BACK TO SPEAKERS
He can often be found talking about web security and performance online and helping organisations better deploy both. Founder of report-uri.io, a free CSP report collection service, and securityheaders.io, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.
TUTORIAL: The Best TLS Training in the World (2-day session)
Technical Level (3 being the highest score): 2
Spend two days to understand both the theory and practice of SSL/TLS and Internet PKI
On day 1, we’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!
On day 2, we will start with the basics and the theory, then discuss how the PKI is implemented in the real world, and finish with a practical example of a realistic private certification authority.
Find out more here: https://www.feistyduck.com/training/the-best-ssl-and-tls-training-in-the-world
Crash, Burn, Report
Technical Level (3 being the highest score): 1
With the launch of the Reporting API any browser that visits your site can automatically detect and alert you to a whole heap of problems with your application. DNS not resolving? Serving an invalid certificate? Got a redirect loop, using a soon to be deprecated API or any one of countless other problems, they can all be detected and reported with no user action, no agents, no code to deploy. You have one of the most extensive and powerful monitoring platforms in existence at your disposal, millions of browsers. Let's look at how to use them.
In this talk we'll look at how to configure the browser to send you reports when things go wrong. These are brand new capabilities the likes of which we've haven't seen before and they're already supported in the world's most popular browser, Google Chrome. We'll look at how to receive reports and how to make use of them after having the browser do the hard work.
Presentation video can be found HERE
Scott Helme
Report URI
Scott Helme is a security researcher, consultant and international speaker.He can often be found talking about web security and performance online and helping organisations better deploy both. Founder of report-uri.io, a free CSP report collection service, and securityheaders.io, a free security analyser, Scott has a tendency to always be involved in building something new and exciting.
TUTORIAL: The Best TLS Training in the World (2-day session)
Technical Level (3 being the highest score): 2
Spend two days to understand both the theory and practice of SSL/TLS and Internet PKI
On day 1, we’ll focus on what you need in your daily work to deliver best security, availability and performance. And you will learn how to get an A+ on SSL Labs!
On day 2, we will start with the basics and the theory, then discuss how the PKI is implemented in the real world, and finish with a practical example of a realistic private certification authority.
Find out more here: https://www.feistyduck.com/training/the-best-ssl-and-tls-training-in-the-world
Crash, Burn, Report
Technical Level (3 being the highest score): 1
With the launch of the Reporting API any browser that visits your site can automatically detect and alert you to a whole heap of problems with your application. DNS not resolving? Serving an invalid certificate? Got a redirect loop, using a soon to be deprecated API or any one of countless other problems, they can all be detected and reported with no user action, no agents, no code to deploy. You have one of the most extensive and powerful monitoring platforms in existence at your disposal, millions of browsers. Let's look at how to use them.
In this talk we'll look at how to configure the browser to send you reports when things go wrong. These are brand new capabilities the likes of which we've haven't seen before and they're already supported in the world's most popular browser, Google Chrome. We'll look at how to receive reports and how to make use of them after having the browser do the hard work.
Presentation video can be found HERE