owasp nederland n.
Download
Skip this Video
Loading SlideShow in 5 Seconds..
OWASP Nederland PowerPoint Presentation
Download Presentation
OWASP Nederland

Loading in 2 Seconds...

play fullscreen
1 / 26

OWASP Nederland - PowerPoint PPT Presentation


  • 83 Views
  • Uploaded on

OWASP Nederland. Implementation of Security by Design Martin Knobloch Sogeti Nederland B.V. martin.knobloch@sogeti.nl +31-(0)6 52 32 76 79. 2007-01-11. Presentation Objectives. What is…? Awareness! Task Force! Join Forces! Education! Get known! Finish line?. What is…?. What is…?

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about 'OWASP Nederland' - charla


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
owasp nederland

OWASP Nederland

Implementation of Security by Design

Martin Knobloch

Sogeti Nederland B.V.

martin.knobloch@sogeti.nl

+31-(0)6 52 32 76 79

2007-01-11

presentation objectives
Presentation Objectives
  • What is…?
  • Awareness!
  • Task Force!
  • Join Forces!
  • Education!
  • Get known!
  • Finish line?
what is
What is…?
  • What is…?
    • Security By Design
    • A Secure Application
  • Awareness!
  • Task Force!
  • Join Forces!
  • Education!
  • Get known!
  • Finish line?
what is1
What is…
  • Security by Design
    • Secure Software Development Initiative
      • Applications designed to be secure
      • Design how to develop secure applications
    • Everything about designing, developing, testing and implementing secure applications!
what is2
What is…
  • A Secure Application?
    • How to design, develop a secure application?
    • How secure has an application to be?
    • How to prove the application meets the customer expectations and needs of security?

50 current OWAP Projects

      • 6Release Quality Projects
      • 15 Beta Status Projects
      • 15 Alpha Status Projects
what is3
What is…?
  • Secure Development Life Cycle
what is4
What is…
  • A Secure Application..
    • An application is secure if the applications behaves as expected at all times!
awareness
Awareness!
  • What is… ?
  • Awareness!
    • Who?
    • Why?
    • How?
  • Task Force!
  • Join Forces!
  • Education!
  • Get known!
  • Finish line?
awareness1
Awareness!
  • Who?
    • Colleagues
      • Development Staff
        • Architects / Designers
        • Developers
        • Tester
      • Sales / Business
      • Management
    • Customer
      • Architects
      • Administrators
      • Users

…each and everyone!

awareness2
Awareness!
  • Why?
    • Colleagues
      • Development Staff
      • Sales / Business
      • Management
    • Customer
      • Architects
      • Administrators
      • Users
awareness3
Awareness!
  • How?
    • By recognition of their interests, understanding and knowledge of security!
      • Communicate on the level of their knowledge
      • Communicate in the scope of their understanding
      • Communicate in the context of their interests
task force
Task Force!
  • What is…?
  • Awareness!
  • Task Force!
    • It’s not a one-man-show
  • Join Forces!
  • Education!
  • Get known!
  • Finish line?
task force1
Task Force!
  • It’s not a one-man-show
    • Java
    • Microsoft
    • Oracle
    • SAP
    • CMS
    • C++
    • Uniface
    • PHP
    • Software Control
task force2
Task Force!
  • Proactive Security Strategy (PaSS)
join forces
Join Forces!
  • What is…?
  • Awareness!
  • Task Force!
  • Join Forces!
    • Who else is busy with security?
  • Education!
  • Get known!
  • Finish line?
join forces1
Join Forces!
  • Business Process
  • Networking
  • System Administration
  • Application Administration
join forces2
Join Forces!
  • Company wide security initiatives
educate
Educate!
  • What is…?
  • Awareness!
  • Task Force!
  • Join Forces!
  • Educate!
    • Education
    • Certification
  • Get known!
  • Finish line?
educate1
Educate!
  • Presentations, Courses, Technical meetings
    • To create awareness!
      • About Security Threats
      • About Security Standards
      • About Best Practices
      • About Standards
      • About …
educate2
Educate!
  • Certifications
    • Get certified
      • CISSP
      • Symantec – SCSP
      • MSCE
      • Cisco
      • ISS
      • RSA
          • OWASP Top Ten certification?!
get known
Get known!
  • What is…?
  • Awareness!
  • Task Force!
  • Join Forces!
  • Education!
  • Get known!
    • Make yourself heard!
  • Finish line?
get known1
Get known!
  • Write!
    • Papers
    • Newsletters
    • Blogs
  • Talk!
    • Presentations
    • Meetings
    • Lunch
  • Bother!
    • Whenever there is a change!
get known2
Get known!

Make yourself notorious!

finish line
Finish line?
  • What is…?
  • Awareness!
  • Task Force!
  • Join Forces!
  • Get known!
  • Education!
  • Finish line?
    • When is the job done?
finish line1
Finish line?
  • When is the job done?

…NEVER!