Talk in English - US at SunshinePHP 2017
Track Name:
Key Biscayne 2
Short URL: https://joind.in/talk/5b2de
(QR-Code (opens in new window))
Today, cyber threats are everywhere, and are becoming more aggressive, complex and sophisticated. An attack can result in theft of information, exposure to sensitive information. A threat is something we cannot prevent, such as the threat of someone trying to launch a Cross Site Scripting Attack (XSS). However, we can reduce the risk by ensuring proper input validation on all data stored in the database.
Web based applications represent an attack vector. As a developer, you should be aware of the most important security concerns when you develop your web interface, and the best practices you can take keep your servers, software, and data safe from threats that exist in today’s complex environment. I’ll provide an overview of security, list some of the top vulnerabilities, and get participants into a security mind set.
Comments
Comments are closed.
The session gave you a decent overview of the myriad of threats out in the wild, but had less practical advice on dealing with those threats. For example, Lisa discussed the dark web and Tor networks but no tips on blocking any of that traffic to your site.
I loved your overview of security in general. I primarily attended the talk to compare my current mindset, and was delighted to see how much already lined up. I have always believed that a good security mindset requires P^2. Proactive and Paranoia. Though its not truly paranoia when they really are out to get your systems. Your breakdown of Risk, Threat, Vulnerability was great. R=T*V
I learned about some tools for checking vulnerabilities. Lisa is very knowledgeable and will be a good resource for follow up questions. She did a great job!