Exploits and Defenses for a Web 2.0 World

Presented by

David W. Campbell; Leader; OWASP

About this talk

The World Wide Web is a dangerous place. As companies and government agencies have become more competent at traditional vulnerability management, politically and financially motivated attackers have refocused their efforts on softer targets such as web applications and end-user web browsers. These attacks are surprisingly simple, yet have potentially devastating impact. This presentation will focus on an emerging class of attacks which target end users rather than web applications directly. We will present clear, concise explanations of cross site scripting and man in the middle attacks, and show how they can be used to perform client-side exploitation. We will then discuss practical, vendor-neutral defenses against these attacks. CISO's and Infosec managers interested in evolving their security programs to meet the challenge posed by these new threats will find this session engaging and informative. OWASP is a non-profit organization dedicated to improving software security. As such, this presentation will be completely free of vendor bias. For more information please visit http://www.owasp.org Speaker: David W. Campbell David is a veteran security consultant who has been involved in OWASP since 2004 and has been leading the Denver chapter since 2007.

Related topics:

More from this channel

Upcoming talks (12)
On-demand talks (3529)
Subscribers (181938)
This channel features presentations by leading experts in the field of information security. From application, computer, network and Internet security to access control management, data privacy and other hot topics, you will walk away with practical advice for your strategic and tactical information security initiatives.