addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscontroller-playcrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupshelp-with-circleimageimagesinstagramFill 1light-bulblinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1ShapeoutlookpersonJoin Group on CardStartprice-ribbonprintShapeShapeShapeShapeImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruserwarningyahoo

OWASP Orange County - May Meeting

Title: HTTP Strict-Transport Security: Should you care?

Abstract: If any of your web application users might be connecting from untrusted networks, such as the internet, and you have concern for the transport layer security of these connections - this might be the talk for you. This talk will discuss the genesis of HTTP Strict Transport Security (HSTS) and current browser support. Exciting HSTS implementation details like preload propagation and "knock out" list implementations in modern browsers will be discussed. A tool for testing your websites for proper HSTS usage will be presented and distributed during the talk.

Speaker: Ron Perris

Bio: Ron has spent the last 10 years building and breaking web applications with Whitehat Security, NTO, and Outpost24. He continues to poke the internet with a sharp stick and shares his knowledge about how it reacts through OWASP and other channels.

Join or login to comment.

18 went

Our Sponsors

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy