The latest OWASP-Top-Ten ranks “Cryptographic Failures” as the 2nd worst security problem currently facing software engineers today. In this webinar AppSec experts Jim Manico (OWASP Top Ten contributor), Farshad Abasi (OWASP Chapter Lead), adn Julius Musseau will discuss why this is the case, adn offer the best practices and resources for developers trying to avoid such failures in their own systems.
As the very recent (and very serious) CVE-2022-21449 shows-this problem never goes away! it’s hard for software practitioners to stay up-to-date, because new critcal cryptographic weaknesses and configuration disasters are discovered and disseminated every year, and seemingly tiny benign mistakes can be game over.
Should you use Argon2 or bcrypt? When should you salt things? What parameters should you feed into your TLS endpoints? Anything to be careful about with JWT?
Come to our webinar to learn the answers, and more importantly, to learn the right resources for finding next year’s answers!
Contributor to the OWASP Top Ten
Cyber and open source guru
Co-Founder Shift Left Security
One of Europe’s leading AppSec experts
Stay on top of the real risk of open source at any time.
Avoid false positives and get sophisticated upgrade guidance based on risk, compatibility and popularity.More on Continuous Protection
Detect and defend against known-vulnerabilities at runtime. The only SCA to do so.
The quickest way to respond to an imminent threat like log4j with CVE-2021-44228.More on Run-time Protection
CodeGreen is an early-warning defence for your in-house development and integrates directly into GitHub and BitBucketMore on BitBucket and Github apps