When: Thursday, September 7, 2006, 5:30 - 7:30pmWhere: Adesso SystemsOne Liberty Square (Kilby St & Water St)7th FloorBoston, MA http://www.adessosystems.com/Map: http://tinyurl.com/qrrkf
If you want free pizza, send me an RSVP using the contact formhere (http://blog.benday.com/contact.aspx) by 1pm on 9/7.
Talk: The Why and How of Secure Code Reviews
Abstract: Writing secure code should be the goal of every development shop. Security can never be an add-on at the end of a project, but must be part of the design and development process throughout the software development lifecycle. As you develop the code, or have finished the development, how well do you know you if you followed the best practices for writing secure code? This session will cover the common issues and mistakes to look for as you do a secure code review on your own development code. We will cover authentication, authorization, application configuration, cryptography, and many other categories that can be difficult to get right in writing secure code.