Cross-Site Scripting: What is it, and how can you protect your site from becoming a victim?
Plaster Student Union 317
Cross-site scripting (also referred to as XSS) is currently the number one form of Web attack. From Google to the websites of Obama and Clinton, it seems that no one is immune to attack. In this presentation we’ll explore what cross-site scripting is and how an attack occurs, as well as demonstrate a live exploit. We’ll then discuss why cross-site scripting can be damaging for a website, and we’ll look at methods one can use to prevent a cross-site scripting attack.
Presenter
Paul Gilzow
Programmer/Analyst-Expert,
University of Missouri
Paul Gilzow has been a Web applications programmer for the University of Missouri for the past five years. He currently works for the department of Web Communications. Certified by the SANS Institute in Web Application Security (GWAS), Gilzow frequently works with the campus IT security department to deliver presentations on Web application security topics to fellow developers on campus.
Technical: Propeller Hats Required
Sessions in Same Track
-
Wednesday,
8:30AM
High in the Clouds: Purposing WebApps for Education -
Wednesday,
8:30AM
Higher Ed on Rails -
Wednesday,
9:45AM
Agile Web Development -
Wednesday,
9:45AM
Using Our Web CMS to Produce Academic Catalogs -
Wednesday,
10:45AM
Cross-Site Scripting: What is it, and how can you protect your site from becoming a victim? -
Wednesday,
10:45AM
Test-driven Development for Web Applications -
Wednesday,
2:00PM
Avoiding the JavaScript:void(‘’): Building Web Apps That Work Anywhere and Everywhere -
Wednesday,
2:00PM
Driving a Hybrid: The Basics of Adobe AIR -
Wednesday,
3:15PM
Adding Interactive Content to Your Website Using JQuery -
Wednesday,
4:15PM
HTTP 201 - Or, What Happens When Your User-Agent Isn't A Browser?