If you want free pizza, send me an RSVP using the contact form
here (http://blog.benday.com/contact.aspx) by 1pm on 9/7.
Talk: The Why and How of Secure Code Reviews
Abstract: Writing secure code should be the goal of every development shop. Security can never be
an add-on at the end of a project, but must be part of the design and development process
throughout the software development lifecycle. As you develop the code, or have finished
the development, how well do you know you if you followed the best practices for writing
secure code? This session will cover the common issues and mistakes to look for as you
do a secure code review on your own development code. We will cover authentication,
authorization, application configuration, cryptography, and many other categories that can be
difficult to get right in writing secure code.