Chris Varenhorst (Dropbox)
Jan/31 | Thu | 08:00PM-09:00PM | 4-231 |
Enrollment: Unlimited: No advance sign-up
This talk will be a survey of some of the more obscure types of web application vulnerabilities. I'll include live demos of sites whenever appropriate. Topics include clickjacking, fake mouse pointers, browser history leaking through cache timing, login csrf attacks, etc. We'll also cover how to defend against all these attacks (when its possible) and general best practices.
This class is one of six being offered by MIT alumni who currently work at Dropbox.
Sponsor(s): Student Information Processing Board, Electrical Engineering and Computer Science
Contact: Chris Varenhorst, sipb-iap-dropbox@mit.edu