Talk in English - US at Dutch PHP Conference 2018
Checkout the code: https://github.com/brunty/csp-demo
View Slides: https://noti.st/brunty/2cyyX0/content-security-policies-let-s-break-stuff
Short URL: https://joind.in/talk/9a570
(QR-Code (opens in new window))
Content Security Policies are another tool we should have in our security toolbelt to help protect users of our sites. In this session you'll learn what they are, why they're needed, how they work and the limitations on what they can & cannot do to protect users.
You'll see a demo of attacks a CSP will block, you'll see a site broken by a CSP, show what the different CSP directives & options will do and be introduced to some of the tools available to help with implementing a CSP on your sites!
Comments
Comments are closed.
Nice British accent and good talk. Alway great when speakers share experience and provide tips to avoid pitfalls. Confession was a nice touch. When trough the same thing.
Great talk!
Great content and entertaining delivery.
Very good talk. Describes what a CSP is for, when to use it, how to use it and what to look out for. A nice complete introduction of the subject with a good dose of humour. (Yes, with a 'u' in it.)
Well put together talk with good examples. Liked the live demo!