Name: Secure Authentication and Session Management in Java EE
Start: 2014-11-26T17:00:00Z
End: 2014-11-26T20:00:00Z

This is a virtual Meetup occuring at 5PM UK time. For help with your timezone calculation, refer to this (http://time.is/1700_26_Nov_2014_in_London/San_Francisco/New_York/UTC/Beijing/Sydney/Tokyo?Secure_Authentication_and_Session_Management_in_Java_EE).

You can tune in to the session at http://virtualJUG.com (http://virtualjug.com/)

If all fails, you can still access YouTube and IRC via previous means:

1) Join the IRC channel (https://webchat.freenode.net/?channels=#virtualJUG) - Ask questions, chat, discuss

2) View the live stream on YouTube (http://www.youtube.com/user/virtualJUG/live)

Secure Authentication and Session Management in Java EE

Broken authentication and session management is among the most prominent security vulnerabilities according to The Open Web Application Security Project Foundation (the OWASP Top 10). Many developers assume that it works out of the box in Java EE. Unfortunately that’s not the case. Even though Java EE provides support for secure authentication and session management, it’s still developers’ responsibility to use it correctly.

In a live demo, you’ll learn how to hijack a session by exploiting common security vulnerabilities on the client-side, on the server-side, and in transport. You’ll also find out about common mistakes and omissions related to authentication and session management along with the ways to protect your applications using Java EE mechanisms.

Speaker: Patrycja Wegrzynowicz

Patrycja Wegrzynowicz is a software visionary and expert specialized in automated software engineering and Java technologies. She is the founder and CTO of Yonita, Inc., a California­based start­up focused on automated detection and refactoring of software defects, including security vulnerabilities, performance and concurrency anti­patterns, and database issues.

Patrycja is a regular speaker at major academic as well as industrial conferences, including JavaOne, Devoxx, JavaZone, OOPSLA, ASE, and others. She is associated with University of Warsaw where she is finalizing PhD in Computer Science.

Patrycja’s interests focus on patterns and anti­patterns in software along with automated software engineering, particularly static and dynamic analysis techniques to support program verification, comprehension, and optimization.

You can follow her on Twitter at @yonlabs (http://twitter.com/yonlabs).

Simon Maple

Oliver White

Virtual Java User Group

Technology

Distributed Systems

Server Side Javascript

JVM Languages

Java Virtual Machine

Java Concurrency

Programming Languages

Computer Programming

Software Development

Java

Secure Authentication and Session Management in Java EE

Share

Virtual Java User Group

Secure Authentication and Session Management in Java EE

Virtual Java User Group

Details

Members are also interested in