WHO: Chris Wysopal, Founder and CTO, Veracode, Inc. WHAT: OWASP & WASC AppSec 2007 Conference
WHEN: Wednesday, November 14, 2007 11:20 a.m. - 12:20 p.m. EST WHERE: eBay 2211 North First Street San Jose, California 95131 For more information, please visit: http://www.owasp.org/index.php/7th_OWASP_AppSec_Conference_-_San_Jose_2007/Agenda DESCRIPTION: Backdoors and Other Developer 'Introduced Features' Veracode Founder and CTO Chris Wysopal will discuss recently completed research on the subject of backdoors -- vulnerabilities embedded within application code by developers that enable them to bypass authentication or other security controls. Chris will examine the classification of those backdoors that have been detected in applications and provide real world examples of application backdoors, a generalization of the mechanisms they use, and strategies for detecting these mechanisms (including static analysis of source and binary code).ABOUT VERACODE Veracode is the industry's first provider of automated, on-demand application security solutions. Created by a world-class team of application security experts, the company delivers services to identify software flaws introduced through coding errors or malicious intent. Veracode's core service, SecurityReview® uses patented binary code analysis and dynamic web testing that is uniquely able to inspect entire application inventories, including components, and does not require companies to expose their valuable source code. Enterprises can now protect their intellectual property while preventing attacks allowed by vulnerabilities in applications. As the most accurate and comprehensive solution, Veracode makes it simple and cost-effective to implement application security best practices and reduce operational costs related to manual reviews. Whether a company is developing applications internally, purchasing software or integrating code from partners, Veracode's SecurityReview provides insight to the security level of your applications. Outsourcing code analysis to Veracode is the easiest way to secure your software. With a pragmatic approach to application security, Veracode helps you fix what matters most to your business. Visit www.veracode.com for more information.
Contact Information: Media Contacts: Jim Crook Lois Paul & Partners 781-782-5734 jim_crook@lpp.com