What can traditional web application security learn from browser wallet extensions?
June 24, 2024
16:35
16:05
Hall B
English | Advanced | Everything Frontend

Is securing a crypto browser wallet the same as securing a traditional web app?

In this talk we will focus on the unique challenges of securing browser wallets.

While browser wallets are normal JavaScript Web extensions for the most part, their unique architecture requires a
somewhat special security approach as their threat model is eventually different from traditional web applications.

This means that while traditional security threats such as XSS, Phishing, Supply Chain Attacks, etc still apply to
browser wallets, the way to address them can be different and more challenging given their unique architecture.

This sets browser wallets to be a great use case to learn about clientside security from by making us ask ourselves:
What can we learn from the security challenges browser wallets have to deal with that cab be applied to traditional web application?

Gal
Twitter_SM_icon_RN22
LinkedIn_SM_icon_RN22
Website_SM_icon_RN22
Gal Weizman
JavaScript Security Engineer @ MetaMask

Gal is an expert in browser JavaScript and client side security with close to a decade of proven experience in multiple fields, ranging from vulnerability research and bots mitigation, through application and supply chain security to anti debugging research, browser extensions security and more. Gal is also an experienced speaker with multiple performances in well known conferences and podcasts and is responsible for some popular findings and discoveries in the browser security space.

Cancellation Policy

Sponsor Cancellation:

In case of cancellation of the event, we will offer a full refund to all attendees and sponsors.

Attendee cancellations:

Up to 30 days prior to the event – 100% Refund 30-14 days prior to the event – 50% Refund No refund will be offered later than that.

Cancellation Policy

Sponsor Cancellation:

In case of cancellation of the event, we will offer a full refund to all attendees and sponsors.

Attendee cancellations:

Up to 30 days prior to the event – 100% Refund.
30-14 days prior to the event – 50% Refund.
No refund will be offered later than that.