Trusted Types: End-to-End Injection Safety at Scale

Explore a comprehensive approach to combating Cross-Site Scripting (XSS) vulnerabilities in this 36-minute conference talk from OWASP Global AppSec Tel Aviv. Learn how Google's security team has achieved high-level safety against XSS and related problems by integrating tools that make it easier for developers to produce secure software. Discover practical implementations and gain valuable advice on achieving similar results using widely-used, open-source stacks and new browser mechanisms. Presented by Krzysztof Kotowicz, a web security researcher and Senior Software Engineer at Google, and Mike Samuel, a Software Engineer at Google specializing in improving libraries and programming languages for secure software development.