Under Siege: Secure Web Development

Arne Blankerts | PHP Day |

Websites are under siege. Constantly. Either by deliberate attacks or due to probing scripts, looking for new victims. Most frameworks provide solutions to counter common attack vectors, ensuring that otherwise typical mistakes do not lead into a vulnerability. But there is more to writing secure applications than basic input sanitizing and output escaping. Insecure data persistence, flaws in the handling of authentication and authorization, or trivial implementation quirks may render any protection mechanism useless. In this training you will learn the rules you need to follow when developing applications that are secure by design. You will also learn how to implement those rules, protecting your users as well as your site from harm.

About the presenter

Arne Blankerts has solutions ready before others have even understood the problem.