Lukas Weichselbaum
@webappsec.dev
Leading Google's web security team.
Passionate about web security and making secure-by-default web development the norm. Contributed to web platfom security features like CSP, Fetch Metadata, COOP and Trusted Types.
Passionate about web security and making secure-by-default web development the norm. Contributed to web platfom security features like CSP, Fetch Metadata, COOP and Trusted Types.
Signature-based SRI is being spec'd right now:
wicg.github.io/signature-ba...
This will be useful for many use case and become relevant for PCIv4 compliance which requires assuring the integrity of sourced scripts (6.4.3).
Please chime in and share your use cases: github.com/WICG/signatu...
wicg.github.io/signature-ba...
This will be useful for many use case and become relevant for PCIv4 compliance which requires assuring the integrity of sourced scripts (6.4.3).
Please chime in and share your use cases: github.com/WICG/signatu...
November 18, 2024 at 4:13 PM
Signature-based SRI is being spec'd right now:
wicg.github.io/signature-ba...
This will be useful for many use case and become relevant for PCIv4 compliance which requires assuring the integrity of sourced scripts (6.4.3).
Please chime in and share your use cases: github.com/WICG/signatu...
wicg.github.io/signature-ba...
This will be useful for many use case and become relevant for PCIv4 compliance which requires assuring the integrity of sourced scripts (6.4.3).
Please chime in and share your use cases: github.com/WICG/signatu...
If you're into web security take a look at my LocoMocoSec keynote slides from this summer about "Google's Recipe for Scaling (Web) Security": speakerdeck.com/lweichselbau...
November 16, 2024 at 10:29 PM
If you're into web security take a look at my LocoMocoSec keynote slides from this summer about "Google's Recipe for Scaling (Web) Security": speakerdeck.com/lweichselbau...