Identifier: N7BLLW
Description:
- “XSS is dead – Browser Security Features that Eliminate Bug Classes”
- Argues traditional application security is stuck in cycles of patching and bug bounties.
- Explains how modern browser features (CSP v3, Trusted Types, Sec-Fetch-Metadata) can eliminate entire bug classes.
- Demonstrates prevention of XSS, CSRF, clickjacking, and cross-origin attacks.
- Shares real-world case studies of organizations adopting browser-native protections.
- Provides practical guidance on integrating, automating, and enforcing secure defaults.
Location & Metadata:
- Location: Ground Floor, Florentine E
- Date/Time: Tuesday, 14:00–14:20
- Speaker: Javan Rasokat
