Join us at OWASP AppSec APAC 2014 !!
Thursday, March 20 • 10:30am - 11:20am
XSS オールスター・フローム・ジャパン / XSS Allstars from Japan

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!


Three of the most well-known individuals in the XSS field in Japan with thorough knowledge on browsers will discuss the forefront of the conditions of XSS, vulnerabilities resulting from relatively unknown behaviors
in browsers as well as rare and unique XSS issues and solutions that you can't hear anywhere else.
The complication of web applications that goes along with the improvements in the expressiveness and processing speed of JavaScript and HTML5 leading to high-performance in browsers is also responsible for the complication of vulnerabilities.
Although typical and widely seen web application vulnerabilities and their solutions have been extensively discussed, attack methods utilizing from the peculiar minor behavior and new features of browsers have for the most part not been openly discussed. Nevertheless, with the large-scale web applications seen today the chance for these types of vulnerabilities to be present grows increasingly high.  For instance, although vulnerabilities resulting from character codes have been focused on in recent years, there are many other very interesting noteworthy vulnerabilities that we have yet to delve into.
This presentation will completely avoid typical issues and focus on minor vulnerabilities that only those in the know are aware of with discussions by 3 leading specialists at the forefront of the XSS field in Japan with extensive knowledge of browsers.

avatar for Yosuke HASEGAWA


NetAgent Co.,Ltd.
An engineer at NetAgent Co. Ltd. and technical advisor at Secure Sky Technology Inc. Known internationally as XSS Ninja, Yosuke is the author of jjencode and aaencode. He has investigated various security issues such as those related to character encoding like Unicode causes and... Read More →
avatar for Masato Kinugawa

Masato Kinugawa



LINE株式会社所属。WebアプリケーションやJavaScript... Read More →

Thursday March 20, 2014 10:30am - 11:20am PDT
HP Enterprise Security Hall(HALL EAST)

Attendees (0)