Back To Schedule
Saturday, February 21 • 11:00am - 11:50am
Security in the Browser

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

I've worked on some very sensitive front-end codebases (at banks, pharma, defence and others) during those times I think I've come across every type of bad (and lots of good!) security practice. In this session I'll share some of those experiences and lessons, and talk about the part security plays in delivering high quality client-side JavaScript.


- Why you don't control your run-time environment and why that's such a problem.
- Some inherent problems with JavaScript's security model and design
- How modern API's are changing JavaScript's threat model
- Patterns and anti-patterns in front-end penetration testing and auditing
- Why security it's so important to high quality code, and why you're probably not thinking about it enough

avatar for Joe Pettersson

Joe Pettersson

McKinsey & Company
Joe's Head of UI Engineering at McKinsey & Company, specifically at McKinsey Digital Labs. He's passionate about user-interfaces, user-experiences and building kick-ass tools and products. He's been writing JavaScript since the late 1990's, and has a passion for talking about it publicly... Read More →

Saturday February 21, 2015 11:00am - 11:50am CST