About the Author

Chris Shiflett

Hi, I'm Chris, a web developer and a founding member of Analog. I live and work in Brooklyn, NY.

OSCON Wrapup

Another OSCON has come and gone. It was a very busy week filled with talks, work, social events, and everything in between. (Sleep is optional and not recommended.)

The OmniTI family (Message Systems included) was well represented with a number of speakers and talks:

Chris Shiflett
Experience-Driven Development: Designers and Developers Working in Harmony
Security 2.0: Emerging Trends in Web Application Security
David Gray
How I Learned to Love Revision Control
Luke Welling
PHP Taint Tool: It Ain't a Parser
Mike Hillyer
How to be Normal: A Guide for Developers
Robert Treat
Pro PostgreSQL
Theo Schlossnagle
Full-Stack Introspection Crash Course
Wez Furlong
Hot Chocolate: Creating Cocoa Apps with PHP
PDO: PHP Data Objects
PHP Extension Writing

Experience-Driven Development is a talk I gave with Jon Tan, and we explored ways designers and developers can collaborate better to create a better user experience, and thereby create a better web site. The talk was rough around the edges, but we have received a number of positive reviews so far, and it has sparked some interesting discussions. My own thoughts on the matter aren't too solidified yet, because I'm better at identifying problems than coming up with solutions. :-) The sheer volume of horrible web sites is proof that industry standard practices suck.

I had planned to give Security 2.0 for the last time at this conference, but I received more positive feedback than I think I ever have. I was very pleased to note that more than half of the audience (which was a pretty large audience in the main auditorium) was at least somewhat familiar with CSRF already. (This was a first.) Perhaps I should just refine the talk to focus less on explaining what XSS and CSRF are and more on the interesting exploits that combine them with other technologies such as Ajax and Flash.

Luke's talk was about a security tool we've been developing at OmniTI as part of our web application security practice. It's called SNAP, and we plan to open source it soon. Garrett Serack of Microsoft attended the talk and explains it in a little more detail, and I hope to post more about SNAP soon.

I dined at Mint during 3 of my 6 evenings in Portland. Delicious. :-) I also made my way to Doug Fir and Vault, both of which are popular among OSCON regulars.

I used Twitter throughout the conference, and it looks like searching for shiflett+oscon finds most of my relevant updates, if you're interested.

I hear OSCON is coming to San Francisco next year. Be there. :-)

About This Post

OSCON Wrapup was posted on Thu, 31 Jul 2008 at 21:56:04 GMT.

4 Comments

1. Sean Coates's GravatarSean Coates said:

You just posted this so your last entries didn't scroll into oblivion, didn't you? (-: (Aug 1st today, and all)

S

Fri, 01 Aug 2008 at 05:09:05 GMT Link

2. Chris Shiflett's GravatarChris Shiflett said:

Yeah, and so that the navigation here didn't have any gaps:

http://shiflett.org/blog

I need to blog more. :-)

Fri, 01 Aug 2008 at 14:15:20 GMT Link

3. Jan's GravatarJan said:

Heya Chris,

it was nice finally meeting you in person.

Cheers

Jan

--

Sun, 03 Aug 2008 at 11:47:22 GMT Link

4. Jon Tan's GravatarJon Tan said:

It was great to be there, meet so many good people, and soak in the atmosphere (sometimes literally). Mint was a highlight! Next time out of the blocks I have a feeling our talk might prompt a few more discussions, especially given the very useful feedback from people. Thanks for hosting me Chris, I appreciate it.

Wed, 06 Aug 2008 at 13:52:07 GMT Link

Post A Comment

Personal Details and Comment

Style Guide

Line breaks are converted to paragraphs. Also use:

  • <a href="" title="">text</a>1
  • <em>text</em>
  • <blockquote><p>text</p></blockquote>
  • <code>2  <?php  if ($foo) {      $foo = TRUE;  }  ?></code>
  1. Note: <code> can be used inline (e.g. in paragraphs) or in a block as shown. Include whitespace and newlines in blocks.

Please enter Chris (my first name) below. This is a primitive spam prevention technique, and I apologize for the inconvenience.

Preview and Submit

Upcoming Events

Brooklyn Beta

21 - 22 Oct 2010

At The Invisible Dog, Brooklyn, New York.

New Comments

Mario Arroyo wrote:

The article is really very good and the users comments and external links to another articles jus...

Posted in
Raphael Almeida wrote:

I realy like hiphop music, but this is very crazy! We'll use it in user group PHP conference at ...

Posted in PHP Anthem
Mal wrote:

Having used smarty for many years, this has never been a problem for me, but after building a web...

Posted in PHP Stripping Newlines
Satya wrote:

Thanks for the info. I have posted the news here on my page: http://www.facebook.com/pages/Web-Sc...

Posted in PHP Anthem
John wrote:

Oh, you need to press "save your password".

Posted in Mozilla Account Manager

Browse Comments

Work and Books

Analog Essential PHP Security HTTP Developer's Handbook