Dev
Design
Marketing
Business
Date
May 30, 2024 12:00 pm
Duration
40 min
Location
Lucerna Cinema
The modern web is a little different than it was back in the days when computers were ruled by IE6. Today, we don’t trust anything sent by a browser because it could be fake. For example, embedded JavaScript, which is a good servant, can also be a very bad master.
But actually, there are cases when we can trust the browser! And that’s what Michal’s talk is all about. He’ll cover the new “Sec-” HTTP headers and show you how, thanks to them and thanks to his favourite Content Security Policy (CSP), the old saying “Fast, good, or cheap – pick two” is no longer true because you can have all three.
Michal Špaček
Head of Security
Shoptet
Michal is a software developer and an application security engineer on a mission to show developers how and why they should write secure code. He started building websites and apps during the "First Browser War" when "Best viewed in Netscape" logos were still a thing. Michal has worked for Skype, report-uri.com, and others, and is now the Head of Security at Shoptet.
