BCS SPA specialist group.
Watch the video
Synopsis
Having many services exposed to the internet and letting them properly handle login and authentication is a non-trivial task for developers. Add basic security features like CSRF-prevention to this and you have a handful of work to do.
Enter OWASP Application Gateway (OAG). OAG acts as a reverse proxy for you and is able to handle OpenID Connect. It provides a central and controlled way to secure your application services.
In this talk the OWASP Application Gateway project leads will introduce you to OAG, explain its main features as well demo out-of-the-box usage and customization by integrating it in your own SpringBoot project.
About the speakers
Gian-Luca Frei is the initiator and leader of the OWASP Application Gateway project. Besides his open-source contributions, he is a security engineer at Zühlke in Bern. He has in-depth experience with systems with the highest security standards, such as e-banking portals and inter-banking payment protocols. In addition to his professional engagements, Gian-Luca has done research on modern cryptographic protocols for which he has received the ISSS Excellence Award 2019.
Padi Steger loves application security and software development. After more than 20 years in the industry he appreciates every opportunity to get his hands dirty. With OWASP Application Gateway he combines coding and security in what he thinks a pleasant way. He is OWASP Switzerland Chapter Lead and co-project lead of the OWASP Application Gateway. In his professional live he works as a Principal Consultant at Zühlke Engineering in Zürich for selected clients. He is CISSP (certified information systems security professional) und CCSP (certified cloud security professional).
Our events are for adults aged 16 years and over.
For overseas delegates who wish to attend the event, please note that BCS does not issue invitation letters.
This event is brought to you by: BCS SPA specialist group
