Session Details

Cross-site Scripting: What Is It, and How Can You Protect Your Site from Becoming a Victim?

TPR5 Technical: Propeller Hats Required Track

Mitchell

Monday,

2:45

–

3:30

Cross-site scripting (also referred to as XSS) is still the number one form of Web attack. From government websites to Google and Apple, it seems that no one is immune. In my presentation, we’ll explore what cross-site scripting is, how an attack occurs, and demonstrate a live exploit. We’ll then discuss why cross-site scripting can be damaging for a website, and we’ll look at methods one can use to prevent a cross-site scripting attack.

Presenter

Paul Gilzow
Programmer/Analyst-Expert, University of Missouri

Paul Gilzow has been a Web applications programmer for the University of Missouri for the past six years. He currently works for the department of Web Communications. Certified by the SANS Institute in Web Application Security (GWAS), Paul frequently works with the campus IT security department to deliver presentations to fellow developers.

Technical: Propeller Hats Required

Sessions in Same Track

Monday, 8:30AM
HTTP 101 - Or, What Exactly IS Under the Hood?
Monday, 9:45AM
jQuery: An Introduction
Monday, 10:45AM
Writing Customized Web Applications with Django
Monday, 1:30PM
Dos Servicios Web, Por Favor
Monday, 2:45PM
Cross-site Scripting: What Is It, and How Can You Protect Your Site from Becoming a Victim?
Monday, 3:45PM
Using XML to Create an Online Course Catalog
Tuesday, 8:30AM
A Model for Centralized Web Hosting and Development
Tuesday, 9:45AM
Developing a News Microsite: WordPress at Texas A&M's Campus in the Middle East
Tuesday, 10:45AM
An Argument for Semantics—Why Developers Should Give a Hoot about OWL
Tuesday, 1:30PM
Augmented Reality—Merging the Virtual World into Ours
Tuesday, 2:45PM
Show Me the Data: Usability-driven Web Design