Business Logic Security

Ilia Alshanetsky

Wednesday 20 May 2015 from 15:30 to 16:30

Talk in English - US at php[tek] 2015
View Slides: http://ilia.ws/files/phptek_business_logic_security.pdf
Short URL: https://joind.in/talk/aafe9 (QR-Code (opens in new window))

Avg. Rating

Comments

Comments are closed.

Michelangelo van Dam at 16:13 on 20 May 2015 (via api)

Really a great overview of fighting security issues in business applications. Really useful information.

Chris Flynn at 16:29 on 20 May 2015

Very informative and well presented. Stuff that makes me sleep better at night!

Nathan Sweeney at 16:33 on 20 May 2015

awesome talk. tons of great information. Extremely enlightened on vulnerabilities that are not regularly covered.

Anonymous at 16:39 on 20 May 2015

Tons of great practical info

Brian Procopio at 16:40 on 20 May 2015

By far the most informative and best lecture of the day. Wealth of information very well presented. Looking forward to getting the slide deck later.

Joelle Francois at 16:43 on 20 May 2015

plenty of useful tips!

Kirk Solar at 16:47 on 20 May 2015

great presentation! A lot of useful techniques to maintain great security.

Anonymous at 16:49 on 20 May 2015

great talk, lots of useful tips to secure a web app

Anonymous at 16:52 on 20 May 2015

awesome talk!

Cedric Viguillac at 16:53 on 20 May 2015

Very good talk, filled with good real life situations and sample implementations, definitely helpful in existing systems to check for security vulnerabilities

Michael PIckreign at 17:02 on 20 May 2015

Great talk! Lots of practical security information.

Matt Riehle at 17:42 on 20 May 2015

Great information! It was a good mix of overview and code.

Inna Dagaieva at 16:52 on 21 May 2015

This was a great presentation and all main aspects of business logic security were covered. Thanks!!!

Alexander Obuhovich at 11:30 on 22 May 2015

Best talk ever.

Phillip Shipley at 14:38 on 22 May 2015

Helpful to be reminded of things beyond standard attack vectors.

Alan Asher at 14:59 on 22 May 2015

Glad to see you didn't skip the basics of what we should all be doing and more glad to see some more advanced concepts as well.

John Congdon at 18:03 on 22 May 2015

Fantastic presentation. I loved the direction of the different attack vectors outside of the usual suspects. I have already submitted a pull request at work to improve our session cookie handling.

Ben Johnson at 13:18 on 26 May 2015

One of the best talks that I attended during the conference; thanks for sharing your invaluable insights and intimate knowledge of PHP with us, Ilia. Your slides constitute one of the most concise and comprehensive security guides to PHP development. Employing the best-practices that you shared puts an application squarely on the path to secure development. Ilia speaks with authority and experience and I will definitely attend his future talks.

Derek Binkley at 14:28 on 28 May 2015

Very useful information that I will start using right away. I like that security topics other than the usual SQL Injection and CSS were covered.