YoVDO

Lessons in Securing Internal Apps - AppSecCali 2019

Offered By: OWASP Foundation via YouTube

Tags

Application Security Courses Authorization Courses Security Engineering Courses Web Application Firewalls Courses Content Security Policy Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore strategies for securing internal applications in this 44-minute conference talk from AppSecCali 2019. Learn how to tackle the unique challenges of locking down sensitive internal tools, dashboards, and control panels across diverse technical stacks. Discover a scalable approach to internal application security, including establishing a useful mental model, implementing authentication and authorization basics, deploying Content Security Policy, leveraging SameSite cookies for entry point regulation, utilizing Web Application Firewalls for detection and response, and using internal apps to train new security engineers. Gain insights from both successful and unsuccessful approaches as Hongyi Hu, Security Engineer at Dropbox, shares valuable lessons and humorous anecdotes from his experience leading the Application Security team.

Syllabus

AppSecCali 2019 - The Call is Coming From Inside the House: Lessons in Securing Internal Apps


Taught by

OWASP Foundation

Related Courses

Authentication & Authorization: OAuth
Udacity Rails with Active Record and Action Pack
Johns Hopkins University via Coursera Desarrollo de Aplicaciones Web: Seguridad
University of New Mexico via Coursera Web Application Development: Security
University of New Mexico via Coursera Managing Identity
Microsoft via edX