The heart of how users interaction with a web application is the HTML form submission. A great deal of very sensitive data flows over HTML forms. Securing form submissions is critical for the construction of a secure web application. Multi-form workflows make securing form submissions even more complicated! This presentation will take you on a journey as untrusted data flows from a form submission into the many layers of a secure web application.
Jim Manico is an author and educator of developer security awareness training. He has a 20 year history building software as a developer and architect. Jim is one of the members of the Global Board of Directors for the OWASP foundation where he helps drive the strategic vision for the organization. He manages and participates in several OWASP projects, including the OWASP cheat sheet series and several secure coding projects. Jim is also a member of the WhiteHat Security advisory board. For more information, see http://www.linkedin.com/in/jmanico.