Let's Look at the Basics of Security

A session at Open Apereo 2013 Conference (Jasig & Sakai)

Tuesday 4th June, 2013

2:00pm to 2:45pm (PST)

This presentation describes the top ten security issues associated with coding. Examples are included. Discussion centers around the application of this knowledge to coding practices. There will be a section on integration best practices and avoiding common pitfalls. Subjects like TLS certificates, backup regimes and monitoring will be explored. Further, the security processes around Sakai CLE are explained. How to write a security bug report and how it ends up as a security alert.

The presentation will be centered around advice from OWASP. Coding examples will be based on Java and will be applicable to Java based projects such as CAS/uPortal and Sakai.

This is a great opportunity for further reach out to those interested in this field and across projects. The target audience are developers and integrators. This is a good place for people to start meeting and discussing cross cutting concerns, especially between projects.

About the speakers

This person is speaking at this event.
Alan Berg

Educational Consultant

Alan Berg Bsc. MSc. PGCE, works within the Innovation Work Group at the University of Amsterdam's Informatersingscentruim. He is currently interested in Learning Analytic's and generally getting stuff done. Alan has also been a lead developer at the Central Computer Services at the University of Amsterdam since 1998. He is also a member of the Technical Coordination Council, Sakai fellow and was once a Quality Assurance Director for Sakai.

In his spare time, he is a technical consultant, writes articles, book reviews and has authored three books, two of which were with the Sakai community, the third on Continuous Integration. Alan has a degree, two masters and a teaching qualification. In previous incarnations, he was a technical writer, an Internet/Linux course writer, and a science teacher. He likes to get his hands dirty with the building and gluing of systems. He remains agile by playing computer games with his sons who (sadly) consistently beat him physically, mentally and morally at least twice in any given day.

Examples of authoring efforts:

This person is speaking at this event.
Mike Osterman

position--Deputy Director of the Enterprise Technology group and IT Securit

Mike Osterman has represented Whitman College in the Sakai community since 2005. His current role is a split position--Deputy Director of the Enterprise Technology group and IT Security Officer. The Enterprise Technology group manages the ERP, creates and manages institutional web applications and is responsible for integration efforts. As IT Security Officer, he coordinates information security policy and procedures and works to raise awareness of IT security issues and best practices in the campus community.

Prior roles include web application developer, academic support specialist, system administrator and Spanish interpreter/translator. Mike has recently completed his MBA and does not yet know what to do with his newfound spare time.

This person is speaking at this event.
Matthew Jones

Sakai Developer

Next session in Opal

3pm Improving Application Integrations With CIFER APIs by Chris Hyzer and Benjamin Oshrin

17 attendees

  • Alan Berg
  • Andrew Petro
  • Bill Thompson
  • Dave Derderian
  • David Horwitz
  • David Bauer
  • Eric Dalquist
  • Matthew Jones
  • jameswennmacher
  • Francis Awuye-Kpobi
  • Mike Grady
  • Misagh Moayyed
  • Mitch
  • Mike Osterman
  • Bob Walters
  • Ray Walker
  • Tim Levett

3 trackers

  • Aaron Grant
  • Jim Helwig
  • José Mariano Luján

Coverage of this session

Sign in to add slides, notes or videos to this session

Sign in to track this session

Tell your friends!


Time 2:00pm2:45pm PST

Date Tue 4th June 2013


Opal, The Westin San Diego

Short URL


Official event site


View the schedule



Books by speaker

  • Jenkins Continuous Integration Cookbook
  • Sakai CLE Courseware Management: The Official Guide

See something wrong?

Report an issue with this session