
Secure Designs, UX Dragons, Vuln Dungeons - Jack Cable - ASW #328
29 April - 44 minsIn this live recording from BSidesSF we explore the factors that influence a secure design, talk about how to avoid the bite of UX dragons, and why designs should put classes of vulns into dungeons.
But we can't threat model a secure design forever and we can't oversimplify guidance for a design to be "more secure". Kalyani Pawar and Jack Cable join the discussion to provide advice on evaluating secure designs through examples of strong and weak designs we've seen over the years. We highlight the importance of designing systems to serve users and consider what it means to have a secure design with a poor UX. As we talk about the strategy and tactics of secure design, we share why framing t...

Existential Dread, MCP, Cloudflare, ESXI, QR Codes, Salt Typhoon, Aaran Leyland... - SWN #495
33 mins
18 July Finished

AI meltdowns, Gigabyte, NCSC, Rowhammer, Gravity Form, Grok, AsyncRat, Josh Marpet... - SWN #494
30 mins
15 July Finished

Getting Started with Security Basics on the Way to Finding a Specialization - ASW #339
1 hour 7 mins
15 July Finished

Monzy Merza, How Much AI is Too Much, and the Weekly News - Monzy Merza - ESW #415
1 hour 43 mins
14 July Finished