ApacheCon US 2009 Session

Web Application Security Boot Camp

According to a recent study, 9 out of 10 web sites have security vulnerabilities.

Try to be website #10 and come to this half-day tutorial which covers common and not-so-common (but still dangerous) security vulnerabilities, how they are exploited today, and which countermeasures are feasible.

Topics covered include XSS (Cross-site scripting), CSRF (Cross-site request forgery), SQL injection, attacks on Ajax-y websites, protection against automated HTTP requests, and more. You will also hear war stories from real-world security audits, and get an overview of suitable development processes and testing tools.

Hear Christian talk about this tutorial on FeatherCast!

Copyright © 2007-2009 The Apache Software Foundation / Stone Circle Productions. Site hosting provided by Media Temple. Site by JadeTower.