Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Lessons from Trusting JavaScript Cryptography - Biting into the Forbidden Fruit

OWASP Foundation via YouTube

Overview

Explore the controversial world of JavaScript cryptography in this 59-minute conference talk from AppSecEU 2014. Delve into the testing of high-profile crypto libraries, applications, and systems, uncovering hilarious bugs and security vulnerabilities. Compare these findings to issues in established cryptography implementations like OpenSSL and GnuPGP. Question long-held beliefs about JavaScript crypto's inherent insecurity and examine potential fixes. Gain insights into various attack vectors, including XSS, man-in-the-middle attacks, PRNGs, and timing side-channels. Leave with an updated, opinionated perspective on the state of JavaScript cryptography and its potential for security comparable to other implementations.

Syllabus

Krzysztof Kotowicz - Biting into the Forbidden Fruit. Lessons from Trusting JavaScript Crypto.

Taught by

OWASP Foundation

Reviews

Start your review of Lessons from Trusting JavaScript Cryptography - Biting into the Forbidden Fruit

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.