Web Application Security in the Ajax Age

English session
Ajax applications make heavy use of JavaScript, Web 2.0 applications rely on loads of user-generated content, plugins may allow developers (and attackers) more than traditional web technologies. This session will feature web application security with focus on modern web applications. You will see old attacks with new twists, new ways to hurt users and/or a web application, and will understand ways to prevent automated HTTP requests. We will also analyze features (and security measures) of plugins, and why especially men are involuntarily helping attackers to succeed.

Christian Wenz View speaker page

Arrabiata Solutions GmbH

Christian Wenz Christian Wenz is an author, consultant and trainer focussing on web technologies and web application security. He wrote or co-wrote over 100 books, is a fixture at international developer conferences since 2001, and is one of the subject matter experts (SME) of the Zend PHP 5 certification. His day job at Arrabiata Solutions includes conducting security audits, migrating old code bases, implementing complex web applications and helping companies choose the right mix of technologies for their web strategy. Christian holds both a degree in computer science and in business informatics.

Comments

Topic: 4
Speaker: 5
[+] Dynamic speaker. Confident.

Topic: 4
Speaker: 3
[+] Interesting subject. Speaker talking loud.
[-] Talk a little bit slower.

Topic: 4
Speaker: 4
[+] Funny.

Topic: 4
Speaker: 5

Topic: 5
Speaker: 5
[+] Good speaker. Like the examples.

Topic: 5
Speaker: 5

Topic: 5
Speaker: 4
[+] Well, he knows what he's talking about!
[-] The intro was a bit long.

Topic: 5
Speaker: 5

Topic: 4
Speaker: 5
[+] Very clear.

Topic: 5
Speaker: 5

Topic: 5
Speaker: 5
[+] Very good speaker.

Topic: 5
Speaker: 5
[+] Very good speaker.

Topic: 5
Speaker: 5

Topic: 2
Speaker: 2
[-] Much repetition between this and OWASP session. Speaker rambles on.

Topic: 3
Speaker: 2
[-] Didn't speak enough about Ajax.

Topic: 4
Speaker: 3

Topic: 5
Speaker: 5

Topic: 5
Speaker: 4

Topic: 5
Speaker: 5

Topic: 5
Speaker: 5
[+] Good topic.

Topic: 5
Speaker: 5
[+] Good. Fun. Complete.

Topic: 5
Speaker: 4
[+] Good examples.
[-] More tips / recommendations.

Topic: 5
Speaker: 5

Topic: 5
Speaker: 5
[+] Clear. Good use of examples. Humor.

Topic: 3
Speaker: 4

Topic: 5
Speaker: 4
[+] Comprehensive, clear, fast-paced & energetic.
[-] Would like more technical discussion, may not be possible in time frame.

Topic: 5
Speaker: 5

Topic: 5
Speaker: 5

Topic: 5
Speaker: 5
[+] Good examples.

Topic: 5
Speaker: 4

Topic:
Speaker:
[+] Good examples.

Topic: 4
Speaker: 4

Topic: 4
Speaker: 5

Topic: 5
Speaker: 5
[-] More examples.

Topic: 4
Speaker: 4

Topic: 5
Speaker: 5
[+] Dynamic. Very interesting. Lively.

Topic: 4
Speaker: 4

Topic: 4
Speaker: 5
[+] Good speaker
[-] Not a lot on AJAX, too much on XSS (was on the 1st session)


Only conference attendees are allowed to rate sessions.

Sponsored by

Platinum

sponsors

Gold

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

Silver

sponsors

sponsors

sponsors

sponsors

Media

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

sponsors

Become a sponsor