Business Logic Security

Comments

Comments are closed.

Really a great overview of fighting security issues in business applications. Really useful information.

Very informative and well presented. Stuff that makes me sleep better at night!

awesome talk. tons of great information. Extremely enlightened on vulnerabilities that are not regularly covered.

Anonymous at 16:39 on 20 May 2015

Anonymous at 16:39 on 20 May 2015

Tons of great practical info

By far the most informative and best lecture of the day. Wealth of information very well presented. Looking forward to getting the slide deck later.

plenty of useful tips!

great presentation! A lot of useful techniques to maintain great security.

Anonymous at 16:49 on 20 May 2015

great talk, lots of useful tips to secure a web app

Anonymous at 16:52 on 20 May 2015

awesome talk!

Very good talk, filled with good real life situations and sample implementations, definitely helpful in existing systems to check for security vulnerabilities

Great talk! Lots of practical security information.

Great information! It was a good mix of overview and code.

This was a great presentation and all main aspects of business logic security were covered. Thanks!!!

Helpful to be reminded of things beyond standard attack vectors.

Glad to see you didn't skip the basics of what we should all be doing and more glad to see some more advanced concepts as well.

Fantastic presentation. I loved the direction of the different attack vectors outside of the usual suspects. I have already submitted a pull request at work to improve our session cookie handling.

One of the best talks that I attended during the conference; thanks for sharing your invaluable insights and intimate knowledge of PHP with us, Ilia. Your slides constitute one of the most concise and comprehensive security guides to PHP development. Employing the best-practices that you shared puts an application squarely on the path to secure development. Ilia speaks with authority and experience and I will definitely attend his future talks.

Very useful information that I will start using right away. I like that security topics other than the usual SQL Injection and CSS were covered.