Loading…
This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Monday, February 29 • 10:20 - 11:10
Secure Authentication and Session Management in Java EE

Sign up or log in to save this to your schedule and see who's attending!

Broken authentication and session management is among the most prominent security vulnerabilities according to The Open Web Application Security Project Foundation (the OWASP Top 10). Many developers assume that it works out of the box in Java EE. Unfortunately that’s not the case. Even though Java EE provides support for secure authentication and session management, it’s still developers’ responsibility to use it correctly.

In live demos, you’ll learn how to hijack a session by exploiting common security vulnerabilities on the client-side, on the server-side, and in transport. You’ll also find out about common mistakes and omissions related to authentication and session management along with the ways to protect your applications using Java EE mechanisms.

Speakers
avatar for Patrycja Wegrzynowicz

Patrycja Wegrzynowicz

Patrycja Wegrzynowicz is a software visionary and expert specialized in automated software engineering and Java technologies. She is the founder and CTO of Yonita, Inc., a California-based start-up focused on automated detection and refactoring of software defects, including security vulnerabilities, performance and concurrency anti-patterns, and database issues. Patrycja is a regular speaker at major academic as well as industrial... Read More →


Monday February 29, 2016 10:20 - 11:10
Room 8

Attendees (14)