OWASP Zhytomyr meetup: SSDLC and product security
OWASP Zhytomyr meetup “Security on your project from scratch”: risks analysis, building SSLDC, working with the development team and checklists.
Content related to security
Defense in depth: trench warfare principles for building secure distributed applications
It comes to no surprise that any micro-services, any security controls you use to build applications – will eventually be broken (or fail).
Security, privacy and cryptography at WWDC19
Apple made many announcements on WWDC 2019 about cryptography, cybersecurity and privacy.
Protecting sensitive data in modern multi-component systems
Modern apps are multi-components, and most data leaks are caused by poor architectural decisions.
Secure Development Is Dead, Long Live Secure Development
The essay I wrote for De Programmatica Ipsum magazine about secure software development and the mindset gap between the world of product makers and the world of security people.