Mark Garratt gave a presentation on developing secure web applications. He discussed his background working as a full stack developer and system administrator. He then covered Cyber-Duck's development process, including researching security considerations, continuous testing, and using configuration management with Puppet. Finally, he reviewed common vulnerabilities like injection, broken authentication, XSS, and the OWASP Top 10.
Independent digital agency
Based in Elstree
Specialise in UX
Established in 2005
Award winning
ISO accredited
User Experience – Web & Mobile – Hosting & Support – Marketing – Consulting
Close choice between Puppet and Chef
Puppet has it’s own DSL, Chef uses Ruby
Puppet is a few years more established, but both aren’t new