Security audits as an integral part of PHP application development

Sijmen Ruwhof (21.Sep.2010 at 20:30)
Talk at PHPBenelux September Meeting (Dutch)

Rating: 5 of 5

More often than not, web applications start off as a bright idea, which is then brought into realization at a fast and furious pace, with little eye for anything but result. Once all envisioned functionality is incorporated in the design and the project is launched, developers will be assigned to the next project.

Notwithstanding a few bug fixes, the final - yet essential - step of software development is more often than not, omitted: the security audit. Despite the fact that these checks are regarded as tedious and superfluous, practice shows that it is time well spent: numerous vulnerabilities come to light.

In his presentation, Sijmen Ruwhof will detail how to incorporate security checks into the software development process. He will also step through the implementation, and caveats of a security audit. Ruwhof works for Secundity as a security analyst specialized in PHP audits.

Who are you?

Claim talk

By clicking this button you are declaring that you are the speaker responsible for it and a claim request will be sent to the administrator of the event.

If the claim is approved you will be able to edit the information for this talk.

Are you sure?

Comments closed.


Rating: 4 of 5

21.Sep.2010 at 20:57 by Michelangelo van Dam (277 comments)

A very good talk, complementing my unit testing talk. Same approach, different target. Superb!

Rating: 4 of 5

21.Sep.2010 at 21:11 by (11 comments)

Informative talk!!

Rating: 5 of 5

21.Sep.2010 at 21:14 by (11 comments)

Including hacking tips! ;)

Rating: 5 of 5

21.Sep.2010 at 21:22 by Stefan Koopmanschap (342 comments)

Lots of information in a single talk, brought in a very effective way that sticks. Not afraid to use the "fun" factor, and containing some interesting tips and tricks of what to look for when doing an audit. Very well done!

Rating: 5 of 5

21.Sep.2010 at 22:20 by Joshua Thijssen (89 comments)

Lots of info that every (php) programmer should know. Good talk about audits.

Rating: 4 of 5

22.Sep.2010 at 10:04 by Raymond van Asperen (11 comments)

Nice talk. The fun stories in between kept me sharp.

© 2015