Conference Schedule

Friday, 21 February 2020

**Presentation abstracts and speaker biographies can be found on this page.

08:00	Registration Opens - Main Foyer, Owen G. Glenn Building
09:00	Welcome to OWASP New Zealand Day 2020 John DiLeo (Conference Chair) and Kirk Jackson - OWASP New Zealand Chapter Leaders Lech Janczewski (Conference Host) - Associate Professor, Univ. of Auckland View: Slide Deck (PDF, 1.4MB)
09:20	Opening Keynote: The Abridged History of Application Security Jim Manico - Founder, Manicode Security; Co-Leader, OWASP Application Security Verification Standard (ASVS) and Proactive Controls Projects View: Slide Deck (PDF, 3.9MB)
	Upstairs Auditorium (Room 115) Track One: Introductory / Management		Downstairs Auditorium (Room 098) Track Two: Technical		Downstairs Lecture Hall OGGB5 (Room 051) Track Three: OWASP Projects and Tools
10:10	High-Speed Security Nick von Dadelszen - Lateral Security	10:10	A Pentester's Guide to Automating Security Benjamin Kearns (pipeline) - Lateral Security View: Slide Deck (PDF, 6.5MB)	10:10	OWASP Top 10 Overview Kirk Jackson - RedShield & Co-Leader, OWASP New Zealand Chapter
10:45	The Perimeter Has Been Shattered: Attacking and Defending Mobility and IoT on the Enterprise Network Georgia Weidman - Bulb Security	10:45	Improving Identity Management with W3C Verifiable Credentials David Chadwick - University of Kent View: Slide Deck (PDF, 3.4MB)	10:45	Building Secure Mobile Apps: You don’t have to learn it the hard way! Sven Schleier - Co-Leader, OWASP MSTG and MASVS Projects View: Slide Deck (PDF, 9.1MB)
10:45		11:20	Scanning Your Container Images using Anchore Vince Sesto - Foodstuffs North Island View: Slide Deck (PDF, 78kB)	10:45
11:40	What's the Worst That Could Happen? Petra Smith - Aura Information Security View: Slide Deck (PDF, 1.5MB)	11:40	Teaching an Old Dog New Tricks Brett Moore - Insomnia Security Specialists View: Slide Deck (PDF, 922kB)
12:30	Break for Lunch - On Your Own
13:30	Māori Cultural and Ethical Considerations in Information Security Karaitiana Taiuru View: Slide Deck (PDF, 602kB)	13:30	Wyh Ranmdnoses Mattres Frans Lategan - Aura Information Security	13:30	OWASP Project Overviews: Top Ten, ASVS, Proactive Controls, Java Encoder, HTML Sanitizer Jim Manico
14:05	Mūrere me te haumarutanga Chris Cormack - Catalyst IT View: Slide Deck (PDF, 366kB)	13:30		13:30
14:25	Small, but fierce (but still small) Erica Anderson (@Sputina) - SafeStack View: Slide Deck (PDF, 353kB)	14:25	Web App Attacks of the Modern World Karan Sharma View: Slide Deck (PDF, 12.5MB)
15:00	Keeping Up with the Joneses: Security from a Developer's Perspective Toni James - Lateral Security	15:00	Use OSINT to Keep Up with AWS Oliver (Olly) Ewert View: Slide Deck (with presenter's notes) (PDF, 3.3MB)
15:30	Break for Afternoon Tea
16:00	Same-origin policy: The Core of Web Security Kirk Jackson - RedShield & Co-Leader, OWASP New Zealand Chapter	16:00	Security in our code reviews? Check! Daniel Zollinger - SafeStack View: Slide Deck (PDF, 2.0MB)	16:00	OWASP SAMM2: Your Dynamic Software Security Journey John Ellingsworth - Co-Author, OWASP SAMM Project View: Slide Deck (PDF, 980kB)
16:00				16:00
16:55	Fighting an Uneven Battle: Simplicity versus Complexity in Web App Security Sergey Ozernikov - ATTACK View: Slide Deck (PDF, 1.2MB)	16:55	A Recipe for Password Storage: Add Salt to Taste Nick Malcolm - Aura Information Security View: Slide Deck (PDF, 1.7MB)
17:30	PCI-DSS-WTF? Peter Jakowetz - Ministry of Justice View: Slide Deck (PDF, 2.8MB)	17:30	Self-Service SSH Certificates Jeremy Stott View: Slide Deck (PDF, 2.5MB)
18:05	Wrap Up - Closing Remarks, Recognition, Prize Giving View: Slide Deck (PDF, 3.9MB) Post-Conference: Time to go out and socialise, for those interested