WeAreDevelopers Live Week – Single Page Application Security presented by Thomas Konrad
Thomas Konrad, Principal Security Consultant at SBA Research, was part of the 3rd edition of the WeAreDevelopers Live Week 2020. For 5 days, 30+ sessions consisting of hyper-focused coding sessions, hands-on workshops and live Q&A sessions were presented to the community and interested public.
In his talk, Thomas focused on Single Page Application security (Angular, React, Vue.js).
Single Page Application frameworks have brought us a boost in clean application architecture and also security, mainly because of a better separation of concerns. But using an SPA framework alone does not automatically get you bullet-proof security. There is still a lot to look out for, and, for example, XSS is not a fully solved problem yet. In this talk, Thomas explores the most important security pitfalls SPA frameworks and how to solve them. He’ll also compare some of the security features of the most common SPA frameworks Angular, React and Vue.js.