UNIVERSITY
Introduction to WAF
Improving your web applications security
Showing 1 to 2 from 2 .
previous next


Previous March 2010 Next
MoTuWeThFrSaSu

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

    

Introduction to WAF

When? Tuesday, March 23, 2010

enroll

Places? 0 of 10 places reserved.

Introduction

For more than five years, ZION SECURITY has been your partner in securing your web applications. The last few years our security experts gained extensive expertise in Web Application Firewalls (WAF's). However, the Belgian market wasn't ready to deploy and configure Web Application Firewalls in their organizations.

The last few months the web security market landscape has changed. There is a spectacular growth in Web based threats, like hackers and viruses. These threats are a danger for the value of your organization: theft of sensitive information, brand damage, loss in productivity, ...

Many organizations are searching for a suitable WAF to block web based threats. One of the problems is the configuration and monitoring of a WAF: you need a specific web application security expertise to do this. Most organizations do not have this specific expertise (yet).

Due to this reason ZION SECURITY organizes a course about Web Application Firewalls. We begin the course with an introduction to web security. Our security experts continue by discussing what a WAF does, how you have to deploy and configure a WAF and how you can monitor a WAF.

In conclusion we give an overview of the commercial market concerning WAF's. We show that a WAF does not have to be a massive cost. ZION SECURITY offers WAF's for every type of organization.

Program

The course will take one day. One session is planned on Tuesday the 23th of March 2010.

08h30-09h00

Registration and coffee

09h00-10h30

Introduction Web Security
We discuss the newest vulnerabilities in web applications following the new OWASP Top 10. We look deeper into the most known vulnerabilities like cross-site-scripting (XSS), SQL Injection, Cross-site-request-forgery, response splitting, SAX Injection, DOM manipulation, Flash Injection, ...

10h30-10h45

Coffee break

10h45-11h15

Continuing introduction web security

11h15-12h00

Introduction WebGoat
Next our experts demonstrate how to use WebGoat. In a workshop you will learn how to exploit a vulnerability in a website. By doing this attendees get a clear view on the way hackers think. This knowledge is needed to better understand Web Application Firewalls.

12h00-13h30

Lunch

13h30-15h00

WAF
What is a WAF?
In which aspects is a WAF different/similar from a network firewall?
What does a WAF?
How do you deploy and configure a WAF?
How do you monitor a WAF?
How does a WAF enable organizations to fulfill the needs of PCI compliancy?

15h00-15h15

Coffee break

15h15-17h00

Hands-on lab: WAF
Our security experts explain how a web application firewall can protect you against the most common vulnerabilities. Using WebGoat we trace vulnerabilities in a fictive website and we show in real-time how a web application firewall prevents leaks from being exploited. 

To conclude we discuss different types of WAF's, as well as for large enterprises as small organizations.

Who should attend?

This course mainly focuses on technical persons like IT Managers, Security Officers, Network experts,...

Registration

The number of participants is limited to 10(!) people because we want to work with small groups to create interactivity. More information or registrations via e-mail to sales@zionsecurity.com and via fax +3216 29 79 22.