AppSecUSA 2012 has ended
Back To Schedule
Friday, October 26 • 2:00pm - 2:45pm
The Application Security Ponzi Scheme: Stop paying for security failure

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Consider the major classes of threats that have been significantly mitigated in the past. For OS vulnerabilities, DEP and ASLR have greatly improved the security of every supporting OS. For applications, ORMs have greatly reduced SQL Injection and auto-encoding has greatly reduced XSS. Common to both of these are fundamental changes in the underlying OS or framework, which produces hardened applications without any extra work for developers. Has the scan, fix, rescan cycle finally lost its allure? Matt and Jarret provide their incites into how to revolutionize the app security industry. Come participate in the discussion or just poke holes in Matt and Jarret’s grandiose dream. Maybe you’ll want to passionately defend your corner of the app sec world. Whichever you choose, it will be fun.

avatar for Jarret Raim

Jarret Raim

Jarret Raim is the Security Product Manager at Rackspace Hosting. Since joining Rackspace, he has built a software assurance program for Rackspace?s internal software teams as well as defined strategy for building secure systems on Rackspace?s OpenStack Cloud implementation. Through... Read More →
avatar for Matt Tesauro

Matt Tesauro

Senior AppSec Engineer, Duo Security
Matt Tesauro is currently a Senior AppSec Engineer building an AppSec Pipeline and continuous security program for Duo Security.  Prior, he worked full-time for the OWASP Foundation, adding automation and awesome to OWASP projects as the Operations Director. Previously, he was... Read More →

Friday October 26, 2012 2:00pm - 2:45pm CDT
Gluu Room - Foothills II (17th Floor) Hyatt Regency Austin, 208 Barton Springs Road, Austin, TX, 78704

Attendees (0)