OWASP puts focus on growing web application security risks at AppSec Europe
AppSec Europe, 23-26 June, Cambridge, UK
CAMBRIDGE, United Kingdom, April 3, 2014 /PRNewswire-USNewswire/ — Over 400 industry and government leaders, academics, security architects and developers will be converging on Cambridge in the UK to share the latest ideas, initiatives and advances in technology to improve the security of web applications and protect personal and corporate information. AppSec Europe, from 23-26 June, is organized by the OWASP (Open Web Application Security Project) Foundation, an open-source organization with over 45,000 corporate, educational and individual participants from around the world. OWASP, which provides free, vendor-neutral guidance and is the de-facto source for open knowledge, tools and research around web application security, runs AppSec conferences annually in North America, Latin America, Europe, and Asia Pacific.
In the recently published OWASP CISO Survey over 100 CISOs from different countries, confirmed that application security risks are on the rise, both in absolute numbers and relative to infrastructure security risks. And while internal attacks are reducing, the survey suggests that risks from external threats are on the increase. CISOs put security awareness and training as the biggest challenge and most important priority in 2014 to address these threats – even more critical than tools, testing or budgets.
These latest findings and concerns will frame the topics to be addressed at AppSec Europe by renowned security professionals from industry and academia including web and mobile application security, protecting the cloud, vulnerability analysis and defense. The keynote presentations will be supported by group sessions, panel discussions, workshops, an exhibition and learning opportunities for developers, business owners and security experts.
“Since OWASP was formed in 2001, the web application market has grown exponentially and the security challenges have been further increased with the move to mobile platforms and the advent of the cloud,” said Justin Clarke, Director at Gotham Digital Science and OWASP London Chapter Leader. “The AppSec conferences have become the focus for the industry to hear from the world’s leading experts, harness expert knowledge and stay abreast of the latest technology developments. We are looking forward to hosting this year’s European event at Anglia Ruskin University in Cambridge, the leading tech hub in Europe.”
Some of the presentations will discuss the vulnerabilities highlighted in OWASPs recently compiled list of the top 10 methods of breaking into web applications. These include SQL injection, used by hackers to target Vodafone Iceland; cross-site scripting (XSS), which left Microsoft Office 365 open to attack; open redirects, which presents issues for Facebook; and insecure direct object references, which saw Yahoo’s servers open to root access.
The full agenda will be published in April and sponsors of AppSec Europe already include Gotham Digital Science, HP, 7 Elements, Acunetix, BCC Risk Advisory, Checkmarx and Cigital.
For more information and to register, visit: https://2014.appsec.eu/
OWASP is the foremost web app security organization in the world, with thousands of members globally, including some of the biggest names in the industry. The goals of OWASP are to make web applications safe and to educate users, developers, governments, and business leaders on how to protect vulnerable information and avoid dangerous hacks that can cost millions of pounds to fix. OWASP has a strong open and global community with more than 45,000 participants, more than 65 organizational supporters and over 60 academic supporters, via 200 local chapters across six continents in 117 countries. Everyone is free to participate in OWASP and all materials are available under a free and open software license.
Executive Director, OWASP Foundation
+1 312 869 2779