- 16:05
- -
- 16:35
Is securing a crypto browser wallet the same as securing a traditional web app?
In this talk we will focus on the unique challenges of securing browser wallets.
While browser wallets are normal JavaScript Web extensions for the most part, their unique architecture requires a
somewhat special security approach as their threat model is eventually different from traditional web applications.
This means that while traditional security threats such as XSS, Phishing, Supply Chain Attacks, etc still apply to
browser wallets, the way to address them can be different and more challenging given their unique architecture.
This sets browser wallets to be a great use case to learn about clientside security from by making us ask ourselves:
What can we learn from the security challenges browser wallets have to deal with that cab be applied to traditional web application?
Gal is an expert in browser JavaScript and client side security with close to a decade of proven experience in multiple fields, ranging from vulnerability research and bots mitigation, through application and supply chain security to anti debugging research, browser extensions security and more. Gal is also an experienced speaker with multiple performances in well known conferences and podcasts and is responsible for some popular findings and discoveries in the browser security space.