Application Security Weekly (Audio)
Technology
One of the biggest failures in appsec is an attitude that blames users for security problems. A lot of processes and workflows break down because of an insecure design or insecure defaults. Bender Gagyi chats with us about the impact of the user experience (UX) on security and why it's not only important to understand how to make a user's life easier, but in defining who that user is in the first place.
Segment resources:
The GoFetch side channel in Apple CPUs, OpenSSF's plan for secure software developer education, fuzzing vs. formal verification as a security strategy, hard problems in InfoSec (and AppSec), and more!
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-278
Stopping Business Logic Attacks: Why a WAF is no Longer Enough - Karl Triebes - ASW #255
Building a Scanner and a Community with Zed Attack Proxy - Simon Bennetts - ASW #254
Broadening What We Call AppSec - Christien Rioux - ASW Vault
How Can Security Be Smart About Using AI? - Jeff Pollard - ASW #253
Security in a Cloud Native World & Mobile App Attacks - ASW #252
Pointers and Perils for Presentations - Josh Goldberg - ASW #251
You've Got Appsec, But Do You Have ArchSec? - Merritt Baer - ASW #250
Identity and Verifiable Credentials in Cars - Eve Maler - ASW #249
Navigating the Complexities of Development to Create Secure APIs - Kristen Bell - ASW #248
Securing Non-Election Election Systems, Modernizing AppSec Education - Brian Glas - ASW #247
Software Trust & Adversaries, Developer-Focused Security - Shannon Lietz, Melinda Marks - ASW #246
The Psychology of Training - Matias Madou - ASW Vault
Latest Web Vulnerability Trends & Best Practices - Patrick Vandenberg - ASW #245
Policy Momentum in Coordinated Vulnerability Disclosure - Amit Elazari - ASW Vault
Enhancing Security: App Modernization, Identity Orchestration, & Big IAM Challenge - Eric Olden - ASW #244
What's the Deal with API Security? - Sandy Carielli - ASW #243
Doing Application Security Right – Farshad Abasi – ASW VAULT
Ten Things I Hate About Lists - ASW #242
Securing the App Lifecycle: Strategies for Long-Term Software Security and Mitigating the Threat of Malicious Packages - ASW #241
From Security Theater to Resilience: Unveiling New Approaches to Application Security - ASW #240
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
The Unbelivable Truth - Series 1 - 26 including specials and pilot
Lex Fridman Podcast