AppSensor: Real-Time Event Detection and Response

Presented at AppSec USA 2015, Sept. 25, 2015, 2 p.m. (55 minutes)

AppSensor is a very active OWASP project that defines a conceptual framework, methodology, guidance and reference implementation to design and deploy malicious behavior detection and automated responses directly within software applications. The AppSensor idea was first conceived in 2008 and is the leading reference point in this area. More recently "application self-protection" has become a hot topic. There are many security protections available to applications today. AppSensor builds on these by providing a mechanism that allows architects and developers to build into their applications a way to detect events and attacks, then automatically respond to them. Not only can this stop and/or reduce the impact of an attack, it gives you incredibly valuable visibility and security intelligence about the operational state of your applications. The AppSensor project has released v2 this year. In this special presentation for AppSec USA, you will discover what AppSensor is and what it can offer you. The interesting features available in v2 will be covered along with upcoming features from the roadmap. In addition, you will learn how to cover different use cases with AppSensor by a walk-through of some sample applications. Lastly, you will receive information about the different components and integrations that make AppSensor enterprise-friendly. Take-aways you will have from this presentation are: * Knowledge about the benefits of proactive protection * Information of the features in the new free-to-use reference implementation * Guidance on implementing AppSensor in the real world * Pointers to supporting materials specifically created for developers, architects, and senior management. * Free copy of the 200-page v2 AppSensor Guide (also always available as a free PDF) Additionally John and other members of the project team will be available after the presentation to continue discussion of the approach, and the AppSensor reference implementation.

Presenters:

  • John Melton - Principal Security Researcher - WhiteHat Security
    John Melton: I'm the lead developer for OWASP AppSensor, which I discovered after building a nearly identical tool, and looking for prior art. For my day job, I am currently a principal security researcher at WhiteHat Security, where I do R&D work, particularly in the static analysis space. My previous positions have included technical and leadership roles in both software development and security, working in the financial and defense sectors. Outside of work hours, I'm with my family doing non-computer things outside. You might also notice I'm from the South (US) when you talk to me.

Links:

Similar Presentations: