Date: Tuesday, November 18th
Location: UVU Business Resource Center
Derrick Isaacson will present common anti-patterns for securing web applications and how to correct them. Learn how to differentiate between authentication, authorization, secrecy, integrity, non-repudiation, and other security goals.
See how* a theoretical “secret” banking request is corrupted to pad an attacker’s bank account,* an insecure “session” authentication token is attacked, and* a “random” XSRF value gives a false sense of security.