State of the Art of Web Security
With a focus of teaching web security to developers, I would like to discuss:
* What attacks are actually relevant in practice?
* What are the challenges currently faced by developers?
* What are the latest mitigiation techniques for XSS, SQLi, etc.? (Should we start teaching Trusted Types? CSP Level 3? ...)