Workshop 4: Secure Programming in Java

  • Date 05 Jun 2019

Workshop 4: Secure Programming in Java

05 Jun 2019, 14:00 - 16:00

Security Workshop
Language:
English

A 2017 study conducted by DevOps.com found that 76% of developers indicated security and secure development education needed for today’s world of coding is missing from formal development curriculums. The same study found that application security training was strongly correlated with improved developer performance. In this session we aim to skill you up in the definition, detection and remediation of injection type flaws, specifically unsafe reflection and deserialisation. We’ll discuss how reflection caused the Equifax breach, then we will exploit and fix our own unsafe reflection and deserialisation flaws on a cloud hosted virtual machine.

Learning Outcomes:

  1. Well explain application security defect behind the Equifax data breach
  2. You’ll learn about reflection and serialisation APIs security considerations
  3. After the session you’ll be able to explain to your peers how such types of vulnerabilities are commonly exploited and fixed
  4. You’ll be able to apply techniques learned during the workshop to other types of security defects

 

Please note: Registering your interest does not guarantee you a seat. You will receive final joining instructions one week prior to the event and it will work on a first come, first served basis on the day.

 

Contributors

  • Boy Baukema

    Speaker

    Senior Application Security Consultant

    Veracode

    Boy Baukema is a Senior Security Consultant at Veracode with over 10 years of software engineering experience. Boy focuses on training developers and...

  • Mateusz Krzeszowiec

    Speaker

    Principal Application Security Consultant

    Veracode

Business Issues covered

  1. What will this session help you to do?
    • Deliver security to drive and enable business growth‎
    • Mitigate the effects of new vulnerabilities and exploits‎

ReedExpo.Nova.Framework.Categorization.CategorySelection

Sponsors

Veracode

We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies.