I spent the past couple of days in Washington, D.C., to give a talk at NOAA's IT Security Conference. (NOAA is the National Oceanic and Atmospheric Administration.) The talk went very well, and I was glad to find such an eager audience. I also got to meet some really cool people from NOAA's Computer Incident Response Team (N-CIRT). It's rare to find others who are well-versed in both PHP and web application security, and while they have a very demanding job, it seems quite interesting.

The talk I gave, PHP Security Briefing, is one that I've been developing and refining over the course of the past few conferences, and I think it's one of my best new talks. You can find the slides on Brain Bulb's web site:

• http://brainbulb.com/talks/php-security-briefing.pdf (PDF)
• http://brainbulb.com/talks/php-security-briefing.swf (Flash)