Matt Brunt (@Brunty) of PHP East Midlands has kindly agreed to give the below talk:
Content Security Policies: Let's break stuff
Content Security Policies are another tool we should have in our security toolbelt to help protect users of our sites. In this session you'll learn what they are, why they're needed, how they work and the limitations on what they can & cannot do to protect users.
You'll see a demo of attacks a CSP will block, you'll see a site broken by a CSP, show what the different CSP directives & options will do and be introduced to some of the tools available to help with implementing a CSP on your sites!
Our venue is The UB pub in Chelmsford, here's a link showing its location https://goo.gl/maps/ELzXSVXeFW72
We'll meet in the main bar from 7 and move through to the meeting room about 7:30, with the talk starting shortly after.
7:00-7:30 - Arrive
8:00 - Talk
8:45 - onwards - Group discussion, drinks and socialising
You can park in the street outside after 6pm but if there isn't any space there is a large pay and display car park just behind the pub in George Street that is just £1 for the evening.
Here's a link of the car parks location https://goo.gl/maps/suKkTJrfoWE2