
Event details
Schedule
6:00 p.m. EST - Arrival, setup, mingle, PIZZA!
6:30 p.m. EST - Technical Talks
- Introduction to OWASP Ottawa, Public Announcements
- "From SBOMs to xBOMs to Transparency" with Pavel Shukhman
Abstract
We will discuss problems that are currently solvable by OWASP CycloneDX and its ecosystem (Vers, Purl, TEA) as well as use-cases that either don't have solutions or have inefficient solutions. The talk would include a brief demonstration of OWASP Dependency-Track showing real-world SBOM data from Reliza's open source Rebom project.
About the OWASP® Foundation
The Open Worldwide Application Security Project® (OWASP) is a nonprofit foundation that works to improve the security of software. Through community-led open-source software projects, hundreds of local chapters worldwide, tens of thousands of members, and leading educational and training conferences, the OWASP Foundation is the source for developers and technologists to secure the web.

Pavel Shukhman
Speaker
Pavel is co-Founder and CEO of Reliza. He leads company efforts in building a supply chain security system managing software and hardware metadata, including xBOMs, strict versioning, identification and various attachments. Previously, Pavel for more than ten years was leading software teams and supporting organizations in implementation of DevOps and DevSecOps best practices. He holds a Master of Computer Science degree from the University of Illinois Urbana-Champaign.
Event will be indoors. Based on the Ottawa Public Health Guidelines we strongly recommend that attendees wear a mask while not presenting. This will reduce the risk of transmission and protect members who may have compromised immune systems.