Conference Web Banner

Back to Conference Home Page

Conference Schedule

Friday, 21 February 2020

**Presentation abstracts and speaker biographies can be found on this page.

08:00 Registration Opens - Main Foyer, Owen G. Glenn Building
09:00 Welcome to OWASP New Zealand Day 2020
John DiLeo (Conference Chair) and Kirk Jackson - OWASP New Zealand Chapter Leaders
Lech Janczewski (Conference Host) - Associate Professor, Univ. of Auckland

View: Slide Deck (PDF, 1.4MB)
09:20 Opening Keynote: The Abridged History of Application Security
Jim Manico - Founder, Manicode Security; Co-Leader, OWASP Application Security Verification Standard (ASVS) and Proactive Controls Projects
View: Slide Deck (PDF, 3.9MB)
  Upstairs Auditorium (Room 115)
Track One: Introductory / Management
  Downstairs Auditorium (Room 098)
Track Two: Technical
  Downstairs Lecture Hall OGGB5 (Room 051)
Track Three: OWASP Projects and Tools
10:10 High-Speed Security
Nick von Dadelszen - Lateral Security
10:10 A Pentester's Guide to Automating Security
Benjamin Kearns (pipeline) - Lateral Security
View: Slide Deck (PDF, 6.5MB)
10:10 OWASP Top 10 Overview
Kirk Jackson - RedShield & Co-Leader, OWASP New Zealand Chapter
10:45 The Perimeter Has Been Shattered: Attacking and Defending Mobility and IoT on the Enterprise Network
Georgia Weidman - Bulb Security
10:45 Improving Identity Management with W3C Verifiable Credentials
David Chadwick - University of Kent
View: Slide Deck (PDF, 3.4MB)
10:45 Building Secure Mobile Apps: You don’t have to learn it the hard way!
Sven Schleier - Co-Leader, OWASP MSTG and MASVS Projects
View: Slide Deck (PDF, 9.1MB)
11:20 Scanning Your Container Images using Anchore
Vince Sesto - Foodstuffs North Island
View: Slide Deck (PDF, 78kB)
11:40 What's the Worst That Could Happen?
Petra Smith - Aura Information Security
View: Slide Deck (PDF, 1.5MB)
11:40 Teaching an Old Dog New Tricks
Brett Moore - Insomnia Security Specialists
View: Slide Deck (PDF, 922kB)
12:30 Break for Lunch - On Your Own
13:30 Māori Cultural and Ethical Considerations in Information Security
Karaitiana Taiuru
View: Slide Deck (PDF, 602kB)
13:30 Wyh Ranmdnoses Mattres
Frans Lategan - Aura Information Security
13:30 OWASP Project Overviews: Top Ten, ASVS, Proactive Controls, Java Encoder, HTML Sanitizer
Jim Manico
14:05 Mūrere me te haumarutanga
Chris Cormack - Catalyst IT
View: Slide Deck (PDF, 366kB)
14:25 Small, but fierce (but still small)
Erica Anderson (@Sputina) - SafeStack
View: Slide Deck (PDF, 353kB)
14:25 Web App Attacks of the Modern World
Karan Sharma
View: Slide Deck (PDF, 12.5MB)
15:00 Keeping Up with the Joneses: Security from a Developer's Perspective
Toni James - Lateral Security
15:00 Use OSINT to Keep Up with AWS
Oliver (Olly) Ewert
View: Slide Deck (with presenter's notes) (PDF, 3.3MB)
15:30 Break for Afternoon Tea
16:00 Same-origin policy: The Core of Web Security
Kirk Jackson - RedShield & Co-Leader, OWASP New Zealand Chapter
16:00 Security in our code reviews? Check!
Daniel Zollinger - SafeStack
View: Slide Deck (PDF, 2.0MB)
16:00 OWASP SAMM2: Your Dynamic Software Security Journey
John Ellingsworth - Co-Author, OWASP SAMM Project
View: Slide Deck (PDF, 980kB)
16:55 Fighting an Uneven Battle: Simplicity versus Complexity in Web App Security
Sergey Ozernikov - ATTACK
View: Slide Deck (PDF, 1.2MB)
16:55 A Recipe for Password Storage: Add Salt to Taste
Nick Malcolm - Aura Information Security
View: Slide Deck (PDF, 1.7MB)
17:30 PCI-DSS-WTF?
Peter Jakowetz - Ministry of Justice
View: Slide Deck (PDF, 2.8MB)
17:30 Self-Service SSH Certificates
Jeremy Stott
View: Slide Deck (PDF, 2.5MB)
18:05 Wrap Up - Closing Remarks, Recognition, Prize Giving
View: Slide Deck (PDF, 3.9MB)
Post-Conference: Time to go out and socialise, for those interested