Indy.Code() Sessions tagged security

Cybersecurity in the Modern Age

Cybersecurity is a critical part of the software we develop. New risks and threats are emerging every day while the cost of a breach has never been greater. However, many organizations do not understand the business value of cybersecurity. In this talk I'll go over the importance of cybersecurity, how we can detect our own vulnerabilities before they're exploited, and how we can communicate the need to invest in cybersecurity to the larger organization.

Speaker

Robert Herbig

Robert Herbig

Lead Software Engineer, SEP

Hack Proof: Software Design for a Hostile Internet

Software today is subjected to numerous vectors of attacks. The Internet world is a hostile world and our apps need to be expecting to encounter digital terrorists who want to use our applications to get inside our organization. In this session you’ll learn about some of the most common attack vectors for applications and what you can do about them. We’ll discuss techniques for protecting from user input including injection and cross site scripting attacks.

• Dispel myths about hacking and application vulnerability • Identify common threat vectors for applications • Discover strategies for addressing common threat vectors

Speaker

Rob Bogue

Rob Bogue

President, Thor Projects LLC

Cryptography Best Practices

Most developers have heard the statement: “never invent your own cryptography,” and most don’t fall into that trap, yet even using well designed libraries can land you in hot water, through misunderstanding, using them incorrectly, or only using them in a few of the many places you need security. This talk will cover many common errors and how to avoid them, and will increase your knowledge of how to avoid the mistakes that routinely leaks user data. We will cover data at rest, password management and best practices, two factor authentication, and more.

Speaker

Christopher Lomont

Christopher Lomont

Senior Principal Engineer, Logikos