addressalign-toparrow-leftarrow-rightbackbellblockcalendarcameraccwcheckchevron-downchevron-leftchevron-rightchevron-small-downchevron-small-leftchevron-small-rightchevron-small-upchevron-upcircle-with-checkcircle-with-crosscircle-with-pluscontroller-playcrossdots-three-verticaleditemptyheartexporteye-with-lineeyefacebookfolderfullheartglobegmailgooglegroupshelp-with-circleimageimagesinstagramFill 1light-bulblinklocation-pinm-swarmSearchmailmessagesminusmoremuplabelShape 3 + Rectangle 1ShapeoutlookpersonJoin Group on CardStartprice-ribbonprintShapeShapeShapeShapeImported LayersImported LayersImported Layersshieldstartickettrashtriangle-downtriangle-uptwitteruserwarningyahoo

Web Application Security in front end

Web Application Security in front end

As web applications are becoming more and more complex, getting security right is more crucial than ever. HTML5 and new APIs in the browser introduce both new opportunities and dangers which every web developer should be aware of when architecting a web application. Many assume that security only concerns the back end architecture. It does not; security does also concern the front end layer.

Erlend Oftedal will take us trough some of the most common security pitfalls web developers fall into. We will take a closer look at what dangers we are facing and how we can prevent ourselves from being a victim of them.

Erlend will guide us trough topics such as XSS, clickjacking, what dangers HTML5 introduces, and security in ECMAScript 5.

Erlend is the leader of OWASP (the Open Web Application Security Project) Norway and works with application security at BEKK.

The talk will be in Norwegian English (see discussion).


Free, as in beer, tickets to Velocity in Berlin

We all know that speed matters and if you care about Web Performance, Velocity is the place to go!
The Velocity conference in Berlin have been so kind to provide us with two tickets (value 749Euro each) for the conference which kicks off on the 8th - 9th of November. We would like to pass those out to our members.

To get one of the tickets; simply send us a message at @framsia on Twitter, and tell us which topics you would like to see a talk on! Tips on who can speak about it gives bonus points. We will draw the tickets at 12.00 on the 1st of November so be sure to tips us before that!

NB: The tickets do not cover travel and stay in Berlin!

Join or login to comment.

  • Tommy J.

    Bra innhold, og godt presentert!

    November 26, 2011

  • Espen A. S.

    Will the presentation be made available for download?

    November 11, 2011

  • Øyvind M.

    Great presentation, one of the better I have seen.

    November 10, 2011

  • A former member
    A former member

    I went home and started implementing anti-XSS / anti-ClickJacking etc

    November 10, 2011

  • A former member
    A former member

    Det var interessant, mye å lære og mange nyttige verktøy for å øke sikkerheten på webprosjektene mine. Ble mye switching fram og tilbake mellom presentasjon og demo. Hvis man ofte har presentasjoner med et slikt oppsett, hadde jeg brukt en aktiv VGA switch og to PCer.

    November 10, 2011

  • A former member
    A former member

    Bra gjennomgang, kule eksempler

    November 10, 2011

  • A former member
    A former member

    Learned tons of new stuff. Great live hacking and presentation.

    November 10, 2011

  • Terje R. A.

    Great walkthrough. Good that code was shown and talked about.

    November 10, 2011

  • A former member
    A former member

    I wish it was recorded as well.

    November 10, 2011

  • Ole Morten A.

    bra innhold og bra levert

    November 10, 2011

  • Arve S.

    Bra foredrag, flink foredragsholder. Knall med praktiske eksempler og demo av praktiske verktøy!

    November 10, 2011

  • A former member
    A former member

    Terrifying, I'm only using static web pages from now on :(

    November 10, 2011

  • Irwan S.

    Interesting talk and competent speaker.

    November 10, 2011

  • Ola Christian G.

    A good introduction to thinking about security, with a lot of examples. Presentation was nice and easy to follow, and the presenter had a clear and understandable voice even without a microphone.
    A tip would be to repeat the questions from the audience at the end, some of them were impossible to hear.

    November 10, 2011

  • Erlend O.

    I should have mentioned it though

    November 10, 2011

  • Nils Jørgen M.

    So important, but still easy to forget. A good reminder of what we all really should be doing every day.

    November 10, 2011

  • Henning A.

    One of the best presentations I've seen in a while. Concise and to the point but with enough info to understand the problem and solutions.

    November 10, 2011

  • Yngve J.

    Very interesting and thought provoking.

    November 10, 2011

  • Øyvind S.

    Great talk with good examples on a topic often overlooked!

    November 10, 2011

  • Frédéric A.

    I wish referer checking had been mentionned as an XSS security protection. :)
    Otherwise great!

    November 9, 2011

  • Erlend O.

    Ok, let's go with English, and if it turns out you think I'm only slightly better than the manager of Boyzvoice, I'll switch back to Norwegian

    November 8, 2011

  • A former member
    A former member

    Erlend: If you are comfortable with presenting in English it would be really great. Can you please confirm which language you'll go with so that we know if it's ok to bring people that does not speak Norwegian?

    November 8, 2011

  • Sindre M.

    The Scotsman it is, then! ;-)

    November 7, 2011

  • Vincent P.

    It would be nice to have it in English... all tech talks I have attended in one year in Oslo were in English, but I understand that some prefer using their native language.

    November 7, 2011

  • Sindre M.

    I wouldn't mind English, as long as Erlend is up to it (which, judging by his above post, he is). Also, do we have a location yet? It doesn't say so at the top.

    November 6, 2011

  • Erlend O.

    I'll be happy to present in English if needed.

    November 5, 2011

  • Øyvind M.

    +1 to what bodil said

    November 5, 2011

  • Ole Christian R.

    +1 what Bodil said

    November 5, 2011

  • A former member
    A former member

    If your English is terrible, then don't try to present in English; that's a good rule. But please let the presenter be the judge of that. I know several Norwegians who are more than capable of giving great presentations in English, and forcing them to present in Norwegian just because they were born here would be nonsensical.

    1 · November 5, 2011

  • Carl-Erik K.

    +1 to native tongue

    November 5, 2011

  • Alexander B.

    I believe people should speak their native tongue. Speaking in a language which doesn't come natural to you breaks flow and disrupts the publics attention.

    November 4, 2011

  • A former member
    A former member

    I don't mind English. Amundsen worked nicely in my view.

    November 4, 2011

  • Vincent P.

    Thanks, I skipped the sentence :)

    November 3, 2011

  • Sindre M.

    It says in the description above that the talk will be in Norwegian. I suppose this is still the case.

    November 3, 2011

  • Vincent P.

    Hi, are the talk gonna be in English? Thanks :)

    November 3, 2011

  • Sindre M.

    Great! I am now on the waiting list. :-)

    October 30, 2011

  • Sindre M.

    Seems very interresting! Too bad there aren't any spots left... :-(

    October 30, 2011

Our Sponsors

  • MESH

    Thanks MESH for The Lounge!

People in this
Meetup are also in:

Sign up

Meetup members, Log in

By clicking "Sign up" or "Sign up using Facebook", you confirm that you accept our Terms of Service & Privacy Policy