This document contains notes from a meeting on web application security. It discusses several common vulnerabilities like SQL injection, cross-site scripting (XSS), and clickjacking. It provides examples of how these vulnerabilities can occur and ways to prevent them, such as sanitizing user input, enabling CSRF protection middleware, and using the X-Frame-Options header. Keywords discussed include MySQL, Docker, Kubernetes, Ansible, and various attack vectors like CSRF, XSS, SQL injection, and clickjacking. The document aims to educate on security best practices for Python and Django web applications.
The document discusses a quality improvement project at Reality Inc. to reduce app startup time. It began with measuring startup sequences on iOS and Android to identify bottlenecks. This showed networking requests and initializing distributions were slow. Performance was then measured in user environments using Firebase and GCP tools. Startup times of over 6 seconds were found. The project aims to parallelize processes, remove unnecessary tasks, and speed up networking to reduce startup time through ongoing measurement and optimization.
This document contains notes from a meeting on web application security. It discusses several common vulnerabilities like SQL injection, cross-site scripting (XSS), and clickjacking. It provides examples of how these vulnerabilities can occur and ways to prevent them, such as sanitizing user input, enabling CSRF protection middleware, and using the X-Frame-Options header. Keywords discussed include MySQL, Docker, Kubernetes, Ansible, and various attack vectors like CSRF, XSS, SQL injection, and clickjacking. The document aims to educate on security best practices for Python and Django web applications.
The document discusses a quality improvement project at Reality Inc. to reduce app startup time. It began with measuring startup sequences on iOS and Android to identify bottlenecks. This showed networking requests and initializing distributions were slow. Performance was then measured in user environments using Firebase and GCP tools. Startup times of over 6 seconds were found. The project aims to parallelize processes, remove unnecessary tasks, and speed up networking to reduce startup time through ongoing measurement and optimization.
2017년 3월 22일 re:View 1st Impact
"코드리뷰를 시작하려는 그대에게" 세션 발표 내용입니다
자세한 행사 내용은 아래 링크를 참고해주시기 바랍니다 ^^
https://reviewmeetup.wordpress.com/2017/03/11/review-1st-impact-20170322/
2017년 3월 22일 re:View 1st Impact
"코드리뷰를 시작하려는 그대에게" 세션 발표 내용입니다
자세한 행사 내용은 아래 링크를 참고해주시기 바랍니다 ^^
https://reviewmeetup.wordpress.com/2017/03/11/review-1st-impact-20170322/
Presented at the SPIFFE Meetup in Tokyo.
Athenz (www.athenz.io) is an open source platform for X.509 certificate-based service authentication and fine-grained access control in dynamic infrastructures.