DEAR VISITOR , YOU ARE WATCHING : How to protect Java EE Web Apps with Secure HTTP Headers | Java Secuity Video Tutorial .
Frank Kim presents this JavaOne 2012 session. To address security defects, developers typically resort to fixing architectural issues and security bugs directly in the code. Finding and fixing security defects can be a slow, painstaking, and expensive process. While development teams work to incorporate security into their development processes, issues such as clickjacking, cross-site scripting (XSS), and session hijacking continue to plague many commonly used applications. In this session, Java developers and architects will see how these vulnerabilities actually work and how real companies have dealt with these issues. They will go on to learn how to use the latest secure HTTP headers to proactively prevent attacks from occurring and stop hackers from exploiting their applications. [endtext]