SecAppDev 2020 Faculty
Staff Information Security Engineer, Google
Lukas is a staff information security engineer at Google with 10+ years of industry experience who frequently speaks at international infosec and developer conferences. He's passionate about securing web applications from common web vulnerabilities and leads the Google-wide Content Security Policy (CSP) adoption effort. Lukas also co-authored the CSP3 W3C specification and is the creator of the CSP Evaluator.
Securing web apps with modern platform features
Web applications have historically been plagued by vulnerabilities which allow attackers to compromise the session of a logged-in user. Luckily, new security mechanisms in web browsers offer ways for developers to protect their applications
Web security Thursday March 12, 09:00 - 10:30
The ultimate guide to Content Security Policy
Even with hardened frameworks and thorough security reviews, there's no guarantee that an application is free of XSS. In this session, I'll present different flavors of CSP, which can serve as a robust defense-in-depth mechanism against XSS.
Web security Wednesday March 11, 14:00 - 15:30