Security-Centered Design: Exploring the Impact of Human Behavior

Chris Shiflett (12.Jun.2010 at 09:30)
Keynote at Dutch PHP Conference 2010 (English - UK)

Rating: 5 of 5

Security is more than filtering input and escaping output (FIEO), and it's more than cross-site scripting (XSS) and cross-site request forgeries (CSRF). Security isn't even always black and white. In order to create a more secure user experience, we need to understand how people think. Perception is as important as reality, and meeting user expectations is a fundamental of good security. In this multifarious talk, I'll explore topics such as change blindness and ambient signifiers, and I'll show some real-world examples that demonstrate the profound impact human behavior can have on security.

Who are you?

Claim talk

By clicking this button you are declaring that you are the speaker responsible for it and a claim request will be sent to the administrator of the event.

If the claim is approved you will be able to edit the information for this talk.

Are you sure?

Comments closed.


Rating: 5 of 5

12.Jun.2010 at 10:42 by Marcel van Veelen (9 comments)


Rating: 5 of 5

12.Jun.2010 at 10:44 by Koen (16 comments)

Great keynote!

Rating: 5 of 5

12.Jun.2010 at 10:45 by Gerben (53 comments)

I liked how Chris pointed out the various pitfalls of commonly accepted uxp principles, and how you need to come up with creative solutions to these challenges. Not unimportant: the talk was very entertaining.

Rating: 5 of 5

12.Jun.2010 at 10:48 by Tom Smith (12 comments)

Just as good as PHP London 09! Although I didn't see the change this time! Brilliant speaker and interesting points!

Rating: 5 of 5

12.Jun.2010 at 11:02 by Onno Lissenberg (30 comments)

OMG I'm blind O_o

Rating: 5 of 5

12.Jun.2010 at 11:06 by Tim de Pater (52 comments)

Great talk, a real eye-opener

Rating: 5 of 5

12.Jun.2010 at 11:40 by Jacob Christiansen (59 comments)

Great talk. Good introduction to some new stuff. Very interesting.

Rating: 5 of 5

12.Jun.2010 at 11:45 by Nikolas Branis (9 comments)

I wouldn't expect anything less! Great talk!

Rating: 5 of 5

12.Jun.2010 at 11:47 by Thijs Feryn (168 comments)

Second time I see this talk and I still absolutely love it. Is it about PHP? No ! Is it important for people involved with PHP? Yes !

I like the very relaxed, confident, but humble style Chris brings to the stage. The slides look good , but even cooler: they allow crowd interaction and there even some videos involved.

My favorite talk so far because it also deals with people rather than just technology.

Rating: 5 of 5

12.Jun.2010 at 11:55 by Jeroen Keppens (52 comments)

Super talk! Informative, funny, natural born speaker.

Rating: 5 of 5

12.Jun.2010 at 12:09 by Rob Allen (109 comments)

I can only second everyone else. Excellent keynote providing food for thought.

Rating: 5 of 5

12.Jun.2010 at 14:53 by Boy Baukema (45 comments)

Chris didn't dissapoint, very interesting and entertaining talk.

Rating: 4 of 5

12.Jun.2010 at 19:09 by Richard Hinkamp (14 comments)

Really entertaining keynote, fun way to bring a less fun (imho) topic.

Rating: 5 of 5

12.Jun.2010 at 20:56 by Onno Marsman (66 comments)

Great and entertaining presentation which my coworkers should have seen. Nice to let the audience participate.

The only minor downside for me personally was I already knew the Amazing Color Changing Card trick and had already thought about this clip during the presentation before it was mentioned. Always a pleasure to see it again though.

Rating: 5 of 5

12.Jun.2010 at 21:58 by NĂºria Aloy (34 comments)


Rating: 5 of 5

12.Jun.2010 at 23:46 by Erik Snoeijs (45 comments)

great keynote about the social side of security.

Rating: 5 of 5

13.Jun.2010 at 00:32 by Bram Rohde (11 comments)

Saw the Amazing Color Changing Card trick before as well.
Still great presentation and worthy of being a keynote.

Rating: 5 of 5

13.Jun.2010 at 22:52 by Bart McLeod (70 comments)

The best talk I ever attended so far. I liked many things about it. To point out just a few: Chris has a very calm and clear voice that makes it very easy to stay focussed. He not just made his points but also proved them in a strong way. The selection of images and examples was engaging. When I look back at it I still smile.

Rating: 5 of 5

14.Jun.2010 at 10:29 by Arno Lambert (27 comments)

wonderfull and entertaining view on human behaviour focussed on the web solutions. Loved it.

Rating: 5 of 5

14.Jun.2010 at 16:50 by Stephane Winnepenninckx (17 comments)

There is a lot of information I can use here ;-) I hope to find the video about the card deck trick.

Rating: 5 of 5

14.Jun.2010 at 20:18 by Martin de Keijzer (56 comments)

This was the best keynote I have ever seen. Although it wasn't technical at all, it showed us all something that we surely need to know but just don't come up with between the UML'ing and programming.
Although I was working on my own presentation I listened carefully and sometimes even looked up because I actually didn't want to miss this one.

Rating: 5 of 5

16.Jun.2010 at 17:57 by Tim Swann (41 comments)

There's a reason this was a keynote talk - it was EXCELLENT.
It's not often you get to be so involved with a talk. Highlight of the event for me.

Speaker comment:

16.Jun.2010 at 18:57 by Chris Shiflett (3 comments)

Thank you all very much for the feedback! I really appreciate you taking the time to say such nice things, and I'm so happy you enjoyed it. :-)

© 2015