64496 normal 1503895573 63959 normal 1502854221 owasp wt banners wiki wiki %28corrected%29

OWASP World Training Tour 2017 (TOKYO Satellites) | registration

Sat, 30 Sep 2017 10:30 - 18:30

Tokyo region satellites

MSK Lynden 結城まお aetos intelli_vegita 西山賢志郎 Masaki Murakami Hiroshi Kusaka 蟹江直朗 中村心悟 Genziro Yanagida Ken Ogata Hiroyuki Kaiyama Kazuya Kitahara Vincent Fango 鐘慧盈 + 278 more participants
Register
There is room for 56 more people
Satellite TOKYO-A: KASUMIGASEKI-BLDG 33F (EY Seminar room)
Free
Registration closes 28 Sep 10:30
Satellite TOKYO-B: TOKYO NIHONBASHI TOWER 27F CYBOZU TOKYO OFFICE
Free
Closed
サテライトTOKYO-C: JR新宿ミライナタワー 5F[受付] (LINE株式会社)
Free
Registration closes 28 Sep 10:30
Only for 6 Hours Training at one of the satellite venue

OWASP World Training Tour

URL: https://www.owasp.org/index.php/2017_OWASP_World_Tour_Tokyo

OWASP is committed to contributing to improvements in the quality of the world's software security. We advocate a multifaceted approach focusing on people, processes and technology, since the most effective approaches to application security include improvements in all of these areas. As part of our efforts to promote this philosophy, OWASP will be providing basic AppSec training to developers in hopes of including security throughout the entire SDLC.

In 2017, OWASP will be holding training events in the cities of Tokyo, Boston and Tel Aviv.

In accordance with the strategic goals for 2017, each of these one-day training events will target an audience of 500 developers and be delivered by Professional Trainers selected by OWASP through the Call For Trainers process.

Basic AppSec Training for Developers - Content

The goal of this training event is to provide an overview of core application security concepts to developers including but not limited to the following topics. Rather than focusing on the breadth of topics covered, instructors are expected to focus on the practicality of the training content.

General Security Principles as they related to Application Security

Least Privilege, Defense in Depth, Reducing Attack Surface, Failing Securely / Closed, Using Secure Defaults, Limiting / Containing Potential Harm

Application Security specific topics

Input Validation and Encoding, Parameterized Queries to prevent SQLi, Authentication and Authorization, Protecting Sensitive Data, TLS and Cryptography, Session Management, Logging, Audit and Intrusion Detection, Error Handling and Exception Management, Application Inventory / Knowing what you have, Client side javascript misuse, data leakage, HTML5

Consideration will also be given to how OWASP projects can be used

OWASP Top 10 Proactive Controls, OWASP Cheat Sheet Series, OWASP ASVS, OWASP OpenSAMM, OWASP Top 10, OWASP ZAP, OWASP Dependency Check, OWASP AppSensor, OWASP ESAPI, etc.

We hope that this training day can act as a trigger to get as many people as possible related to software technologies started on the path to secure system development and operation.

OWT Tokyo 2017 Executive Commitee:owt2017 [at] owaspjapan [dot] org

About this community