Explore a 40-minute conference talk that unveils the 10 most common mistakes hackers exploit in software systems. Learn practical measures to protect your applications from data breaches and security vulnerabilities. Discover how to prevent unsanitized user input, unsafe regex usage, and abusive requests. Gain insights into proper Spring Security configuration, avoiding secrets in source code, and the importance of certificate checking. Understand the critical role of intrusion detection in maintaining robust security. Delivered by Joe Kutner, who manages the Java experience at Heroku, this Devoxx presentation equips developers with essential knowledge to safeguard their applications against potential cyber threats.
Overview
Syllabus
JOE KUTNER 10 MISTAKES HACKERS WANT YOU TO MAKE
asymmetric problem
UNSANITIZED USER INPUT
UNSAFE REGEX
FAILURE TO PREVENT ABUSIVE REQUESTS
MISCONFIGURING SPRING-SECURITY
MISTAKE & SECRETS IN YOUR SOURCE CODE
DISABLING CERTIFICATE CHECKING
LACK OF INTRUSION DETECTION
Taught by
Devoxx
