Scott Sauber will explain a handful of HTTP Security Headers (including HSTS, CSP, XFO, and more) from the bottom up. Scott will explain what they are, what they do, and how you can implement them to secure your web apps. Each of these headers will have a before and after demo so you can see first hand what each of them do to give you a better understanding of how they work and why they're important. By the end, you'll leave informed and probably a little scared of the stuff people can do to your users when your web app is not secured properly.
Pizza, drinks (non-alcoholic and alcoholic) will be provided courtesy of our host, Pillar Technology, now part of Accenture Industry X.0.