SPI Dynamics' Web Application Security Experts to Present at HP Software Universe, HP Technology Forum & Expo and Better Software Conference & Expo

Spi Dynamics, Inc Jun 21, 2007


Michael Sutton, Security Evangelist, and Ryan English, Senior Product Manager, Lead Discussions on Web 2.0 Attacks, Client Side Vulnerabilities and Fuzzing Web Applications

ATLANTA, June 11 / -- S.P.I. Dynamics, Inc., the leading provider of web application security testing and assessment software, today announced that its company executives will lead several presentations focused on improving web application security in quality assurance at the upcoming HP Software Universe 2007, HP Technology Forum & Expo 2007 and Better Software conferences. During the week of June 18 in Las Vegas, SPI Dynamics will host discussions on the latest web application threats and trends, including Web 2.0, service-oriented architecture (SOA), client side vulnerabilities and fuzzing.

At the HP Software Universe show, Ryan English, SPI Dynamics' Senior Product Manager, will lead a session, "Is Web 2.0 and SOA a hacker's dream? Testing for security risks in a Web 2.0, SOA World." This presentation will focus on why the increased use of Web 2.0 technologies and SOAs among businesses has brought forth a multitude of new attack vectors. To help the audience understand how to counter this changing security landscape, Ryan will provide a comprehensive overview on how to avoid the risks that come with these technologies and discuss the techniques necessary for testing Web service applications. Ryan will also provide real-world examples of how these technologies can be exploited for financial gain, while emphasizing the importance of secure coding.

At the HP Technology Forum & Expo, Michael Sutton, SPI's Security Evangelist, will present three sessions. In his first session, "Client Side Attacks Come of Age," Michael will give attendees real-world examples of client side vulnerabilities that have been leveraged for criminal gain. The audience will hear typical attack scenarios to gain a better understanding of how these attacks succeed, what can be done to stop them and how they will evolve in the future.

During his second session, Michael will present "Is Web 2.0 a Hacker's Dream?" where he will provide an overview of the various technologies that define Web 2.0, such as Asynchronous JavaScript and XML (AJAX), Simple Object Access Protocol (SOAP), Really Simple Syndication (RSS) and mashups, and investigate how they are being implemented. He will educate the audience on the importance of secure coding practices and offer several scenarios explaining why poor coding practices can easily expose vulnerabilities in Web 2.0 sites. Michael will also present a similar session on June 21 at the Better Software Conference & Expo.

In his final session at the HP Technology Forum & Expo, Michael will present on "Smashing Web Apps: Applying Fuzzing to Web Applications and Web Services." This discussion will contrast fuzzing at the network and application layers and will address some of the unique challenges faced when fuzzing web applications, such as automating the identification of data structures and handling exception detection. Fuzzing will be broken down into different categories including headers, methods, web services and AJAX. Throughout his presentation, Michael will reveal open source applications that have been developed to automate the methodologies behind fuzzing web applications and services.

Specific details on SPI Dynamics' upcoming presentations at HP Software Universe, HP Technology Forum & Expo 2007 and the Better Software Conference & Expo are as follows:

Who: Ryan English, Senior Product Manager
What: "Is Web 2.0 and SOA a hacker's dream? Testing for security risks in
a Web 2.0, SOA World"
Where: HP Software Universe, The Venetian

Who: Michael Sutton, Security Evangelist
What: "Client Side Attacks Come of Age"
When: Wednesday, June 20, 2007 at 3:30 p.m.
Where: HP Technology Forum & Expo 2007, Mandalay Bay

Who: Michael Sutton, Security Evangelist
What: "Is Web 2.0 a Hacker's Dream?"
When: Thursday, June 21, 2007 at 8:00 a.m.
Where: HP Technology Forum & Expo 2007, Mandalay Bay

Who: Michael Sutton, Security Evangelist
What: "Smashing Web Apps: Applying Fuzzing to Web Applications and Web
Services"
When: Thursday, June 21, 2007 at 1:00 p.m.
Where: HP Technology Forum & Expo 2007, Mandalay Bay

Who: Michael Sutton, Security Evangelist
What: "Is Web 2.0 a Hacker's Dream?"
When: Wednesday, June 20, 2007 at 1:45 p.m.
Where: Better Software Conference & Expo, The Venetian

About S.P.I. Dynamics, Inc.
SPI Dynamics' comprehensive suite of products and services identify and remediate web application and web services security vulnerabilities throughout the application development lifecycle. These award-winning solutions also enable security professionals, QA testers, and developers to work together to verify compliance with 22 security policies such as SOX, HIPAA and PCI. SPI Dynamics has the most application security testing customers worldwide -- over 1,000 clients among Global 2000 enterprises, including four out of five of the world's largest banks and nine out of 10 of the largest banks in the U.S., four out of five of the largest software companies, three out of four of the largest aerospace and defense companies, the four largest accounting firms, the five largest telecommunications companies in the U.S., six out of eight of the largest technology hardware and equipment companies, two out of three of the largest healthcare companies, and over 90 U.S. Federal agencies. The Company is one of the fastest growing in the security industry, ranked 83rd on Deloitte's "Fast 500" list of growing technology companies nationwide and 220th on the Inc. 500. SPI Dynamics has strategic partnerships with Microsoft, IBM, HP and Visa. The Company's R&D team, SPI Labs, is widely recognized as one of the leading authorities on web application security and risk management. For more information, visit www.spidynamics.com or call (866) 774-2700.

Source: S.P.I. Dynamics Incorporated

CONTACT:Michelle Schafer of Merritt Group, +1-703-390-1525 office,
+1-703-403-6377 mobile, schafer@merrittgrp.com, for SPI Dynamics; or
+Ashley
Vandiver of SPI Dynamics, +1-678-781-4841 office, +1-404-432-8657 mobile, avandiver@spidynamics.com

Web site: www.spidynamics.com/

White Papers & Case Studies

View All White Papers & Case Studies

View All Resources

All Topics

Manufacturing Innovation

Industry Trends

Engineering & Design

Sales & Marketing

Supply Chain

Career & Workforce

Company News

New Products

Thomas Index

Daily Bite

Find Suppliers, Insights, Tools and More...

Become part of North America's largest and most active network of B2B buyers and industrial/commercial suppliers.

Select From Over 500,000
Industrial Suppliers

Find and evaluate OEMs, Custom Manufacturers, Service Companies and Distributors.

Receive Daily
Industry Updates

Stay up to date on industry news and trends, product announcements and the latest innovations.

Search Over
6 Million Products

Find materials, components, equipment, MRO supplies and more.

Download 2D & 3D
CAD Models

10+ million models from leading OEMs, compatible with all major CAD software systems.
Start Sourcing Suppliers Claim Your Company Profile ico-arrow-default-right
Cookie Policy
Close
Thomas uses cookies to ensure that we give you the best experience on our website. By using this site, you agree to our Privacy Statement and our Terms of Use.
Accept