Web Security for Complete Beginners (and other people)

[mozmark]

I was talking to a bloke here called Pete. He said he'd like a primer on Web Security.

I know web security. Happy to do a talk.

[Codesleuth]

Security is worthy of a spotlight at any time and I am really happy you'd like to talk about it!

Do you have a talk ready already or do you need some time to prepare this? I would love to propose you speak at the next event (March) but we can be flexible if you need more time.

[mozmark]

I don't need to prepare content. LMK how long you want to the talk to be and I'll tailor some slides.

March 10th, right? I'll check I'm free.

[mozmark]

March 10th, right? I'll check I'm free.

I am free. It's in my calendar.

[Codesleuth]

We'd love something comprehensive that crosses over with JS (which I expect it will 😄) and make security the focus of the event. If you can fill 30-45min we'll have you as headline speaker

If you have anything else in mind regarding security that you think we could also cover, please let us know. Perhaps there's someone else in the community who can take the opportunity to speak about that in a shorter talk, to complement your own talk. Maybe it's a bit ambitious, but I'd like to encourage more speakers to step up and talk about their own experiences.

[mozmark]

Sounds good. I'll have a think.

In the meantime, if anyone wants some mentoring on the security aspects of a thing they work with (Node, etc) so they can do a talk on that, I'm happy to help out.

Maybe you could point some folks in slack that have expressed an interest in making a start on speaking at this comment.

[mozmark]

@Codesleuth How long would you like the shorter talk to be (min-max)?

[Codesleuth]

We can be flexible, but there needs to be pizza in there somewhere. For example, this could work

Time	Duration	Topic	Note
6:30	15min	Intro
6:45	30min	Primary speaker
7:15	15min	QA
7:30	20min	Pizza	Can shift to 8:00 at the latest
7:50	10min	Next speaker
8:00	5min	Next speaker Q&A
8:05	10min	Next speaker
8:10	5min	Next speaker Q&A
		And so on...

It depends if you'd prefer to have the other speaker(s) do their talk before or after pizza - happy for you to make that decision, otherwise we'll probably do the above.

[mozmark]

For Katie:

Bio: Mark is a software security specialist with decades of experience in building and securing Internet facing systems. Mark currently works for Mozilla on the Firefox web browser.

Talk title: Web Security for Complete Beginners (and other people)
Description:
This talk covers the basics of Web Security at a level suitable for web developers with little or no previous knowledge of security.

Mark will tell you what you need to know about the basics of common web security problems, how they're exploited and some things you can do to protect your applications against them.

This talk will also include some useful perpective for folks who perhaps already know some of the facts.