Security and the Web Developer

Presented at Notacon 2 (2005), April 8, 2005, 3 p.m. (120 minutes)

Web application security is an ever increasingly important part of the overall threat profile. This presentation will provide developers with the tools to find, assess, and correct application layer security risks. This session will be one part technical, dealing with the how and why to secure applications, and one part theoretical, providing an overview of threat modeling, an approach to profiling, analyzing, and remediating threats and vulnerabilities in applications.

Presenters:

• Michael Tetreault, CISSP
  Mike Tetreault has over a decade of experience in the IT realm, most of it spent working exclusively with internet technologies. While focusing on applications for the past five years, he has a broad background in servers, networks, and security as well. While he enjoys dabbling in all the areas of IT, applications have been his love since learning 6502 assembler at the age of 12.

Links:

• https://web.archive.org/web/20050331054328/http://notacon.org/speakers.html#tetreault
• https://infocon.org/cons/notacon/notacon 2 - 2005/Video/mtetreault-secureweb.mp4

Similar Presentations:

• Diana Initiative 2018 / Threat Modeling Everything
• SOURCE Seattle 2017 / Threat Modeling
• LocoMocoSec 2019 / Building Secure API's and Web Applications: Secure Coding with Aloha Training