Web Application Security Testing: The What, Why, Who & How? – EuroSTAR Conference (24-27 Nov. Dublin)

declan-oriordan-thumbnailAt this year’s EuroSTAR conference on software Testing (Dublin, Nov 24-27) I’ll be discussing web application security and how it is completely different to traditional mainframe testing. If you not sure what SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery are, or a host of other ways of attacking your system, then I’d urge you to come along to my talk at 4:00pm on Wednesday 26th November.  In the talk I’ll cover:

  • What web application security testing is
  • Why it’s important
  • Who should be doing it
  • How it should be done

I’ll even be giving away copies of my Application Security Testing procedures.

Please  click here for additional information and to register for EuroSTAR 2014.

I look forward to meeting you at the conference.

 

Declan O’Riordan
Head of Security Testing, T&VS

 

Abstract: EuroSTAR Conference

eurostar-2014-logo
 

A penetration testing expert is better at pen-testing than me, but should I simply delegate application security to specialists and network firewalls? Actually no, I shouldn’t and neither should anyone else involved in the systems development lifecycle.

For years I treated security testing as something akin to black magic beyond my comprehension and penetration testers as technical wizards who could cast out evil hacking spells. Obviously that was daft, but it took some effort to see what was really happening behind the smoke and mirrors of application security, and to de-mystify it for my colleagues.

Follow the journey that led me to believe every well-formed tester can and must have a basic understanding of what application security is, why it is important, who should be doing it, and how.

For a more in-depth look at this topic you may find my white paper on Application Security Testing a useful read.

 Video Trailer

 

 

 

2018-02-23T12:00:55+00:00 22nd October, 2014|Security, Software Testing|
T&VS NEWSLETTER SIGN-UP
The T&VS newsletters inform you about industry news, events and information from T&VS. No spam, we promise and it is always easy to unsubscribe.
We never share your information. Read our Privacy Statement
Interested in Formal Verification?
Then why not attend the TVS Formal
Verification Bootcamp training?
The 2-day Formal Verification Bootcamp is for design and verification engineers looking to enhance their knowledge of formal verification and to learn how to write effective assertions to find and fix bugs. The course is a mix of presentations and hands-on development exercises.
Bootcamp Enquiry Form
If you are interested in receiving additional information on the course then simply email Mike Bartley (TVS CEO and Course Leader) by entering your details below.
Interested in SystemC?
FREE SystemC UVM Library Now Available
The TVS SystemC UVM library closely mimics UVM but gives users a license free UVM-based verification environment.
Have your product requirements been successfully tested and implemented?
Find out how asureSIGN can help you implement a successful Requirements Driven Verification and Test Strategy by visiting asureSIGN or enter your details and we will be in touch.
Course Dates and Pricing
To receive additional information, including course dates and pricing, please contact our training team who will be happy to help.
Download Request
Please complete the following form then click 'submit' to access the download.
Presentation Request
Please complete the following form then click 'submit' to gain access to the presentations.
DOWNLOAD REQUEST
Please complete the following form and then click 'submit' to gain access to the download.
FREE QA ASSESSMENTS
Did you get what you were looking?

Let the testing experts help. We will run a FREE QA assessment which will include our top 5 recommendations to help maximise your testing.