🇨🇭 #FRONTZURICH 🔗 frontconferenc...
🎟️ Secure your place and join us in person or online.
👩🏻💻 Writing secure Javascript
Some of the very things that make JavaScript awesome can also expose it to security risks.
- Our flexible JSON also allows type manipulation attacks, leading to Buffer exploits, NoSQL Injection and more
- Serving many users on a single event loop makes that thread susceptible to denial of service
- Powerful template platforms can become XSS distribution vehicles, as developers assume they're protected until repeated sandbox gaps are shown (enough to make Angular drop their sandbox)
- Growing browser-side user input expands the potential to client side DOM XSS
This talk will look at these powerful features through an attacker’s eyes, show some real world vulnerabilities caused by them, and explain how you can protect yourself.
We'll exploit the vulnerabilities on a demo application to highlight their impact, and throughout provide concrete advice about how to keep your JS code secure.
=====
About Guy Podjarny
🔗 / @guypod
🔗 snyk.io/
Guy Podjarny is a cofounder at Snyk.io, focusing on securing open source code. Guy was previously CTO at Akamai following their acquisition of his startup, Blaze.io, and worked on the first web app firewall & security code analyzer. Guy is a frequent conference speaker, the author of ""Responsive & Fast”, “High Performance Images” and the upcoming “Securing Open Source Code”.
=====
About Front Conference Zurich: Where design meets technology.
🔗 / frontzurich
🔗 / frontzurich
🔗 / frontzurich
🔗 / frontzurich
🔗 mastodon.socia...
🔗 / frontzurich
Designers and developers share a common mission - to create amazing experiences. But it's not always easy for these two tribes to communicate. To bridge the gap between design and technology, we created the Front Conference in 2011.
To create great digital products, we rely on each other: designers on developers and developers on designers. That's why we came up with the idea of a conference for everyone involved in the design and implementation of a front end.
By staying at the forefront of both design and technology, we've grown to become the largest web conference in Switzerland. Our interests have broadened to reflect the increasing maturity of the industry. We now cover management topics such as design leadership, tech governance and UX strategy.
Our attendees range from juniors to managers, and we attract key speakers to come to Zurich and share their knowledge in talks and workshops.
The conference has become a place to learn and network, and we have many loyal professionals who come back every year.
Негізгі бет Guy Podjarny: Writing secure Javascript //
Пікірлер