Protecting JavaScript Source Code: Obfuscation and More

With a thriving development ecosystem, JavaScript today powers highly advanced apps in banking, e-commerce, healthcare, and many other high-stakes industries.

Despite its numerous advantages and business value, organizations must consider the changes to their threat model when using JavaScript-based web and mobile apps.

By default, client-side JavaScript is left exposed. Every single piece of code, including code secrets, proprietary algorithms, and functions that handle sensitive data, can be readily retrieved and modified by the end-user, opening the door to serious attacks.

JavaScript obfuscation provides an important layer of defense against these attacks by making it extremely hard for anyone to reverse-engineer the code. Then, additional runtime defenses should be added to greatly increase the cost of attacks.

In this webinar, we will:

• Explain what JavaScript obfuscation is, how it works, and how it compares to other techniques like minifiers and optimizers;
• Explore real-life examples of JavaScript obfuscation transformations and their goals;
• Highlight the key metrics used to measure an obfuscation product;
• Explain the value of using code locks and self-defending on top of obfuscation;
• Demonstrate how obfuscation and runtime protection thwart reverse-engineering and tampering attacks.

By joining the webinar, you will also receive a Data Sheet on JavaScript Security Threats.