This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
Join us at OWASP AppSec APAC 2014 !!
View analytic
Thursday, March 20 • 10:30am - 11:20am
XSS オールスター・フローム・ジャパン / XSS Allstars from Japan

Sign up or log in to save this to your schedule and see who's attending!


Three of the most well-known individuals in the XSS field in Japan with thorough knowledge on browsers will discuss the forefront of the conditions of XSS, vulnerabilities resulting from relatively unknown behaviors
in browsers as well as rare and unique XSS issues and solutions that you can't hear anywhere else.
The complication of web applications that goes along with the improvements in the expressiveness and processing speed of JavaScript and HTML5 leading to high-performance in browsers is also responsible for the complication of vulnerabilities.
Although typical and widely seen web application vulnerabilities and their solutions have been extensively discussed, attack methods utilizing from the peculiar minor behavior and new features of browsers have for the most part not been openly discussed. Nevertheless, with the large-scale web applications seen today the chance for these types of vulnerabilities to be present grows increasingly high.  For instance, although vulnerabilities resulting from character codes have been focused on in recent years, there are many other very interesting noteworthy vulnerabilities that we have yet to delve into.
This presentation will completely avoid typical issues and focus on minor vulnerabilities that only those in the know are aware of with discussions by 3 leading specialists at the forefront of the XSS field in Japan with extensive knowledge of browsers.



LINE株式会社所属。WebアプリケーションやJavaScriptの関わるセキュリティ上の問題について詳しく、自社サービスのセキュリティホールを数多く発見、修正している。また、個人的な活動として国内外の著名サービス/アプリケーションのセキュリティホールを数多く発見、報告している。 | http://ma.la
avatar for Yosuke HASEGAWA


NetAgent Co.,Ltd.
An engineer at NetAgent Co. Ltd. and technical advisor at Secure Sky | Technology Inc. Known internationally as XSS Ninja, Yosuke is the | author of jjencode and aaencode. He has investigated various security | issues such as those related to character encoding like Unicode causes | and discovered numerous vulnerabilities in various software | applications including Internet Explorer, Mozilla Firefox, etc. He is | also a member... Read More →
avatar for Masato Kinugawa

Masato Kinugawa


Thursday March 20, 2014 10:30am - 11:20am
HP Enterprise Security Hall(HALL EAST)

Attendees (11)