Application Security Weekly (Audio)
Technology
Farshad Abasi joins us again to talk about creating a new OWASP project, the Secure Pipeline Verification Standard. (Bonus points for not being a top ten list!) We talk about what it takes to pitch a new project and the problems that this new project is trying to solve. For this kind of project to be successful -- as in making a positive impact to how software is built -- it's important to not only identify the right audience, but craft guidance in a way that's understandable and achievable for that audience. This is also a chance to learn more about a project in its early days and the opportunities for participating in its development!
Segment resources
PrintListener recreates fingerprints, iMessage updates key handling for a PQ3 rating, Silent Sabotage shows supply chain subterfuge against AI models, 2023 Rust survey results, the ways genAI might help developers, and more!
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-274
Getting Your First Conference Presentation - Sarah Harvey - ASW #271
Dealing with the Burden of Bad Bots - Sandy Carielli - ASW #270
Communicating Technical Topics Without Being Boring - Eve Maler - ASW #269
What's in Store for 2024? - ASW #268
HTTP RFCs Have Evolved, Breaking Into Cloud, Scaling AppSec at Netflix, & Confluence - Keith Hoodlet - ASW Vault
OWASP SAMM - Software Assurance Maturity Model - Sebastian Deleersnyder - ASW Vault
Making Service Meshes Work for People - Idit Levine - ASW #267
The ABCs of RFCs - Heather Flanagan - ASW #266
All the News - Just Six Months Later - Application Security Weekly #265
Starting with Appsec -- Is It More of a Position or a Process? - ASW #264
Platform Firmware Security - Maggie Jauregui - ASW Vault
How 2023 Changed Application Security and What’s to Come in 2024 - Karl Triebes - ASW #263
Security from a Developer's Perspective - Josh Goldberg - ASW #262
How Security Tools Must Evolve - Dan Kuykendall - ASW #261
OAuth, WebAuthn, & The Impact of Design Choices - Dan Moore - ASW #260
OT Security - Huxley Barbee - ASW #259
Shifting Focus to Make DevSecOps Successful - Janet Worthington - ASW #258
Creating Presentations and Training That Engage an Audience - Lina Lau - ASW #257
Supply Chain Security Security with Containers and CI/CD Systems - Kirsten Newcomer - #ASW 256
Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast