Java Web Application Security: Develop. Penetrate. Protect. Relax.
Wednesday, 5:00 PM MDT - Westminster I
In this session, you'll learn how to implement authentication in your Java web applications using Spring Security, Apache Shiro and good ol' Java EE 6 Container Managed Authentication. You'll also learn how to secure your REST API with OAuth and lock it down with SSL.
After learning how to develop authentication, I'll introduce you to OWASP, the OWASP Top 10, its Testing Guide and its Code Review Guide. From there, I'll discuss using Zed Attack Proxy to verify your app is secure and commercial tools like webapp firewalls and accelerators.
About Matt Raible
Matt Raible is a Java Champion, Web Developer, and Developer Advocate at Okta. He loves to architect and build APIs and slick-looking UIs using CSS + JavaScript. When he's not advocating Okta and open source, he likes to ski with his family, drive his VWs and enjoy craft beer.
More About Matt »