A snippet of the calendar
- Organizer of and Speaker at SecAppDev 2025: A week-long course on secure application development (02/06/2025 - 06/06/2025 — Leuven, Belgium)
- Online workshop at Angular Architects: Angular Security Workshop (31/03/2025 - 01/04/2025)
- Online workshop at Pragmatic Web Security: Mastering OAuth 2.0 and OpenID Connect Security (10/02/2025 - 18/02/2025)
- Conference talk at NDC Security: Breaking and securing OAuth 2.0 in frontends (20/01/2025 - 23/01/2025 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: Bulletproof APIs: Hands-On API Security (20/01/2025 - 23/01/2025 — Oslo, Norway)
- Online workshop at Pragmatic Web Security: Bulletproof APIs: Hands-On API Security (05/12/2024 - 06/12/2024)
- Online workshop at Angular Architects: Angular Security Workshop (02/12/2024 - 03/12/2024)
- Conference talk at OWASP BeNeLux Days: Supercharging OAuth 2.0 security (28/11/2024 - 29/11/2024 — Utrecht, The Netherlands) (More information)
- 1-day workshop at OWASP BeNeLux Days: Bulletproof APIs: Hands-On API Security (28/11/2024 - 29/11/2024 — Utrecht, The Netherlands)
- Meetup talk at OWASP Belgium: Breaking and securing OAuth 2.0 in frontends (03/10/2024 — Diegem, Belgium) (More information)
All events
2025 events
- Organizer of and Speaker at SecAppDev 2025: A week-long course on secure application development (02/06/2025 - 06/06/2025 — Leuven, Belgium)
- Online workshop at Angular Architects: Angular Security Workshop (31/03/2025 - 01/04/2025)
- Online workshop at Pragmatic Web Security: Mastering OAuth 2.0 and OpenID Connect Security (10/02/2025 - 18/02/2025)
- Conference talk at NDC Security: Breaking and securing OAuth 2.0 in frontends (20/01/2025 - 23/01/2025 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: Bulletproof APIs: Hands-On API Security (20/01/2025 - 23/01/2025 — Oslo, Norway)
2024 events
- Online workshop at Pragmatic Web Security: Bulletproof APIs: Hands-On API Security (05/12/2024 - 06/12/2024)
- Online workshop at Angular Architects: Angular Security Workshop (02/12/2024 - 03/12/2024)
- Conference talk at OWASP BeNeLux Days: Supercharging OAuth 2.0 security (28/11/2024 - 29/11/2024 — Utrecht, The Netherlands) (More information)
- 1-day workshop at OWASP BeNeLux Days: Bulletproof APIs: Hands-On API Security (28/11/2024 - 29/11/2024 — Utrecht, The Netherlands)
- Meetup talk at OWASP Belgium: Breaking and securing OAuth 2.0 in frontends (03/10/2024 — Diegem, Belgium) (More information)
- Invited talk at ICTech Day: Passkeys: the future of user authentication (02/10/2024 — Antwerpen, Belgium) (More information)
- Conference talk at Copenhagen Developers Festival: Supercharging OAuth 2.0 security (26/08/2024 - 30/08/2024 — Copenhagen, Denmark) (More information)
- 2-day workshop at Copenhagen Developers Festival: Bulletproof APIs: Hands-On API Security (26/08/2024 - 30/08/2024 — Copenhagen, Denmark)
- 2-day workshop at NDC Oslo: Bulletproof APIs: Hands-On API Security (10/06/2024 - 14/06/2024 — Oslo, Norway)
- Conference talk at NDC Oslo: SEVEN things about API security (10/06/2024 - 14/06/2024 — Oslo, Norway) (More information)
- Course curator of SecAppDev 2024: A week-long course on secure application development (03/06/2024 - 07/06/2024 — Leuven, Belgium)
- Conference talk at ITkonekt: The reality of building secure APIs (17/05/2024 — Belgrade, Serbia) (More information)
- Conference talk at Drupal Camp: We hate cookies! (11/05/2024 — Ghent, Belgium) (More information)
- Conference talk at Techorama: SEVEN things about API security (06/05/2024 - 08/05/2024 — Antwerp, Belgium) (More information)
- 1-day workshop at Techorama: Bulletproof APIs: Hands-On API Security (06/05/2024 - 08/05/2024 — Antwerp, Belgium)
- Online workshop at Angular Architects: Angular Security Workshop (15/04/2024 - 16/04/2023)
- Invited expert talk at 3rd EU Sign Stakeholders Forum: IAM challenges in cloud adoption efforts (19/03/2024 — Brussels, Belgium)
- Conference talk at Voxxed Days CERN: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (22/01/2024 - 23/01/2024 — CERN, Switzerland) (More information)
- Conference talk at NDC Security: The Past, Present, and Future of Cross-Site/Cross-Origin Request Forgery (08/01/2024 - 11/01/2024 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: Bulletproof APIs: Hands-On API Security (08/01/2024 - 11/01/2024 — Oslo, Norway)
2023 events
- Meetup talk at Singapore Identity and Security: Breaking and securing OAuth 2.0 in frontends (21/11/2023 — Singapore, Singapore) (More information)
- Conference talk at Devoxx: SEVEN things about API security (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
- Conference tutorial at Devoxx: Introduction to OAuth 2.0 and OpenID Connect (02/10/2023 - 06/10/2023 — Antwerp, Belgium) (More information)
- Online workshop at Angular Architects: Angular Security Workshop (25/09/2023 - 26/09/2023)
- Conference talk at OAuth Security Workshop: Breaking and securing OAuth 2.0 in frontends (22/08/2023 - 24/08/2023 — London, UK) (More information)
- Course curator of SecAppDev 2023: A week-long course on secure application development (12/06/2023 - 16/06/2023 — Leuven, Belgium)
- Keynote at VoxxedDays Brussels: AppSec is too hard!? (23/05/2023 — Brussels, Belgium) (More information)
- 1-day workshop at NG-BE: Securing the APIs behind your Angular applications (23/03/2023 - 24/03/2023 — Gent, Belgium)
- Online workshop at Angular Architects: Angular Security Workshop (27/02/2023 - 28/02/2023)
- Conference talk at NDC London: Getting API security right (23/01/2023 - 27/01/2023 — London, UK) (More information)
- 2-day workshop at NDC London: A builder’s guide to securing modern applications (23/01/2023 - 27/01/2023 — London, UK)
- Conference talk at NDC Security: Breaking and securing OAuth 2.0 in frontends (16/01/2023 - 19/01/2023 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: A builder’s guide to securing modern applications (16/01/2023 - 19/01/2023 — Oslo, Norway)
2022 events
- Invited talk (private): Securing frontend applications with Trusted Types (09/12/2022 — Willebroek, Belgium) (More information)
- Online workshop at Angular Architects: API Security Workshop (28/11/2022 - 29/11/2022)
- Online workshop at Angular Architects: Angular Security Workshop (07/11/2022 - 08/11/2022)
- Conference talk at NG-DE: Securing Angular with Trusted Types (06/10/2022 - 07/10/2022 — Berlin, Germany) (More information)
- Meetup talk at Amsterdam Secure Software Development: Forget about OAuth 2.0. Here comes OAuth 2.1 (03/10/2022 — Amsterdam, Netherlands) (More information)
- Meetup talk at Amsterdam Secure Software Development: AppSec is too hard!? (03/10/2022 — Amsterdam, Netherlands) (More information)
- Conference talk at NDC Oslo: Forget about OAuth 2.0. Here comes OAuth 2.1 (26/09/2022 - 30/09/2022 — Oslo, Norway) (More information)
- 2-day workshop at NDC Oslo: API security for developers (26/09/2022 - 30/09/2022 — Oslo, Norway)
- Conference talk at sec4dev: Forget about OAuth 2.0. Here comes OAuth 2.1 (06/09/2022 - 09/09/2022 — Vienna, Austria) (More information)
- 2-day workshop at sec4dev: Cutting-edge security for modern web applications (06/09/2022 - 09/09/2022 — Vienna, Austria)
- Conference talk at LocoMocoSec: Securing an API ecosystem with OAuth 2.0 (27/06/2022 - 30/06/2022 — Honolulu, Hawaii, USA) (More information)
- 2-day workshop at LocoMocoSec: Become an API Security Champion (27/06/2022 - 30/06/2022 — Honolulu, Hawaii, USA)
- Online workshop (US Times) at Angular Architects: Angular Security Workshop (20/06/2022 - 23/06/2022)
- Course curator of SecAppDev 2022: A week-long course on secure application development (13/06/2022 - 17/06/2022 — Leuven, Belgium)
- Conference talk at OWASP Global AppSec EU: Securing an API ecosystem with OAuth 2.0 (06/06/2022 - 10/06/2022) (More information)
- Conference talk at DevTalks Romania: Introduction to OAuth 2.0 and OpenID Connect (08/06/2022 - 10/06/2022 — Bucharest, Romania) (More information)
- Conference talk at Code Europe: Getting API security right (30/05/2022 - 02/06/2022 — Warsaw/Cracow/Tricity, Poland) (More information)
- Conference talk at Code Europe: Securing an API ecosystem with OAuth 2.0 (30/05/2022 - 02/06/2022 — Warsaw/Cracow/Tricity, Poland) (More information)
- Participation in the OAuth Security Workshop: Security working sessions (04/05/2022 - 06/05/2022 — Trondheim, Norway)
- Invited talk (private): Securing an API architecture (27/04/2022 — Leuven, Belgium)
- Guest lecture talk at Artesis Plantijn Hogeschool: Security in modern frontend applications (26/04/2022 — Antwerp, Belgium)
- Meetup talk at We Are Developers Security Day: Architecting API Security (20/04/2022)
- Conference talk at NDC Security: AppSec is too hard!? (04/04/2022 - 07/04/2022 — Oslo, Norway) (More information)
- Conference talk at NDC Security: Getting API security right (04/04/2022 - 07/04/2022 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: API security for developers (04/04/2022 - 07/04/2022 — Oslo, Norway)
- Conference talk at OWASP BeNeLux Day: Securing React with Trusted Types (01/04/2022 — Kortrijk, Belgium) (More information)
- Invited talk (private): Securing React with Trusted Types (24/03/2022) (More information)
- Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (24/03/2022)
- Invited talk at sec4dev Special Meetup: Securing frontend applications with Trusted Types (24/02/2022) (More information)
- Online workshop at Angular Architects: Angular Security Workshop (22/02/2022 - 23/02/2022)
- Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (17/02/2022)
- Invited talk (private): Securing React applications (01/02/2022)
- Guest expert at a 42Crunch Webinar: OWASP API Security Top 10 Challenges (25/01/2022)
2021 events
- Conference talk at NG-BE: Securing Angular with Trusted Types (02/12/2021 - 03/12/2021 — Gent, Belgium) (More information)
- 1-day workshop at NG-BE: Leveling up on Angular security (02/12/2021 - 03/12/2021 — Gent, Belgium)
- Conference talk at NDC Oslo: Securing React with Trusted Types (29/11/2021 - 03/12/2021 — Oslo, Norway) (More information)
- 2-day workshop at NDC Oslo: A builder’s guide to Single Page Application security (29/11/2021 - 03/12/2021 — Oslo, Norway)
- Conference talk at International JavaScript Conference: OAuth 2.0 and OpenID Connect for Single Page Applications (25/10/2021 - 29/10/2021 — Munich, Germany) (More information)
- Online course (live with recordings): API Security best practices (25/10/2021 - 09/11/2021)
- Invited talk at Building Bruges: Getting API security right (20/10/2021 — Brugge, Belgium) (More information)
- Invited talk (private): API Security is too hard!? (19/10/2021)
- Online course (live with recordings): Cutting-edge React security (15/10/2021 - 21/10/2021)
- Conference talk at Swiss Cyber Storm: AppSec is too hard!? (12/10/2021 — Bern, Switzerland) (More information)
- Conference talk at ScotSoft: Taking security seriously (07/10/2021) (More information)
- 2-day workshop at Angular Architects: Angular Security Workshop (04/10/2021 - 05/10/2021)
- Keynote at OWASP's 20th Anniversary Celebration: AppSec is too hard!? (24/09/2021) (More information)
- Conference talk at HexCon: Getting API security right (21/09/2021 - 23/09/2021) (More information)
- Invited talk at DevSecOps Road Trip: Better security through code hygiene (17/09/2021) (More information)
- Conference talk at DevSecCon: Token security in Single Page Applications (24/06/2021) (More information)
- Participation in the DevDays Europe: Security panel (08/06/2021 - 09/06/2021)
- Conference talk at DevDays Europe: Serving the right recipe for API authentication (08/06/2021 - 09/06/2021) (More information)
- 2-day workshop at Angular Architects: API Security Workshop (27/05/2021 - 28/05/2021)
- Talk at Avocado Labs: Learning about XSS misconceptions with security expert Philippe De Ryck (25/05/2021)
- 2-day workshop at Angular Architects: Angular Security Workshop (20/05/2021 - 21/05/2021)
- Invited talk (private): Token security in APIs (05/05/2021)
- Conference talk at NG-BE Live: Token security in Single Page Applications (20/04/2021) (More information)
- Webinar with Jim Manico: alert(‘OAuth 2.0’); // The impact of XSS on OAuth 2.0 in SPAs (07/04/2021) (More information)
- Guest lecture at Stony Brook University: Getting API security right (30/03/2021) (More information)
- Meetup talk at OWASP Jakarta Chapter: Getting API security right (27/03/2021) (More information)
- Conference talk at Secure Coding Virtual Summit: Getting API security right (24/03/2021) (More information)
- 2-day workshop at Angular Architects: Angular Security Workshop (15/03/2021 - 16/03/2021)
- Conference talk at sec4dev: Token security in Single Page Applications (22/02/2021 - 25/02/2021) (More information)
- 2-day workshop at sec4dev: Hands-on API security for developers (22/02/2021 - 25/02/2021)
- Meetup talk at OWASP North Virginia Chapter: Serving the right recipe for API authentication (18/02/2021) (More information)
- Meetup talk at OWASP Belgium Chapter: JWT’s - sign em like it’s hot (18/02/2021)
- Invited talk (private): The anatomy of an attack (09/02/2021)
2020 events
- Workshop at Voxxed Days Ticino: OAuth 2.0 security in single page applications (10/12/2020)
- Conference talk at Dev Day Sri Lanka: OAuth 2.0 and OpenID Connect for Single Page Applications (16/11/2020 - 20/11/2020) (More information)
- Conference talk at LocoMocoSec: Serving the right recipe for end-user authentication (03/11/2020 - 06/11/2020) (More information)
- Conference talk at Visug XL: Serving the right recipe for API authentication (29/10/2020) (More information)
- Conference talk (private): OAuth 2.0 and OpenID Connect for Single Page Applications (23/10/2020) (More information)
- Conference talk at GDG DevFest UK & Ireland: OAuth 2.0 and OpenID Connect for Single Page Applications (17/10/2020) (More information)
- Conference talk at OWASP Global AppSec Virtual: OAuth 2.0 and OpenID Connect for Single Page Applications (01/10/2020 - 22/10/2020) (More information)
- Appearance on the Cybersecurity & Cloud Podcast: Cybersecurity discussion (19/06/2020)
- Appearance on the Techie Leadership podcast: Leadership discussion (11/06/2020)
- Conference talk at sec4dev: Authentication with OpenID Connect in Angular applications (24/02/2020 - 27/02/2020 — Vienna, Austria) (More information)
- Keynote at sec4dev: How security affects the people behind the code (24/02/2020 - 27/02/2020 — Vienna, Austria) (More information)
- 2-day workshop at sec4dev: A builder’s guide to Single Page Application security (24/02/2020 - 27/02/2020 — Vienna, Austria)
- Appearance on My Angular Story: Angular, Security, and cooking (04/02/2020)
- Conference talk at NDC London: Common API security pitfalls (27/01/2020 - 31/01/2020 — London, United Kingdom) (More information)
- Conference talk at NDC Security: Common API security pitfalls (22/01/2020 - 24/01/2020 — Oslo, Norway) (More information)
- 2-day workshop at NDC Security: A builder’s guide to Single Page Application security (22/01/2020 - 24/01/2020 — Oslo, Norway)
2019 events
- Appearance on Adventures in Angular: Secure Angular applications (10/12/2019)
- Conference talk at NG-BE 2019: Authentication with OpenID Connect in Angular applications (05/12/2019 - 06/12/2019 — Gent, Belgium) (More information)
- 1-day workshop at NG-BE 2019: Secure API access with OAuth 2.0 in Angular (05/12/2019 - 06/12/2019 — Gent, Belgium)
- Invited talk at the Axxes Freelance Event: Security with OAuth 2.0 and OpenID Connect (28/11/2019 — Antwerpen, Belgium)
- Meetup talk at OWASP Belgium chapter: Recent evolutions in the OAuth 2.0 and OpenID Connect landscape (28/11/2019 — Leuven, Belgium) (More information)
- Free 1-day workshop hosted by OWASP Hyderabad: Diving into web security with the OWASP top 10 (23/11/2019 — Hyderabad, India)
- Free 1-day workshop hosted by Null Bangalore: Diving into web security with the OWASP top 10 (16/11/2019 — Bangalore, India)
- Meetup talk at Bucharest Java User Group: Common API security pitfalls (13/11/2019 — Bucharest, Romania) (More information)
- Conference talk at DevCon 2019: The parts of JWT security nobody talks about (13/11/2019 — Bucharest, Romania) (More information)
- Conference workshop (private): Security in modern Angular & React applications (14/10/2019 - 16/10/2019 — Hyderabad, India)
- Invited talk at ICTech Day: Introduction to OAuth 2.0 and OpenID Connect (10/10/2019 — Antwerpen, Belgium) (More information)
- Invited talk (private): Common API security pitfalls (20/09/2019 — London, United Kingdom) (More information)
- Meetup talk at OWASP London Chapter: Common API security pitfalls (19/09/2019 — London, United Kingdom) (More information)
- Conference talk at Angular Connect: Angular and the OWASP top 10 (19/09/2019 - 20/09/2019 — London, United Kingdom) (More information)
- Conference talk at OWASP Global AppSec DC: Common API security pitfalls (09/09/2019 - 13/09/2019 — Washington, DC, USA) (More information)
- 2-day workshop at OWASP Global AppSec DC: A builder’s guide to Single Page Application security (09/09/2019 - 13/09/2019 — Washington, DC, USA)
- Appearance on The Secure Developer: Security in Angular applications (01/08/2019)
- Free 1-day workshop hosted by Nulab Tech Talks Amsterdam: Diving into web security with the OWASP top 10 (17/07/2019 — Amsterdam, The Netherlands)
- Meetup talk at Nulab Tech Talks Amsterdam: The parts of JWT security nobody talks about (16/07/2019 — Amsterdam, The Netherlands) (More information)
- Conference talk at Identiverse: Security patterns for keeping secrets in the browser (25/06/2019 - 28/06/2019 — Washington, DC, USA) (More information)
- Conference talk at GOTO Amsterdam: Taking security seriously (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands) (More information)
- Conference talk at GOTO Amsterdam: Common API security pitfalls (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands) (More information)
- Meetup talk at Amsterdam Secure Software Development: The parts of JWT security nobody talks about (17/06/2019 — Amsterdam, The Netherlands) (More information)
- Meetup talk at Amsterdam Secure Software Development: Common API security pitfalls (17/06/2019 — Amsterdam, The Netherlands) (More information)
- 1-day workshop at GOTO Amsterdam: Client-side security for modern web applications (17/06/2019 - 20/06/2019 — Amsterdam, The Netherlands)
- Appearance on The Frontside Podcast: Security in frontend applications (13/06/2019)
- Participation in the Open Security Summit: Security working sessions (03/06/2019 - 07/06/2019 — London, UK)
- Meetup talk at Full Stack Tel Aviv meetup: The parts of JWT security nobody talks about (30/05/2019 — Tel-Aviv, Israel) (More information)
- Conference talk at OWASP Global AppSec Tel Aviv: Common API security pitfalls (29/05/2019 - 30/05/2019 — Tel-Aviv, Israel) (More information)
- Conference talk at InfoShare: Common API security pitfalls (08/05/2019 - 09/05/2019 — Gdansk, Poland) (More information)
- Conference talk at LocoMocoSec: The truth about cookies, tokens and APIs (15/04/2019 - 19/04/2019 — Lihue, Hawaii, USA) (More information)
- Meetup talk at Angular Graz Pizza-Meetup: The parts of JWT security nobody talks about (22/03/2019 — Graz, Austria) (More information)
- 1-day conference workshop at Angular College: A secure foundation for your Angular application (22/03/2019 — Graz, Austria)
- Conference talk at sec4dev: Common API security pitfalls (25/02/2019 - 27/02/2019 — Vienna, Austria) (More information)
- 1-day workshop at sec4dev: A hands-on take on modern web security (25/02/2019 - 27/02/2019 — Vienna, Austria)
- Conference talk at Belgian Cyber Security Coalition: Security patterns for keeping secrets in the browser (21/02/2019 — Leuven, Belgium) (More information)
- Course curator of SecAppDev 2019: A week-long course on secure application development (18/02/2019 - 22/02/2019 — Leuven, Belgium)
- Guest expert at an Ensighten Webinar: Client-Side website security - The missing piece to a secure website (12/02/2019)
- Half-day workshop at hackages: OWASP top 10 vulnerabilities (08/02/2019 — Brussels, Belgium)
2018 events
- Conference talk at NG-BE: Angular and the OWASP top 10 (06/12/2018 - 07/12/2018 — Gent, Belgium) (More information)
- 1-day workshop at NG-BE: A secure foundation for your Angular application (06/12/2018 - 07/12/2018 — Gent, Belgium)
- 1-day workshop (private): A secure foundation for your Angular application (24/11/2018 — Gent, Belgium)
- Conference talk at GOTO Copenhagen: From the OWASP top 10(s) to the OWASP ASVS (20/11/2018 — Copenhagen, Denmark) (More information)
- Meetup talk at OWASP Dresden: Common API security pitfalls (02/11/2018 — Dresden, Germany) (More information)
- Meetup talk at OWASP Hamburg: Common API security pitfalls (01/11/2018 — Hamburg, Germany) (More information)
- Conference talk at GOTO Berlin: Introduction to OAuth 2.0 and OpenID Connect (30/10/2018 - 01/11/2018 — Berlin, Germany) (More information)
- Conference talk at GOTO Berlin: From the OWASP top 10(s) to the OWASP ASVS (30/10/2018 - 01/11/2018 — Berlin, Germany) (More information)
- 1-day workshop at GOTO Berlin: Application security for user interface developers and designers (30/10/2018 - 01/11/2018 — Berlin, Germany)
- Conference talk at OWASP AppSec Bucharest: Cookies vs Tokens - a paradoxical choice (//2018 — Bucharest, Romania) (More information)
- Meetup talk at ngBucharest: Angular and the OWASP top 10 (25/10/2018 — Bucharest, Romania) (More information)
- Meetup talk at OWASP Belgium: Common API security pitfalls (23/10/2018 — Brugge, Belgium) (More information)
- 2-day workshop by Pragmatic Web Security: Angular Security Masterclass (18/10/2018 - 19/10/2018 — Leuven, Belgium)
- 2-day workshop by Pragmatic Web Security: Web Security Essentials (15/10/2018 - 16/10/2018 — Leuven, Belgium)
- Meetup talk at Angular Belgium: Passwords and pixie dust - A look at OAuth 2.0 security in Angular (4/10/2018 — Mechelen, Belgium) (More information)
- Invited talk at JOIN: HTTPS for developers (4/10/2018 — Mechelen, Belgium) (More information)
- Meetup talk at BarcelonaJS: Cookies vs Tokens - a paradoxical choice (26/09/2018 — Barcelona, Spain) (More information)
- Meetup talk at Angular Oslo: Angular and the OWASP top 10 (12/09/2018 — Oslo, Norway) (More information)
- Meetup talk at Angular Oslo: Cookies vs Tokens - a paradoxical choice (12/09/2018 — Oslo, Norway) (More information)
- Conference talk at JavaZone: Common API security pitfalls (12/09/2018 - 13/09/2018 — Oslo, Norway) (More information)
- Meetup talk at Dallas.js: Cookies vs Tokens - a paradoxical choice (30/08/2018 — Dallas, Texas, USA) (More information)