Explore the intricacies of securely implementing Java Cryptography Architecture in this 30-minute conference talk from AppSecUSA 2018. Delve into the challenges posed by ambiguous documentation, overwhelming algorithmic choices, insecure defaults, and poor architectural decisions. Learn how to properly utilize various cryptographic primitives, including Random Number Generators, Encryption/Decryption algorithms, HMACs, and digital signatures, through real-world code examples. Examine both flawed and secure implementations to identify common pitfalls and understand best practices. Gain insights on future-proofing cryptographic systems in applications from Mansi Sheth, Principal Security Researcher at CA Veracode, as she shares her expertise in breaking, defending, and building secure applications.
Overview
Syllabus
Are we using Java Crypto API Securely ? - Mansi Sheth - AppSecUSA 2018
Taught by
OWASP Foundation