From Snowden to Heartbleed, Internet security and privacy have been at the forefront of public discourse lately and this is a good thing. We spend more time than ever online and the threats we are facing are becoming ever more serious. Modern Web standards and technologies provide us with a better toolset to protect our users.
From web permissions and web crypto to CSP and TLS 1.3, there are a lot of things to consider when designing a secure web app, in every level of the stack. And from a niche feature, user privacy is quickly becoming table-stakes, particularly in advanced markets. Lean data practices and ads that don’t bloat web sites or track users without their consent can be implemented today, with existing tools.
In this talk we will explore some of the current tools at our disposal and we will talk about those we need to stop using and those that will soon become ubiquitous.