Please enjoy this free video from NCDevCon 2016: Watch Now
CFML: Code Security Best Practices
Oh no, I've been hacked! Have you ever uttered these words? Do you hope to never have to utter these words? If you said yes to either question, then this is one session you don't want to miss! In this session we'll cover best practice techniques you can use every day in your ColdFusion application development to bring peace of mind using layered security best practices like obfuscation, encryption, session management and authentication. You will learn: * What obfuscation is, and when, where and how to use it for layered security. * What encryption is, and when, where and how to use it for layered security * How to build your own session management solution that follows layered security best practices. * How to leverage the browser to provide secure authentication mechanisms, including federated and multi-factor authentication. * How to think like a hacker, and how to avoid the common pitfalls developers run into when building secure applications. Our aim in this session is to provide you with the tools and techniques you'll need to write highly secure code, protect your customers identifiable data and ensure a secure solution. This version of my talk is solely focused on ColdFusion and will demonstrate techniques using only ColdFusion.
About Trip Ward
Trip’s a Senior Technical Specialist for the Government Division at ICF International. Focusing on Application Design and Architecture and processes to be productive quickly in multi developer teams and how to deploy those applications with confidence. Trip works with multiple development teams to deliver scalable ColdFusion web applications on both Windows and Linux Platforms for many government sectors.