Presentation by Anthony Ferrara: Password Storage (And Attacking) In PHP

Our monthly PHP meetup....this is a big one!

Anthony Ferrarahttps://twitter.com/ircmaxell http://blog.ircmaxell.com/

Anthony has been an active part of PHP Internals, drafted multiple RFCs, and is a well respected member of the PHP community. We're lucky enough to have him visit us all of the way from New Jersey give us a talk.

Abstract: Password storage is a common problem that every developer needs to solve at some point in their career. Often, we rely upon frameworks and libraries to do it for us. But do they get it right? How should passwords be stored? How are they going to be attacked? All these questions (and more) will be answered. This session will dive head first into password storage and all aspects surrounding it. We’ll cover some common misconceptions and dangerous mistakes. We’ll also explore some of the best available tools to solve the problem, and go into why they are the best. Finally, we’ll look at some of the tools that attackers will use to attempt to extract plain text passwords. We’ll explore each point from both angles: the pragmatic developer and the attacker. For the safety and security of your users, make sure that you know how to securely store their passwords. It’s not just the right thing to do, but it is negligent not to!

The meetup schedule is as follows:

6:00-6:30 Meet and Greet

6:30-7:15 Presentation by Anthony

7:30-8:30 Code Jam Work / Socialize

8:30-??? Group Hangout @ 16-bit Arcade

Let's make this the biggest meetup of the year and send 2013 out with a bang. Feel free to bring coworkers or people in your network!