Explore the complex landscape of browser security in this 42-minute conference talk by Robert Hansen, Director of Product Management at WhiteHat Security. Delve into the critical vulnerabilities of modern browsers, learn about potential solutions for enhancing security, and understand the trade-offs users face when prioritizing online safety. Examine the challenges of balancing anonymity and privacy, the impact of big data on security practices, and the ongoing debates surrounding Do Not Track (DNT) implementation. Gain insights into the scale of security problems, competing demands for bandwidth, and the implications of various security approaches, including the "scorched earth" method. Discover how WhiteHat Security addresses these challenges and equip yourself with knowledge to make informed decisions about browser security in an increasingly hostile online environment.
Overview
Syllabus
Intro
Scale of our problem (not to scale)
Security
Shrinking bandwidth: managing competing demands
You can't start a project without a goal
Anonymity vs. Privacy
Average websites today
Command execution
Data exfiltration and privacy
Man in the middle
Scorched earth approach
Big business drives big data
DNT: number one complaint
DNT by the numbers: Part II
Payoffs? What payoffs?
The battle lines are drawn
What's the "so what?"
What is White Hat doing?
Taught by
OWASP Foundation
