Secure Software Development focused 137th DevClub.lv

Info

Hello!

An opportunity is available to deepen understanding of Secure Software Development and learn methods to protect applications effectively at each stage.

The focus is on a session titled Secure Software Development which will occur on Thursday, December 5th at 18:30, held at Emergn Latvija office, located at Skanstes iela 25, Rīga, in the Elemental Business Centre building “Green”, 3rd floor.

Agenda for the 137th DevClub.lv session on Secure Software Development

Aivis Jansauskis and Janis Perkons from Emergn will present on "Enhancing Secret Management Practices."

This session will cover common poor practices that jeopardize software security and the importance of adopting established techniques to enhance protection measures. Attendees will be introduced to tools and frameworks designed to effectively manage secrets and secure their software. The discussion will also highlight how teamwork and skills contribute to establishing a robust development security culture, offering participants practical insights and strategies for better secrets management.

(Language – English)
Tags: Secure Software Development, Software Security, Security Vulnerabilities, Secure Development Culture, Secure Software Practices

Aivis Jansauskis serves as Practice Lead (JavaScript) at Emergn, while Janis Perkons holds the role of Practice Lead (Dev Ops) at the same organization.

Jānis Lācis from If will elaborate on Modern Authentication.

This presentation addresses the growing relevance of Identity and Access Management (IAM) in application security and user identification. Understanding modern authentication and authorization is critical, with OAuth2.0 and OIDC highlighted as essential protocols for successfully navigating this domain. The talk aims to bridge knowledge gaps that developers often encounter.

Participants will:

- gain insights into the workings of OAuth/OIDC protocols

- familiarize themselves with essential concepts like tokens and authorization servers

- learn about prevalent OAuth flows

(Language – English)

Jānis Lācis has an extensive background in software development, focusing on IAM solutions over the last six years.

Atis Straujums from Zimperium will present on "White-box Cryptography: Protecting Keys on Insecure Devices".

White-box cryptography enables the use of cryptographic methods on less secure devices, providing a means to guard keys from being observed and extracted during runtime. This presentation will discuss its operational mechanisms, appropriate applications, and available solutions.

(Language – English)
Tags: White-box Cryptography, Application Protection

Atis is a product manager for zKeyBox at Zimperium, boasting years of experience in software security.

For previous session recordings, visitors may check the homepage or YouTube channel to stay updated on new content.

Gratitude is extended to sponsors for their vital support of DevClub.lv.