Friday, March 30, 2007


OWASP Conference in Milano 15/5-17/5

OWASP  (Open Web Application Security Project) is organizing an Application Security conference May 15-17 2007 in Milan, Italy. The conference starts with a 1 day optional training before the main sessions. The OWASP's AppSec conferences are dedicated to real-world application security issues and solutions.

Writing secure web applications is difficult, and it is getting more difficult each day as the number of frameworks/solutions grows, so I have decided to post the complete invitation below:

Dear Colleague,,

OWASP is proud to announce its 6th Application Security Conference to be held May 15-17 at the Marriott in Milan, Italy. Please reserve these dates!! This facility looks to be the nicest facility we have had the opportunity to use yet for our European conferences.

This conference will include:
- Training (On May 15th) Three 1-day application security courses are being offered the day prior to the conference
- Main Conference (May 16-17) This year's conference will include daily keynotes, presentations, refereed papers, lots of OWASP projects, and two panels to encourage discussion amongst the attendees.
- Evening Social Event (May 16) - We are planning a social event as we do each conference which facilitates the attendees ability to mingle and get to know each other better.

Current details on the conference are available on the OWASP website at This conference is expected to be kicked off with a keynote by a representative from Microsoft on "The Benefits of the SDL initiative to Microsoft and its Customers". This should be similar to the presentation that Mike Howard gave to kick off the 5th OWASP AppSec Conference which was the highlight of that conference (in my opinion). It discusses the Microsoft Security Development Lifecycle (SDL) and the benefits Microsoft and its customers have gained by developing and adopting it.

OWASP's AppSec conferences are dedicated to real-world application security issues and solutions. You'll learn many aspects of application security, including people, process, and technology perspectives.

REGISTRATION DETAILS: As a non-profit charitable organization, OWASP has been able to keep the cost to 450 Euro's per seat. For OWASP Members it's only 400 Euros. These prices are further reduced by 50 Euros for early registration prior to April 16th.

Note: Payment for the conference will actually have to be in US dollars as OWASP currently has no mechanism for accepting Euro's for payment with our current registration system.

Registration is available at:


These classes will be held at the Marriott. Each class is 650 Euros for conference attendees (and includes lunch).


More details on these training courses are available at:

EVENING SOCIAL EVENT - May 16th - An optional dinner event.

This event involves a dinner at a nearby restaurant from 7-9 PM, followed by drinks at local watering holes. We hope to see all of you there as this is a great chance to mingle and meet many members of the OWASP community.

ACCOMMODATIONS: Information about local accommodations, including reduced rate rooms is available at:

If you know others that would be interested in attending the 6th OWASP AppSec Conference, please forward them this email and let them know about this opportunity.

Please contact me with any questions. Looking forward to seeing you all there!

Thanks, Dave

Dave Wichers, OWASP Conferences Chair
The OWASP Foundation

I am still convincing my bosses to let me go, but I hope to see you there!

Tuesday, March 13, 2007


Visual Studio Code Name "Orcas" March CTP

Visual Studio Code Name "Orcas" - March Community Technology Preview (CTP) is available for download in two versions:

The features are too many to mention here, but the ones that I most look forward to trying are:


  • ADO.NET Entity Framework

  • The XSLT Debugger

  • Windows Presentation Foundation (WPF) Designer

  • New Team System features

  • Windows Communication Foundation and Workflow Foundation