AppSec & DevSecOps

R4-2F. Writing Secure Code == Writing Good Code

Thursday, June 13, 2024 2:30 PM - 3:30 PM

Room 2F

Description

For all its hype, the notion of “secure code” often intimidates software engineers. It gives the impression that we have to go beyond ourselves and depend on some exterior solution – be it a security expert, secure code library, etc. While outside tools and resources are helpful, secure code is frequently just the product of writing good code. With some examples from front-end & back-end code, let’s walk through how to write fundamentally-sound code that addresses security concerns.

Learner Objectives

After this session, learner will…: • Have a fresh mindset on secure code – write good code that happens to be secure • Be guided by tactical examples of secure code • Be better equipped to integrate security into software development processes