults, Limiting / Containing Potential Harm

Application Security specific topics

Input Validation and Encoding, Parameterized Queries to prevent SQLi, Authentication and Authorization, Protecting Sensitive Data, TLS and Cryptography, Session Management, Logging, Audit and Intrusion Detection, Error Handling and Exception Management, Application Inventory / Knowing what you have, Client side javascript misuse, data leakage, HTML5

Consideration will also be given to how OWASP projects can be used

OWASP Top 10 Proactive Controls, OWASP Cheat Sheet Series, OWASP ASVS, OWASP OpenSAMM, OWASP Top 10, OWASP ZAP, OWASP Dependency Check, OWASP AppSensor, OWASP ESAPI, etc.

We hope that this training day can act as a trigger to get as many people as possible related to software technologies started on the path to secure system development and operation.

OWT Tokyo 2017 Executive Commitee:owt2017 [at] owaspjapan [dot] org

About this community



Join community