Difference between revisions of "Podcast News"

Revision as of 00:56, 19 May 2010

OWASP Podcast News

OWASP NEWS 2010

Next Recording : May 18, 2010 9pm Eastern

OWASP is focusing on outreach for 2010, but what is the best way to reach out? How should appsec professionals reach software developers?
Panopticlick project at the EFF. You are uniquely identifiable by your browser characteristics, even if you use an anonymous proxy. Some interesting data https://panopticlick.eff.org/
The word trust is often used in IT security. How would you say application security applies to the trust relationship between customers and vendors, or endusers and developers if you will?
Joshua Corman, David Rice, and Jeff Williams released the Rugged Software Manifesto in February. Does it stick to software developers or is it just an appsec utopia? Do developers really care if their software is rugged or not?
What do you think, do we need to educate developers about security - or just make their frameworks more secure so developers do not need to code with security knowledge in mind?

@@ Line 11: / Line 11: @@
 # The word trust is often used in IT security. How would you say application security applies to the trust relationship between customers and vendors, or endusers and developers if you will?
 # Joshua Corman, David Rice, and Jeff Williams released the Rugged Software Manifesto in February. Does it stick to software developers or is it just an appsec utopia? Do developers really care if their software is rugged or not?
-# What do you think, do we need to educate developers about security - or just make their frameworks more secure so developers do not need to both with security knowledge?
+# What do you think, do we need to educate developers about security - or just make their frameworks more secure so developers do not need to code with security knowledge in mind?