Secure Design and Coding for the Modern PHP Developer


Comments are closed.

Brian Rogers at 10:38 on 15 Jan 2016

It's always helpful to see not just what can go wrong but different methods to mitigate or prevent the attacks. Hearing that there are some threats you'll just have to accept unless the feature has to be changed or removed was helpful. Trying to get managers to understand that concept can be difficult at times.

Derek Caswell at 19:45 on 19 Jan 2016

This presentation was put together well and was pretty much what I was expecting coming into it. It was a little overwhelming at times, however. I am one of 2 developers in my company and taking the approach of diagramming out all the different possible vulnerabilities and trying to fix all those is a little daunting. It was helpful when he started going through the different vulnerabilities and saying what can be done to mitigate the problem. It might be better for the little guy if the presentation was focused a little more on the steps to mitigate and less on the diagramming especially since at a PHP conference the vast majority of the developers are going to have very similar diagrams.