Tuesday

No Sessions

Wednesday

No Sessions

Thursday

No Sessions

Friday

8:30 AM

Writing Secure APIs - A Look at the OWASP 2023 API Top 10 List

Presented by: Darylynn Ross
Time: Friday 8:30 AM - 9:30 AM

OWASP published a new API top 10 list in July of 2023. There are some old favorites hanging around (I'm looking at you Authentication) and some new comers like Server Side Request Forgery and Unrestricted Access to Sensitive Business Flows. This session will cover the new top 10 list and take a...

Room: NileTrack: SecurityTags: Programming Principles, Security, Code QualityFormat: General SessionLevel: Introductory and overview
11:00 AM

Practical Auth(entication|orization) for Developers

Presented by: Seth Petry-Johnson
Time: Friday 11:00 AM - 12:00 PM

It's never been easier to launch a website or expose services over HTTP. It's also never been easier to make rookie mistakes in the authentication of those services. This session is designed for the average developer/architect that's struggling to make sense of modern authentication options. You'll...

Room: NileTrack: SecurityTags: Programming Principles, SecurityFormat: General SessionLevel: Introductory and overview