Hacked in 60 seconds : coding and site building with security in mind

Application security is everyone's business. This session will hope to get past the jargon and acronyms and explain the most common forms of security risks in plain english, using examples where possible.
Who this session is for
Nearly everyone working on a site should be aware of security risks and how to avoid introducing them. This session will address the role of

  • Site builders;
  • Content editors;
  • Developers; and
  • Themers

in making sure your project is delivered with minimum risk.
Covered in the session
Coding and configuration to protect against common threats such as:

  • XSS
  • CSRF
  • SQL injection

About the presenter
Lee Rowlands (larowlan):

  • has been working with Drupal for over 5 years;
  • is a member of the Drupal security team;
  • is a top-20 contributor to Drupal 8 core; and
  • is the core maintainer of comment, forum and custom block modules
Coding & Development
Experience level: