The OWASP O2 Platform : An approach to Automate Application Security KnowledgeSoftware evolves, defects get fixed ,new architectures are adopted and new requirements are met. As a part of this evolution we need to make sure that our applications are secure too. However , not all the time Software Developers have a strong background in Application Security and we need to find a way to transfer the knowledge from Security experts.
Therefore ,the O2 platform represents a new paradigm for how to perform, document and distribute Web Application security reviews. O2 is designed to Automate Application Security Knowledge and Workflows and to Allow non-security experts to access and consume Security Knowledge.
The topics covered in this talk are:
-Software development and the approach on Application Security
-The OWASP O2 Platform at Glance
-What can we do with the O2 Platform
-What problems can be solved by using Unit Testing.
-Case of Studies : Vulnerabilities found
-A demo that shows how to use it.
-How to get involved and where to ask for help.