Sessions at @media Ajax 2008 about CSRF

Tuesday 16th September 2008

• When Ajax Attacks! Web application security fundamentals

  by Simon Willison

  Web application security is hard, and getting harder. New technologies and techniques mean new vulnerabilities, and keeping on top of them all is a significant challenge. This talk will dive deep in to the underbelly of JavaScript security, exploring topics ranging from basic cross-site scripting to CSRF, social network worms, HTML sanitisation, securing JSON, safe cross-domain JavaScript and more besides.

  • CSRF
  • JavaScript
  • Security
  • XSS

  At 2:40pm to 3:40pm, Tuesday 16th September

  Coverage slide deck write-up write-up