When SameSite Cookie is not enough
Language
English
Level
Intermediate
Length
25 minutes
Type
devcast
Add Share
About
Back-end • May 2021
When SameSite Cookie is not enough
Let's take a look at some advanced security topics. We'll look at the concepts of CSRF (Cross-site Request Forgery) and SSRF (Server-side Request Forgery) and what a same-site cookie does. In some cases using same-site cookies is just not enough, so what else can we do?
About speaker
Jim Manico
FounderManicode Security
Jim Manico is the founder of Manicode Security where he trains software developers on secure coding and security engineering. He is also an investor/advisor for Nucleus Security, BitDiscovery, Secure Circle and Inspectiv. Jim is a frequent speaker on secure software practices, is a member of the Java Champion community, and is the author of "Iron-Clad Java: Building Secure Web Applications" from Oracle Press. Jim also volunteers for the OWASP foundation as the project lead for the OWASP Application Security Verification Standard and the OWASP Cheatsheet Series.
Details
Language
English
Level
Intermediate
Length
25 minutes
Type
devcast
Explore more