Colleagues,

In 2012, OWASP is holding its Global AppSec Research (EU) Conference
in Athens, Greece! The OWASP AppSec Research conference is a premier
gathering for Information Security leaders and researchers. It brings
together the application security community to share cutting-edge
ideas, initiatives and technology advancements.


The OWASP AppSec Research 2012 Call for Papers (CFP) is open. Visit the
following URL to submit your proposal for the July 12-13, 2012 talks
in Athens, Greece:

http://www.easychair.org/conferences/?conf=appseceu2012

The final closing date for submissions is Sunday, April 15, 2012. We
look forward to receiving submissions for technical presentations,
demos or research papers on the following topics:

* Security aspects of new/emerging web technologies/paradigms
(mashups, web 2.0, offline support, etc)
* Security in web services, XML, REST, and service oriented architectures
* Security in cloud-based services
* Security of development frameworks (Struts, Spring, ASP.Net MVC etc)
* New security features in platforms or languages
* Next-generation browser security
* Security for the mobile web
* Secure application development (methods, processes etc) and secure
coding practices
* Business risks of Application Security
* Starting and Managing Secure Development Lifecycle Programs.
* Privacy Concerns regarding applications and Data Storage
* Threat modeling of applications
* Vulnerability analysis and application security testing (code
review, pentest, static analysis etc)
* Countermeasures for application vulnerabilities
* Metrics for application security
* Application security awareness and education
* Securing e-government applications and services
* Government Initiatives & Case Studies
* OWASP Tools and Projects


OWASP AppSec Research 2012 is also currently soliciting training
providers for the conference. Visit the following URL to submit your
training proposal for the July 10-11, 2012 training days in Athens,
Greece:

http://www.appsecresearch.org/cft

The following conditions apply for people or organizations that want
to provide training at the conference:

Training provider should provide class syllabus / training materials.
Proceeds will be split 60/40 (OWASP/Trainer) for the training class.
OWASP will provide the Venue, Marketing with Conference materials,
Registration and basic AV.

Trainers will cover travel and accommodations for the instructor(s)
and all course materials for students

OWASP will reserve up to 2 training slots at no cost and the trainer
may reserve up to one slot at no cost

Price per attendee: 2-Day Class €990 / 1-Day Class €495.

Trainers can brand training materials to increase their exposure
Classes are to be focused around Application Security but are in no
way limited to web application security.

We will look favourably on laboration-based/hands-on training.


We will make the first round of selections, based on the Training
proposals we have received by March 30, 2012. We have extended the
final closing date for submissions to Sunday, April 15, 2012.

Submit proposals to training@appsecresearch.org using the CFT template
(http://www.appsecresearch.org/wp-content/uploads/2012/02/OWASP_CFT_AppSecEU2012.doc).
All trainers will be required to submit a Training Instructor
Agreement (http://www.appsecresearch.org/wp-content/uploads/2012/02/OWASP_AppSecEU2012_Training_Instructor_Agreement.doc)
in order to have their classed scheduled.

Additional information can be found at http://www.appsecresearch.org.

Please forward to all interested practitioners and colleagues.