Abstract:This talk will explore the lessons that I have learned in more than 20 years of  developing, using, and reviewing FOSS-based security libraries. It will cover the well known XYZ library from both an open source development process and technical architectural perspective.

2021 marks the 20th Anniversary of the OWASP Foundation.

We have been working hard to secure the world through challenges and discovery. And now, it’s time to celebrate! Many of you have played a crucial role in the Foundation’s enduring history, and we encourage you to participate in the celebration coming this September! Our theme, Securing the Next 20 Years, is encouraging and exciting as we look ahead to the next 20 years!

Join us for FREE at this live, virtual 24-hour global event as we honor the past, celebrate the present and embrace the future of OWASP and cybersecurity. Hear from world renowned keynotes and special speakers, network with your peers and interact with our event sponsors.

OWASP ESAPI – A Retrospective: The Good, the Bad, & the Ugly

Conference: OWASP 20th Anniversary Event

Authors: Kevin Wall

Abstract

Post a comment

Related work

Automated Discovery of Deserialization Gadget Chains

Automated Discovery of Deserialization Gadget Chains

Don't Get Owned by Your Dependencies: How Firefox Uses In-process Sandboxing To Protect Itself From Exploitable Libraries (And You Can Too!)

Stop that Release, There's a Vulnerability!

Securing Open Source Software - End-to-End, at Massive Scale, Together

Maintainer's Circle