I will present two sessions at this year’s International PHP Conference 2009 - Spring Edition in Berlin about Bytekit and writing secure PHP applications with the Zend Framework.
Session: Bytekit - An open source toolset to work with PHP bytecode
Bytekit is a PHP extension that allows PHP applications to directly read the PHP Bytecode. It comes with a bytecode disassembler and also provides control flow information that allows drawing control flow graphs.
In this session all of Bytekits features will be introduced and several smaller examples will be presented that show how some security problems can be detected with it in source code.
Bytekit will become open source during the conference.
Session: Secure Programming with the Zend Framework
More and more PHP developers are using the Zend Framework when developing new applications. Because of guidelines and features of the framework the process to develop secure PHP applications changes.
This session will introduce which features of ZF help to develop secure applications, how they are used and what security problems you still have to solve on your own.
See you in Berlin between 25th and 27th May.