Session

The Truth about XSS

Chris Shiflett, Principal, OmniTI Computer Consulting, Inc.

Track: Security
Date: Wednesday, July 26
Time: 4:30pm - 5:15pm
Location: F150

Cross-Site Scripting (XSS) persists as one of the most common web application security vulnerabilities, yet many web developers still don't appreciate the danger. This talk focuses on why you should care. You'll see demonstrations of real-world XSS attacks, including some that use Ajax technologies to deliver devastating blows to your security, and you'll also learn how to apply simple techniques and practices that can eliminate XSS from your list of worries.