Top Ten Security Vulnerabilities
This talk will introduce basic software security concepts, including the art of thinking about your application like the bad guys do.
Most of the talk will focus on 10 of the most common Java web application vulnerabilities, based on work by the Open Web Application Security Project (OWASP) and other organizations. Each vulnerability will include a description, a concrete example, and practical mitigation strategies that can be easily integrated into daily programming habits.
Finally, the talk will briefly touch on secure development methodologies, which aim to integrate security into the entire software development lifecycle.
Dominion Innsbrook Technical Center
About the Presenter
Daniel Ramsbrock
Daniel Ramsbrock is a business and technical systems analyst with a background in IT security and software development. He has four years of experience in the IT security field, including published academic research. His main areas of expertise include secure development, network security, and authentication. In addition to security, Daniel has a software development background in languages such as Java, PHP, SQL, and Perl. He also has over 10 years experience working with and administering various versions of Linux and related open-source software.