Denim Group has been acquired by Coalfire. Learn More>>

Denim Group at OWASP AppSec USA 2010 in Irvine


OWASP AppSec USA is coming up next week at UC-Irvine.  This is shaping up to be a great conference.  Denim Group is a sponsor and we will doing some training and giving some talks.

I’ll be teaching a 1-day course on Software Security Remediation on Tuesday September 7th, 2010.  This isn’t a “how to hack” course or a theoretical “build new software securely” course.  Instead we will be dealing with how you can fix existing software that is full of vulnerabilities.  There is material on process and theory mixed with hands-on examples.  Should be a good time.

Then John Dickson will be chairing a panel discussion on Thursday at 10:35am titled “Characterizing Software Security as a Mainstream Business Risk – How to Talk to Other CXOs about Software Security”  He has folks such as Tom Brennan (Proactive Risk), Ed Pagett (Lender Processing Services), Richard Greenberg (Los Angeles County Department of Public Health) and John Sapp (McKesson) so this should be a spirited and interesting discussion.

Then I’m giving a presentation at 3:30 on Thursday on smartphone application security: “Smart Phones, Dumb Apps”  We will be looking at threat models for smartphone applications as well as assessment techniques and defense mechanisms.

We will also have a booth and generally be running around.  Contact us if you would like to meet up at OWASP AppSec US 2010.


dan _at_


Posted via email from Denim Group’s Posterous

About Dan Cornell

Dan Cornell Web Resolution

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

Leave a Reply

Your email address will not be published. Required fields are marked *