• Tim Messerschmidt
  • mobile and web developer PayPal / Braintree
  • Twitter
Tim Messerschmidt As a long time mobile and web developer, Tim channels his knowledge and experience as Braintree's Head of Developer Relations. He is passionate about startups and serves as a mentor at multiple incubators and accelerators.

Prior to joining PayPal, Tim worked with Neofonie Mobile and Samsung focusing on several mobile projects. In his spare time, he leads and creates training classes in all sorts of developer-oriented topics, contributes to Open Source projects and is one of the authors of the Mobile Developer’s Guide to the Galaxy. In addition, he authored numerous articles published in print magazines.

Session

  • Node.js Authentication and Data Security
  • Time: 4:05pm - 4:50pm | Room: CJM Goldman Hall
The arena of proper authentication and data security standards is often some of the most misunderstood, confusing, and tricky aspects of building any Node site, app, or service, and the fear of data breaches with unencrypted or poorly encrypted data doesn’t make it any better.

We’re going to tackle this field, exploring the proper methodologies for building secure authentication and data security standards. We’ll run through:

  • Building on top of OAuth 2 and OpenID Connect
  • Node middleware services for authentication
  • Working with proper hashing and salting algorithms, and avoiding others, for private user data
  • Common auth and security pitfalls and solutions
In the end, we’re going to see that by understanding proper data security and authentication standards, pitfalls, and reasons for choosing one solution over another, we can make intelligent decisions on creating a solid infrastructure to protect our users and data.

Media

Video
Slides
Sponsors