Details

Web 2.0 Security

von Scott MacVicar (Jelsoft Enterprises Ltd)

Samstag, 02.06.2007, Saal 3: Berlin, 12:00-13:00 Uhr

With more sites being generated by user driven content through a combination of technologies each with their own security concerns there is a far greater potential for security issues to arise.

This session will feature an in-depth discussion in regards to the changing attack vectors for modern web applications. Topics covered will range from the simple XSS and SQL Injection to Cross-site Request Forgery and the more obscure issues such as encodings and quirks of specific browsers.

With the potential types of attack explained and identified the rest of the session will focus on showing how to secure your LAMP stack to mitigate these issues.

There will be some audience participation as well as a Q&A session.

Über den Autor Scott MacVicar:

Scott MacVicar is a developer and performance consultant at Jelsoft Enterprises in England, UK. Topics of interest are web application performance specifically in predictive caching, database scalability (MySQL and SQLite) and cross browser compatibility.

In the past 6 years Scott has contributed to many open source projects such as PHP as well as the odd patch to Mozilla. Currently he is providing binaries of MySQL Community server for those unable to build their own.

When disconnected from the series of tubes Scott is a long term member of ScotLUG which he has spoken at on a number of occasions usually in an attempt to evangelise Gentoo.