[Owasp-austin] Come join me at Cross-Site Request Forgery attacks and mitigation in domain vulnerable to Cross-Site Scripting on Austin OWASP
events at austinowasp.ning.com
Mon Jan 26 11:35:32 EST 2009
Austin OWASP: Open Web Application Security Project in Austin!
James Wickett has invited you to the event 'Cross-Site Request Forgery attacks and mitigation in domain vulnerable to Cross-Site Scripting' on Austin OWASP!
Check out "Cross-Site Request Forgery attacks and mitigation in domain vulnerable to Cross-Site Scripting" on Austin OWASP
Time: January 27, 2009 from 11:30am to 1pm
Location: National Instruments
Organized By: James Wickett:
When: January 27, 2009, 11:30am - 1:00pm
Topic: Cross-Site Request Forgery attacks and mitigation in domain vulnerable to Cross-Site Scripting
The presentation will include the following topics in addition to a hands-on demonstration for each portion of the talk:
1. The statelessness of the internet
2. How the naive attack works
3. A mitigation strategy against this naive attack
4. An combined CSRF/XSS attack that defeats this mitigation strategy
5. And finally suggestions for mitigation of the combined attack
Who: Ben L Broussard
I am new in the world of Web App security; my passion started when I took a continuing education class related to Web App security. My background is in Number Theory with an emphasis in Cryptography and especially Cryptanalysis. I am an avid puzzler, taking 2nd place (along with my teammates) at UT in this year's Microsoft College Puzzle Challenge. I am currently a developer (database and web apps) for the Accounting department of The University of Texas at Austin.
Where: National Instruments, 11500 N Mopac, Building C which is the tallest building on campus (8 levels). There will be signs posted in the lobby to direct you where to go and the receptionists will be able to assist you as well. See directions to National Instruments.
Cost: Always Free
Questions or help with Directions... call: Scott Foster 512-637-9824.
See more details and RSVP on Austin OWASP:
If your email program doesn't recognize the web address above as an active link,
please copy and paste it into your web browser
About Austin OWASP
To control which emails you receive on the corner, or to opt-out, go to:
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-austin