10 dos and don'ts for securing your web application

Hallvar Helleseth (EVRY)

Lightning talk - in English

Approved_talk approved

The talk will give pointers and compressed facts of things that are important to do and not do in order to have your web application more secure. Some of the points are related to the process and others are related the technical implementation. The points apply to the entire software stack.

The goal is to have the listeners learn something new that they can use immediately when they get back to work after the conference.

The dos and don'ts are selected from my experience implementing parts of the online and mobile bank at a major norwegian bank and from experience getting new applications developed for Rolls-Royce Civil Aerospace approved through a rigorous security review process.