Comments on: Jedi mind tricks for building application security programs http://www.securityninja.co.uk/media-center/slideshare/jedi-mind-tricks-for-building-application-security-programs/ Security research, news and guidance Thu, 09 May 2013 14:59:42 +0000 hourly 1 http://wordpress.org/?v= By: Security Ninja http://www.securityninja.co.uk/media-center/slideshare/jedi-mind-tricks-for-building-application-security-programs/comment-page-1/#comment-11037 Security Ninja Thu, 21 Apr 2011 15:37:51 +0000 http://www.securityninja.co.uk/?p=2084#comment-11037 I found that everyone seemed to agree with that point, and the other points I made during the talk. Being blunt about it the things I covered in the talk aren't rocket science but sometimes we (the "industry") make it seem like it is. If you want developers to write secure code then teach them what they need to know, wrap that in processes that work, give them tools that actually work and empower them. I'm glad you like the presentation and it is always nice to see someone taking the time to say they liked it :) SN I found that everyone seemed to agree with that point, and the other points I made during the talk.

Being blunt about it the things I covered in the talk aren’t rocket science but sometimes we (the “industry”) make it seem like it is. If you want developers to write secure code then teach them what they need to know, wrap that in processes that work, give them tools that actually work and empower them.

I’m glad you like the presentation and it is always nice to see someone taking the time to say they liked it :)

SN

]]> By: Dave Ockwell-Jenner http://www.securityninja.co.uk/media-center/slideshare/jedi-mind-tricks-for-building-application-security-programs/comment-page-1/#comment-11036 Dave Ockwell-Jenner Thu, 21 Apr 2011 15:32:46 +0000 http://www.securityninja.co.uk/?p=2084#comment-11036 I couldn't agree more! In fact, it sounds like we have such a similar message I'm beginning to think I may have a long-lost twin. You're 100% correct in the thinking that developers (a critical mass, anyway) are *passionate* about delivering the most super-awesome++ code they can -- they just want to know *how*. I couldn’t agree more! In fact, it sounds like we have such a similar message I’m beginning to think I may have a long-lost twin. You’re 100% correct in the thinking that developers (a critical mass, anyway) are *passionate* about delivering the most super-awesome++ code they can — they just want to know *how*.

]]> By: Security Ninja at Security BSides London | Pundits on Payments http://www.securityninja.co.uk/media-center/slideshare/jedi-mind-tricks-for-building-application-security-programs/comment-page-1/#comment-11033 Security Ninja at Security BSides London | Pundits on Payments Thu, 21 Apr 2011 14:15:59 +0000 http://www.securityninja.co.uk/?p=2084#comment-11033 [...] Written by Tracy Glynn on Apr 21, 2011 | 0 Comments Check out some photos of Dave Rook aka Security Ninja presenting at BSidesLondon on April 20th. Dave is pictured below presenting “Jedi mind tricks for building application security programs” with Chris Wysopal (@WeldPond). View the presentation for yourself here. [...] [...] Written by Tracy Glynn on Apr 21, 2011 | 0 Comments Check out some photos of Dave Rook aka Security Ninja presenting at BSidesLondon on April 20th. Dave is pictured below presenting “Jedi mind tricks for building application security programs” with Chris Wysopal (@WeldPond). View the presentation for yourself here. [...]

]]>