Denis Radin

Mining Crypto in the Browser

A year ago an unnamed investor asked me for a consultancy on topic: If this is possible to mine crypto in a browser using GPU? . The talk shares some insights/outcome found during the research and give an idea of what to expect when mining cryptocurrencies using a pool of browser-based miners. Let's review mining as a top-notch performance challenge for the Web platform.

Mining is a top notch performance benchmarking for a Web platform. Let's see how fast we can be using all the cool new browser APIs as WebAssembly, WebGL and Workers.

Arun Michael Dsouza

Houdini, What lies Ahead | Slides

This talk aims at covering the CSS Houdini spec and its amalgamation with JavaScript, which helps in extending the browser’s render engine.

Houdini is a W3C effort to define lower-level APIs for developers to understand, recreate, and extend high-level CSS authoring features. This talk will focus on current ideas (being discussed by the Houdini working group), finalized specifications, future plans for the development of Houdini and how it will change the way we use JavaScript APIs to create rich user experiences.

Aneeta Sharma

Being a full-stack software engineer | Slides

Being involved in tech industry for more than eight years now, I’ve worn different hats while working as a software engineer. In 2018, being a full-stack engineer does not just mean coding. There are different aspects to being a full-stack engineer other than having frontend and backend knowledge.

In this talk, I will talk about what my experiences have been while working throughout my career and what skills we need to have to become a full-stack engineer from my perspective.

Gaurav Sen

Designing Systems on the Server Side | Slides

We all want our products to run smoothly, with the server always responding to client requests. But what happens when there is a failure on the server side? System design allows us to minimize risks and create consistent, scalable and highly available systems. This keeps the customers, developers and the support team happy.

Akash Adhikari

Making A.I. non-evil again | Slides

This talk will be about all the cool and exiting advancement in the field of Machine Learning (Deep Learning in particular) worldwide, and the benefits we can take from it. By the end of the talk, I’ll hopefully be able to assure that “Artificial Intelligence” is more of a progressive field of research rather than Hollywood’s “Killer Robots” extravaganza.

Chathu Vishwajith

Properly Securing NodeJS APIs

The way we write APIs is changing. SPA frameworks like Angular are shifting the paradigm of API consumption and to be effective developers we have to keep up. We often dedicate a lot of time in crafting powerful APIs that interact with many different clients, but overlook proper security measures that can come back to haunt us.

In this talk, we'll look at the proper way to secure our API's with JSON Web Tokens. We'll go from learning what JSON Web Tokens are, why they're the driving force in API security, and to put theory into practice actually build a real-world implementation using Node.js where we'll show common best practices.

Tanmay Chaudhry

Efficient Docker Images | Slides

Writing Dockerfiles is not a hard task. You can quickly dockerize a service and deploy it. While this is great, it can lead to some inefficient and bloated images. The talk aims to show a handful of best practices when writing Dockerfiles which lead to smaller images. This in turns speeds up deployments (specifically on cluster nodes) and provides a smaller footprint for vulnerabilities as well.

Oliver Szimmetat

Securing the Continuous Delivery Pipeline | Slides

In the world of Continuous Delivery (CD), products and services are build using distributed source code repositories and various artifacts such as binary packages. This presentation will provide an overview of ways to mitigate resulting risks such as cross-build injection (XBI) attacks.

While security engineering traditionally aims to protect applications and services that are running in production or on a user's device, a new class of attacks targets the engineering system that builds, delivers, and deploys the binaries to their target environment. Furthermore, the Continuous Integration/Continuous Delivery (CI/CD) model leaves little to no time for dedicated security testing and requires a new approach towards secure engineering.

Sonika Manandhar

Future of space industry in Nepal | Slides

What are we missing as a nation without our own satellite and space program? Is it about time Nepal should start the space activities and have presence in space industry?

Rob Savoye

Evolution of Web Tech | Slides

A trip through time, how the technology behind the web evolved from the early days to the present as seen through the eyes of a developer who lived though it.