This course is a hands-on overview of security aspects around the Erlang/Elixir ecosystem, including (but not limited to) Phoenix web applications and APIs. Topics include: exploration of a deliberately vulnerable application, techniques and tools for security scanning, analysis of past vulnerabilities, and practical topics such as the correct use of security-related Plugs, TLS client/server configuration, use of Erlang's crypto library, and Erlang distribution protocol.
Erlang and Elixir make it easy to take your application to the next level in terms of robustness and scalability; don't forget to level up your security as well!
Bram is an architect and security advocate with more than 20 years experience delivering complex software platforms to tier-1 telcos around the world, meeting their stringent security and reliability requirements. He has been using Erlang, and later Elixir, since 2010. As a security advocate, he has taken an interest in the security aspects of the Erlang/OTP ecosystem. This focus he has also continued as a blogger (at https://blog.voltone.net/), trainer, speaker, and open source contributor. His latest project is the X509 package, available on Hex.