Security is hard, and as developers we have very little time to focus on it. Short of hiring a professional security firm, what’s a development team supposed to do to stay one step ahead of attackers? Or at the very least remove themselves from the lowest hanging fruit?
We’ll be covering why you should care about security at all, common ways in which security mechanisms fail and good habits for you development team that will strengthen your software against attacks. The talk will be packed with war stories from real exploits and examples of non-trivial vulnerabilities of the sort that turn up in web application code.