Tickets
Talk Duration: 35min

Test-Driven Security

Sebastian Bergmann
Description

Every security vulnerability in your  application stems from a missing test. This presentation challenges the traditional separation between security and testing, demonstrating that comprehensive  test coverage is your most effective first line of defence against common security weaknesses.

Using the Common Weakness Enumeration (CWE) list, a comprehensive catalogue of software security flaws, as a reference, this presentation will explore the most critical weaknesses affecting  applications. These include SQL injection (CWE-89), cross-site scripting (CWE-79) and command injection (CWE-78), as well as other prevalent vulnerabilities. You will learn to recognise attack vectors and, most importantly, how to write  tests that would have prevented vulnerabilities from reaching production.

Speaker
Sebastian Bergmann

Sebastian Bergmann

Created PHPUnit & Co-Founder @ thePHPcc
Sebastian Bergmann is the creator of PHPUnit, the testing framework that set the standard for quality and professionalism in PHP software development. As a founding partner and consultant with The PHP Consulting Company (thePHP.cc), he empowers development teams to adopt PHPUnit effectively and build more reliable, testable software.

We can’t wait to tell you more

Don’t miss major updates and news around Web Summer Camp. Sign up for our newsletter on the right.

To make this website run properly and to improve your experience, we use cookies. For more detailed information, please check our Cookie Policy.

Customize settings

  • Necessary cookies enable core functionality. The website cannot function properly without these cookies, and can only be disabled by changing your browser preferences.