Covered some interesting things, but main subject (encrypting within php > TLS) was a bit niche.
I feel a focus on XSS, CSRF, session fixation, RC4 cipher suites, bastion hosts, enforcing stronger rsa keypairs and authentication between API's are the more likely area's developers should know about
Comments
Comments are closed.
Nice overview of a dense topic; speaker was clearly an expert in the subject matter.
Really enjoyed this talk. Jonathan is a great speaker and very knowledgeable on the topic of security practices.
Awesome talk on securing your site and a gret follow up if you attended "Web Security and You" by Eli
Covered some interesting things, but main subject (encrypting within php > TLS) was a bit niche.
I feel a focus on XSS, CSRF, session fixation, RC4 cipher suites, bastion hosts, enforcing stronger rsa keypairs and authentication between API's are the more likely area's developers should know about
Good talk. Include discussion of needs rehashing checking and how to plan and maintain a living security model. Jonathan is a fantastic speaker.