Top 10 Security Risks for AngularJS Applications – Kevin Hakanson

Kevin Hakanson gave a talk at the AngularMN Meetup this week on the top 10 OWASP (Open Web Application Security Project) web application security risks and how they relate to AngularJS.

This video is a bit of a hazy Google hangout but go to 10:30 to skip housekeeping. Hakanson delves into the following 10 points to help developers consider which patterns to avoid or implement.

  1. Injection go to 14:16
  2. Broken Authentication and Session Management go to 22:35
  3. Cross-Site Scripting (XSS) go to 25:45
  4. Insecure direct object references go to 33:00
  5. Security misconfiguration go to 33:56
  6. Sensitive Data Exposure go to 41:36
  7. Massing Functions Level Access Control go to 47:30
  8. Cross Site Request Forgery (CSRF) go to 50:04
  9. Using components with known vulnerabilities go to 55:12 (no sound slide only)
  10. Unvalidated redirects and forwards go to 57:28 (no sound slide only)

 

Comments

comments

About Gary Donovan

Machine Learning and Data Science blogger, hacker, consultant living in Melbourne, Australia. Passionate about the people and communities that drive forward the evolution of technology.
Show Buttons
Share On Facebook
Share On Twitter
Share On Linkedin
Share On Pinterest
Share On Stumbleupon
Contact us
Hide Buttons