A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


JavasCrypto: How we are using browsers as Cryptographic Engines - Kat Traxler Cyphercon 2.0 (Hacking Illustrated Series InfoSec Tutorial Videos)

JavasCrypto: How we are using browsers as Cryptographic Engines
Kat Traxler
katireneMpls
Cyphercon 2.0

In order to achieve end-to-end encryption, build zero-knowledge systems, and provide users with the convenience they are accustomed to, Web 2.0 is pushing cryptography to your browser. From secure e-mail to credit card transactions, our security is increasingly dependent on the integrity of client side javascript. The opportunities for exploit are many but with every new vulnerability has come a potential mitigation, all in an attempt to strong arm these sensitive operations into the browser, limit an applications liability, and keep us users happy. In my presentation, we will look at the fundamental nature of javascript, web browsers, and conclude what level of protection, in the best of circumstances, JavasCrypto affords the end user.

Kat Traxler takes is your InfoSec spy in the Javascript development world. By day she is a Web Application Penetration Tester, by night she blends in at dev meetups, taking the free stickers and acting as your eyes and ears. If Web 2.0 is a train wreck, she wants a front seat.

Back to Cyphercon 2.0 video list

Printable version of this article

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2016, IronGeek
Louisville / Kentuckiana Information Security Enthusiast