Welcome to the first Wellington OWASP meetup for the new year!
This time we've got Matt Cotterell from Fairfax speaking, and it's going to be a good one.
Securing Logins and Registrations in Web Applications
Web Application have lots of environment quirks and limitations that set it apart from other application environments like mobile, desktop and headless server applications. In this talk, we explore public facing login and registration flows and some of those quirks that can catch developers out which can open your application (or your users!) to security or privacy risks.
Matt Cotterell is a Security Engineer and a .NET Developer with 5+ years professional experience in software engineering for various diverse industries, including healthcare, cinema management and journalism. He is more of a maker than a breaker and spends his time exploring various software frameworks and public cloud providers (particularly .NET and Azure) along with writing software and presentations that enable developers to secure these systems.
He is currently working for Fairfax Media (stuff.co.nz (http://stuff.co.nz/)) helping the DevOps teams improve the general security posture of their software and systems architecture, and developing awareness training for the in-house development teams. In his spare time, he can be found watching bad movies, gleefully overusing the word "cyber", and feeling awkward writing biographies in a third-person perspective.
This talk is aimed at anyone familiar with web development. It won't assume any particular security knowledge, meaning that it will be a great introduction to the OWASP project and security concepts if you are new to the field. If you are an experienced developer or security specialist, you'll still get something out of this talk.
The talk will be livestreamed on Youtube here:
Building the ultimate login and signup (https://www.youtube.com/watch?v=E25KxLKwY-M)
After the event, you'll be able to come back and watch the video at your leisure.