Proactive Web developer web application defense presented at HackMiami 2014

by Jim Manico,

Summary : We cannot “firewall” or “patch” our way to secure web applications. Many have stated that the traditional tools of network security are enough to secure web applications. That philosophy has only lead to failure and security breaches. Web applications require different and still evolving techniques for security. Thousands of companies from almost every business vertical have something in common: they have had websites compromised in the
last year. No company or industry is immune. Bottom line: programmers need to learn how to build web applications differently.
This session reviews the top coding techniques web and webservice developers need to master in order to build low-risk, high-security web applications.