Bridging The Security Gap
Deze dagen ben ik op Brucon. Zo nu en dan pak ik één van de onderwerpen om daar wat verder op in te gaan.
I had a discussion with one of our security specialists last week and asked him where organizations or developers should start in order to produce more secure software. The field of security has grown enormously the last decade and I can imagine that the amount of information coming at you is overwhelming if you dive into it. Our specialist answered: “be paranoid about input.” This was not working for me: how can someone new to security know what to look for and what to do with it?