Top 10 Security Risks for AngularJS Applications – Kevin Hakanson

Home / Home / Top 10 Security Risks for AngularJS Applications – Kevin Hakanson

Kevin Hakanson gave a talk at the AngularMN Meetup this week on the top 10 OWASP (Open Web Application Security Project) web application security risks and how they relate to AngularJS.

This video is a bit of a hazy Google hangout but go to 10:30 to skip housekeeping. Hakanson delves into the following 10 points to help developers consider which patterns to avoid or implement.

  1. Injection go to 14:16
  2. Broken Authentication and Session Management go to 22:35
  3. Cross-Site Scripting (XSS) go to 25:45
  4. Insecure direct object references go to 33:00
  5. Security misconfiguration go to 33:56
  6. Sensitive Data Exposure go to 41:36
  7. Massing Functions Level Access Control go to 47:30
  8. Cross Site Request Forgery (CSRF) go to 50:04
  9. Using components with known vulnerabilities go to 55:12 (no sound slide only)
  10. Unvalidated redirects and forwards go to 57:28 (no sound slide only)

 

Related Posts