Tutorial

Essential PHP Security

Chris Shiflett, Principal, OmniTI Computer Consulting, Inc.

Track: PHP
Date: Tuesday, July 25
Time: 1:30pm - 5:00pm
Location: D136

This tutorial teaches you how to develop secure web applications with PHP. You'll see attacks such as Cross-Site Scripting (XSS) and SQL Injection demonstrated, and you'll learn effective safeguards that you can use to prevent such attacks. Other topics covered include:

  1. Session Hijacking
  2. Session Fixation
  3. Cross-Site Request Forgeries
  4. HTTP Response Splitting
  5. Email Injection
  6. Security Principles
  7. Best Practices

This tutorial is a must for PHP developers who need to be aware of web application security concerns.