Alex Sexton at dotJS 2013
Front End Web Security is hard. This talk goes through why there's no hope of patching every hole and suggests the opposite approach via whitelisting and trying to make security sexier so more people buy-in.