Sessions at Webstock 2010 about CSRF

Monday 15th February 2010

• Evolution of Web Security: Fundamentals, Emerging Trends, and Ideas for the Future

  by Chris Shiflett

  This is a multi-faceted workshop that explores new concepts in web security. After a solid grounding in well-known exploits like cross-site scripting (XSS) and cross-site request forgeries (CSRF), I'll demonstrate how traditional exploits are being used together and with other technologies like Ajax to launch sophisticated attacks that penetrate firewalls, target users, and spread like worms. I'll then discuss some ideas for the future, such as evaluating trends to identify suspicious activity and understanding human tendencies and behavior to help provide a better, more secure user experience.

  • CSRF
  • Web Application Security
  • XSS

  At 9:00am to 12:30pm, Monday 15th February

  Coverage slide deck