What Comes Next

It’s time for Philly’s premier emerging tech conference, and I’m going to be speaking once again this year. The conference, Emerging Technologies for the Enterprise, is taking place March 26-27, 2008 in Philadelphia.

I’ll be giving a more technical talk this year than last, combining my interests in leading-edge web applications and security. The talk is called Securing Web 2.0 Applications:

The challenges of securing first generation web applications and infrastructure seem like a distant memory: immature technologies throughout the stack, coded in a culture that didn’t understand or value security. Today we have a much more security-conscious community producing components from operating systems to routers to web servers, and the basic architecture of the Internet application has had 10 years to mature under fire.

Even so, the security challenges of Web 1.0 were in many ways less daunting and harder to ignore than those of the current generation. This talk will review the challenges and lessons of the past, and survey security requirements, issues and techniques for dealing with a new generation of web frameworks and tools, massively multi-tenant applications and hosting environments, and loosely-coupled systems.