-
Let's Create Records Faster!
Raphael Collet - Odoo Developer已完成
-
The Odoo Javascript Framework
Gery Debongnie, Lead Developer - Odoo已完成
-
Odoo Documents: The Making of a New Application
Pierre Paridans, Developer - Odoo已完成
-
How to Develop Your Own In-App Purchase ServiceAntony Lesuisse, Chief Technical Officer - Odoo已完成
-
Empower Your App by Inheriting from 8 Mixins
Yannick Tivisse, Developer - Odoo已完成
-
Configure Your Own Mail Server with Odoo
Nicolas Seinlet, Software Developer - Odoo已完成
-
The IoT Box & the Cloud
Josse Colpaert, Developer - Odoo已完成
-
Visualizing Data in Odoo: How to Create a New View
Mathieu Duckerts-Antoine, Developer - Odoo已完成
-
Ask Me Anything for DevelopersAntony Lesuisse, Chief Technical Officer & Olivier Dony, Platform & Security - Odoo已完成
-
How to Optimize the Speed of Odoo eCommerce/Website up to Maximum Level?
Hiren Vora - CEO at Emipro Technologies Pvt. Ltd. India已完成
How to Break Odoo's Security (Or How to Prevent It)
Developer
位置。 Aula Magna / Foyer du Lac
-
2018/10/3 14:30
-
2018/10/3 15:20
(Europe/Brussels)
(50分钟)
?unique=8e5ecfc)
Olivier Dony - Software & SaaS Engineer, Security team, Odoo
Platform & Security at Odoo
Olivier Dony - Software & SaaS Engineer, Security team, Odoo
Platform & Security at Odoo
Recent years have seen a steady increase in the digital threats faced by businesses, small and large alike. The security of business and personal data becomes more and more important every day, and the arrival of new regulation such as GDPR adds legal burden to the existing business risk.
XSS, CSRF, SQL injection, broken authentication, data leak, and so on. All kinds of security problems happen every day, even to the biggest companies. We can't stop that, but we can at least prepare for it, by carefully considering the risks, and integrating best practices into daily coding tasks.
Before trying to break it, the talk will first describe the Odoo Security Model, with a quick recap of the key features built into the framework to help developers design secure Apps.
Then we'll explore a few real-life coding examples. We'll show how the security features are used in practice, and how they can be defeated if the developers are not careful, compromising the whole security of the system. Analyzing these examples will give substance and context to the security primitives, and help new and experienced developers integrate best practices into their development workflow.
XSS, CSRF, SQL injection, broken authentication, data leak, and so on. All kinds of security problems happen every day, even to the biggest companies. We can't stop that, but we can at least prepare for it, by carefully considering the risks, and integrating best practices into daily coding tasks.
Before trying to break it, the talk will first describe the Odoo Security Model, with a quick recap of the key features built into the framework to help developers design secure Apps.
Then we'll explore a few real-life coding examples. We'll show how the security features are used in practice, and how they can be defeated if the developers are not careful, compromising the whole security of the system. Analyzing these examples will give substance and context to the security primitives, and help new and experienced developers integrate best practices into their development workflow.
