Explore a thought-provoking keynote address from AppSecEU 2014 that delves into the complexities of trust in the modern web environment. Examine the challenges of relying on code, devices, infrastructure, and institutions not created by oneself, and the potential consequences when that trust is betrayed. Analyze gaps in current trust and security scope models, and consider strategies for building a more trustworthy web without the need to create every component from scratch. Learn from Wendy Seltzer, Policy Counsel and Technology & Society Domain Lead at the World Wide Web Consortium (W3C), as she shares insights on privacy, security, and social web standards. Discover the importance of transparency, web of trust, and code pinning in improving security for web applications and fostering a more secure digital landscape.
Overview
Syllabus
Introduction
Trust
Ken Thompson
Security as Delegation
Trustworthy Environments
Examples
Disconnect
Trusting Governments
Improving Security
Web Apps
Lovebit
Transparency
Web of Trust
Code Pinning
Questions
Taught by
OWASP Foundation