Nam Nguyen, CISSP, is a Principal Consultant with Blue Moon Consulting Co., Ltd, one of the leading security firms in Vietnam. He has been instrumental in the forming of VNSecurity group, and is leading the OWASP Vietnam chapter. He is also a two-time winner at HackInTheBox CtF competitions in 2007 and 2008. His research interests include code destruction and reconstruction, Python and web application security.
Outline:Web Applications are becoming more and more pervasive in all areas.Together with such widespread adoptation comes crucial security issues. The short course will discuss why web application security (webappsec) matters. It will introduce the top ten webapp vulnerabilities and remedies as categorized by the Open Web Application Security Project. Then some pointers to embed webappsec within a Software Development Life Cycle will be presented with emphasis on people, process, and technology. To close, some good webappsec resources are shared with the audience for their journey in security.