Handouts - SecAppDev 2014

George Danezis

• Principles of computer security
• Access control
• Modern privacy-friendly computing
• Selective disclosure for identity management
• Smart metering
• Online cryptographic currencies

Frank Piessens

• Low-level software security: attacks and countermeasures

Bart De Win

• Secure Development LifeCycles
• SDLC workshop

Jim Manico

• Top ten proactive web controls
• Entity authentication and session management
• Advanced XSS defense
• Form processing and workflows

Ken van Wyk

• Security testing fundamentals
• Security tools hands-on
• Hands-on mobile apps
• Hardening mobile apps

Jim DelGrosso

• Architectural analysis
• Threat modeling

Bart Preneel

• Cryptographic algorithms
• Entity authentication
• Public Key Infrastructures fundamentals
• Network security protocols
• Post-Snowden cryptography
• Cryptography best practices

Philippe De Ryck

• The Web's security model

Tom Van Cutsem

• Writing robust JavaScript code

Thomas Herlea

• SSL/TLS hands-on

Steven Murdoch

• Security economics and psychology
• Secure payment architecture
• Online banking security

Nick Nikiforakis

• Browser fingerprinting

Lieven Desmet

• Recent web security technology
• Web-platform security guide

Jan Van den Bergh

• Authorization with OAuth 2.0
• OAuth 2.0 hands-on
• Short OAuth 2.0 reference