Society for Software Quality

Delaware Area Chapter
 Serving Delaware, Eastern MD, Southern NJ,
and Southeast Pennsylvania

Presents

Ian Rathie

On
An Approach to Application Security

Date: Thursday, March 21st, 2002

Time: 6:00 PM Refreshments/Networking; 6:30 Meeting

Place: First USA Building, 201 N. Walnut St., 9th Floor, Wilmington DE 19801

Who: All are invited. SSQ Membership is not required for attendance

Presentation:

One of the basic flaws in how risk is assessed and security solutions implemented is that the various components are viewed within stovepipes rather than holistically together. For instance, there are usually separate approaches and teams assessing the network, operating system, web server, database, middleware and application. Given that the applications themselves are often crafted with little oversight of security professionals and without standards of development this has created an opportunity for disaster. We will discuss an approach to assessing application security during the development life-cycle that will work within most organizations.

We will discuss topics such as:

 Classes of threats that should be considered when designing security for Internet applications and how to mitigate them.

Development of a simple Security Development Life Cycle to complement an organization's Systems Development Life Cycle

One approach for assessing risk in applications or systems

About the Speaker:

Ian Rathie has worked in the software development industry for more than 15 years. He currently heads up the Application Security practice for Bank One. Previously, he worked on large client-server software development projects and developed encryption and PKI software in Canada.

Directions to the First USA Building in Wilmington DE:
  1. Take I95 to the "Martin Luther King" exit.
  2. Turn on to Martin Luther King.
  3. Go straight to "French St". Turn left.
  4. Go to light turn left, this will be 3rd street, stay in right lane.
  5. Take the very first right into the parking lot. You can park in any available space.
  6. As you are facing the two First USA Buildings we are on your left.
  7. This is called the 1CC building.
  8. This is called the 1CC building.You will need to sign in at the security desk where you will be greeted by an SSQ officer and escorted to our meeting room; this is necessary due to new security procedures.
Click on the link below for the Map

More Information:

Call Theresa Ainsworth; (302)282-3888, or email @ SSQDECHAP@aol.com.

or click here if you wish contact the Delaware Chapter.




Last Updated - 01, November 2002
Main About Us Why Join How To Join Chapters References G.I.A. Links Mailing List Guest Book Members

This site is optimized for Internet Explorer 6 - 1280x1024