Name: Security and Compression
Start: 2024-04-24T18:00:00-04:00
End: 2024-04-24T20:00:00-04:00

**Agenda**

* **Chapter Intro**

* **Main presentation: Title: Security and Compression**

Author: Lucas Driscoll [https://github.com/Lukerd-29-00/](https://github.com/Lukerd-29-00/)
Abstract: This is a talk on the cybersecurity risks caused by using compression, especially in a web context. It goes over the basic mechanics of attacking a scheme where text is compressed and then encrypted, the attacks that have been discovered in practice, and mitigations against them.
This relates to attacks against TLS, such as Compression Ratio Info-leak Made Easy (CRIME) and BREACH (Browser Reconnaissance and Exfiltration via Adaptive Compression of Hypertext) .

* **Web Academy hands-on labs** \- We continue our journey through the Web Academy at [https://portswigger.net/web-security/](https://portswigger.net/web-security/)

The meeting will be held in the library's computer lab to encourage people to get some hands-on web security testing experience.

Gionne Cannister

David Rhoades

Eric L. Truitte

OWASP Delaware Chapter

OWASP® Foundation 

2 of 3 co-leads are employed at Palindrome Technologies.

Palindrome Technologies

Technology

Cybersecurity

Web Security

Web Development

Startup Businesses

Web Application

OWASP

Information Security

Application Security

Software Security

Computer Security

Ethical Hacking

Penetration Testing

Web Application Security

When people say, "I know a guy" they are talking about Lucas.
Just kidding. I don't a have a speaker bio for Lucas, but you can check out his GitHub here: https://github.com/Lukerd-29-00/

Lucas Driscoll

Security and Compression

Route 9 Library & Innovation Center

Share

OWASP Delaware Chapter

Security and Compression

OWASP Delaware Chapter

Details

Sponsors

Members are also interested in