Security-Centered Design: Don't Just Plan for Security; Design For It

Comments

Comments are closed.

Excellent session. Chris is obviously knowledgeable in the area of security but he's also a good speaker. Unlike some speakers I've seen at other conferences, his presentation style does not get in the way of his material.

Chris called his session 'weird'. I wouldn't say it was weird, but it was very refreshing; a totally different style than most conference talks (with social experiments with the audience).

Quite remarkable demonstration about how security is much more than just 'escape output, filter input'.

Anonymous at 12:22 on 16 Nov 2008

Very interesting talk on how security is more than just writing secure code. A good user interface allows end users to help protect their own security. Also a good comparison between the credit card industry and interactive web sites/services.