Principles for Developing More Secure Systems

Updated on May 24, 2019
GOTO Chicago 2019
Eleanor Saitta
Eleanor Saitta

Consulting CISO and Security Architect

Security can be scary – regardless if you've been coding for a few months, years or decades.

In this talk, we'll walk you through a useful set of tools for thinking about system security, regardless of what kind of system you're building. While you might have heard of the "Confidentiality, Integrity, Authentication" triad, there's more to consider, including things like correctness, observability, overcapacity, and scalability.

We'll walk through each of these concepts with detailed examples, and talk about how each one applies to all sorts of systems. After this talk, you should have a clear, coherent idea of the types of things that you need to think about during each development decision.