Ben Charlton is the systems administrator at the University of Kent. He gave a lightning talk on web security, going through the OWASP 10 worst web security mistakes – and how to fix them.
Why did you give a web security talk?
It’s a hobby interest for me and my day job as well, and it seemed an area that was missing on the programme.
Web security is something we’ve had a problem with at Kent, and I imagine lot of other universities will be having similar issues. Universities tend to have a lot of people doing a lot of things online, and there’s not always a great deal of attention paid to security.
I’ve already had someone come up and ask for more details – it’s impossible to cover everything on web security in 15 minutes. Hopefully the people who were in the room can now go and find out more about the issues, and it will lead to more secure websites.
What do you think your institution gains by sending you here?
Kent gain from a greater breadth of knowledge. I’ve found out about LTI – a really useful way of embedding learning objects in a VLE. That’s something we had no idea about until today. So it’s great for picking up on new technology.
Are you involved in any other communities?
List8d is another project I’ve been involved. I’m also interested in library systems.
What kind of skills are you gaining or improving by being here?
From attending Dev8D last year I knew there would be loads of different areas to get involved in. It’s amazing the things you pick up that you never expected to, just from chatting to people.
Of all the projects or ideas you’ve seen, are there any you think can be put into action straight away?
Wookie is interesting, and of course LTI has immediate applications for the University of Kent. There’s also lots of stuff that isn’t directly relevant but makes you a better programmer, like the stuff on genetic algorithms or learning about Clojure.
Image reproduced with permission from XKCD.com