Hi, we will attend RedDotRubyConf 2013 this year. ( 3 of our developers will fly to Singapore)

Also, our dev lead "xdite" will also give a speech about how to avoid write unsecure code.

Talk proposal:

Secure Your Application : The Basics

ecurity is hard. Everyone wants their sites to be hacker-free. But the truth is : if your sites got hacked, the causes are always the stupidest reasons you never aware, not the recent 0day exploits.During this talk I will show you

  • Common application design mistakes people usually maks but they don't even aware.

  • What's the most vulnerable controller actions cracker will seek?

  • What's the default security mechanism from Rails for these issues? Why you should not bypass them.

  • And how to write secure codes by default.