Content Security Policies are another tool we should have in our security toolbelt to help protect users of our sites. In this session you’ll learn what they are, why they’re needed, how they work and the limitations on what they can & cannot do to protect users.

You’ll see a demo of attacks a CSP will block, you’ll see a site broken by a CSP, show what the different CSP directives & options will do and be introduced to some of the tools available to help with implementing a CSP on your sites!

Comments

Comments are closed.

Sam Lambert at 14:23 on 27 Jan 2018

Great talk and good examples!

Joel Lord at 16:23 on 27 Jan 2018

Informative talk very well delivered.

Stef Liekens at 20:34 on 27 Jan 2018

Nice presentation with good tips and tricks.

Koen Cornelis at 23:25 on 27 Jan 2018

Great talk, great examples, outstanding humor and good slides.

Great speaker that brought some good actionable content.

Bruno at 20:57 on 28 Jan 2018

One of my favourite talks of the conference. Quality slides, very well delivered content and funny.

Very good talk reminding why sending csp headers is important, with tips on how to enable it without breaking your site.

Timo Schinkel at 09:32 on 29 Jan 2018

Well structured, well presented and with the right amount of relevant information. Really great talk.

Joey at 16:06 on 29 Jan 2018

I really liked your explanation of this concept by using an example where you break stuff.

I love breaking stuff, awesome!

Good talk and good tips nicely brought