Talk in English - UK at Ski PHP Conference 2016
View Slides: https://www.slideshare.net/secret/kLfvhJRF6nF4ga
Short URL: https://joind.in/talk/569ef
(QR-Code (opens in new window))
Secure Design and Coding for the Modern PHP Developer
Comments
Comments are closed.
It's always helpful to see not just what can go wrong but different methods to mitigate or prevent the attacks. Hearing that there are some threats you'll just have to accept unless the feature has to be changed or removed was helpful. Trying to get managers to understand that concept can be difficult at times.
This presentation was put together well and was pretty much what I was expecting coming into it. It was a little overwhelming at times, however. I am one of 2 developers in my company and taking the approach of diagramming out all the different possible vulnerabilities and trying to fix all those is a little daunting. It was helpful when he started going through the different vulnerabilities and saying what can be done to mitigate the problem. It might be better for the little guy if the presentation was focused a little more on the steps to mitigate and less on the diagramming especially since at a PHP conference the vast majority of the developers are going to have very similar diagrams.