YoVDO

XSS, CSRF, CSP, JWT, WTF? IDK - JSConf Iceland

Offered By: JSConf via YouTube

Tags

JSConf Courses REST APIs Courses Web Application Security Courses Security Audits Courses JWT (JSON Web Tokens) Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Learn about crucial web application security concepts in this 28-minute JSConf Iceland 2018 talk. Explore the evolution of security threats beyond SQL injections, focusing on vulnerabilities in modern Single Page Applications and front-end frameworks. Dive into essential abbreviations like XSS, CSRF, CORS, JWT, and HTTPS, understanding their significance in protecting both developers and users. Discover practical strategies to safeguard against the new generation of security risks, covering topics such as cookies, JSON Web Tokens, social network vulnerabilities, and clickjacking prevention. Gain insights into security best practices, including the implementation of Content Security Policy (CSP) and the importance of regular security audits.

Syllabus

Intro
HTTPS
JWT
Cookies
JSON Web Tokens
Social Network
CSRF
Target Blank
No Opener
Little Bobby
Myspace worm
CSS inline CSS
XSS demo
JSONP
CSP
CSP should be your safety net
Avoid clickjacking
Security audits
Summary


Taught by

JSConf

Related Courses

Deno - Next Generation JavaScript Runtime
JSConf via YouTube How I Got 1600 Stars on GitHub in 2 Months of Open Source Work
JSConf via YouTube Is it Okay to Pursue Functional Programming on Frontend - JSConf Korea
JSConf via YouTube If - Extensible Design - Return "Work Life Balance"
JSConf via YouTube React x Web Components - How It Is and How It Could Be
JSConf via YouTube