Lehan Huang

Lehan Huang

Web Application Security Engineer


Vinayendra Nataraja

Vinayendra Nataraja

Product Security Engineer



In this first installment of our Secure Salesforce Development webinar series members of the Salesforce Trust team will introduce the core concepts behind developing secure applications on the Salesforce platform using Apex and Visualforce. We’ll walk through creation and development of a simple, on-platform app and examine common security vulnerabilities that developers unintentionally introduce to their applications. After discussing the danger of these vulnerabilities and demonstrating their impact we’ll go in depth into how to avoid introducing them in your code, how to review existing code and find them, and how to fix them.

Key Takeaways

  • Secure Development Lifecycle

  • The sample app concept and initial development

  • CRUD/FLS Trust Model

  • CRUD/FLS Vulnerability via Demonstration

  • Sharing rules and development best practices

  • SOQL Injection

Intended Audience

  • All developers on the Salesforce platform

  • ISVs and ISV developers

  • Salesforce Development Consultants

Recommended Resources


Recorded : March 10, 2016