Emerging Security Vulnerabilities & the Impact to Business
23Google Tech Talks
November, 12 2007
ABSTRACT
This talk discusses how IT professionals can go about
learning what they need to know to prevent the most significant
emerging data security vulnerabilities, and the impact these
vulnerabilities are having on electronic commerce. In this talk,
I will review how attacks such as XSRF (Cross-Site-Request-Forgery)
and SQL Injection work, and how to properly defend against them.
Then, I will present some industry-wide statistics on software
security vulnerabilities reported to various databases, and
emerging trends in the field of software security. Finally, it will
discuss the current state of security education, and provide
pointers to certification programs, books, and
organizations where you can learn more.
Speaker: Neil Daswani
Neil has served in a variety of research , development, teaching,
and managerial roles at Google, Stanford University , DoCoMo USA Labs,
Yodlee, and Bellcore (now Telcordia Technologies). His areas of
expertise include security, wireless data technology, and peer-to-peer
systems. He has published extensively in these areas, frequently is invited
to give talks at industry and academic conferences, and has been granted
several U.S. patents. He received a Ph.D. and a master's in computer
science from Stanford University , and earned a bachelor's in computer
science with honors with distinction from Columbia University.