Principles for Developing More Secure Systems
You need to be signed in to add a collection
Security can be scary – regardless if you've been coding for a few months, years or decades. In this talk, we'll walk you through a useful set of tools for thinking about system security, regardless of what kind of system you're building. While you might have heard of the "Confidentiality, Integrity, Authentication" triad, there's more to consider, including things like correctness, observability, overcapacity, and scalability. We'll walk through each of these concepts with detailed examples, and talk about how each one applies to all sorts of systems. After this talk, you should have a clear, coherent idea of the types of things that you need to think about during each development decision.
Transcript
Security can be scary – regardless if you've been coding for a few months, years or decades.
In this talk, we'll walk you through a useful set of tools for thinking about system security, regardless of what kind of system you're building. While you might have heard of the "Confidentiality, Integrity, Authentication" triad, there's more to consider, including things like correctness, observability, overcapacity, and scalability.
We'll walk through each of these concepts with detailed examples, and talk about how each one applies to all sorts of systems. After this talk, you should have a clear, coherent idea of the types of things that you need to think about during each development decision.
About the speakers
Consulting CISO and Security Architect