Loading…
RVAsec 2018 has ended
View analytic
Friday, June 8 • 10:10am - 11:00am
How to REACT to JavaScript [In]Security

Log in to save this to your schedule and see who's attending!

Feedback form is now closed.
According to a StackOverflow survey, JavaScript is the most commonly used programming language on earth. Today just the client-side JavaScript ecosystem has over 50 frameworks available, and JavaScript is successfully conquering the server-side space. The amount of application logic that is executed in the browser is growing every year, which means the attack surface is growing as well. Which security issues are most common in JavaScript applications? Do new frameworks provide the security controls needed to protect the growing amount of client-side code? In this talk we will answer these questions and, as an example, we will look at one of the hottest JavaScript frameworks today – React. We will discuss its new features like components and server-side DOM rendering, analyze React’s security posture and demonstrate existing vulnerabilities.

Speakers
avatar for Ksenia Peguero

Ksenia Peguero

Sr. Research Lead, Synopsys
Ksenia Peguero is a Sr. Research Lead within Synopsys Software Integrity Group. She has eight years of experience in application security and five years in software development. Ksenia is a subject matter expert in static analysis and JavaScript frameworks and technologies. Before... Read More →


Friday June 8, 2018 10:10am - 11:00am
Ballroom