Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Kelsey Gilmore-Innis - Seriously Strong Securit...
Search
PyCon 2016
June 01, 2016
Programming
6
890
Kelsey Gilmore-Innis - Seriously Strong Security on a Shoestring
PyCon 2016
June 01, 2016
Tweet
Share
More Decks by PyCon 2016
See All by PyCon 2016
Manuel Ebert - Putting 1 million new words into the dictionary
pycon2016
6
880
Brett Slatkin - Refactoring Python: Why and how to restructure your code
pycon2016
17
5.5k
Mike Graham - The Life Cycle of a Python Class
pycon2016
7
8.7k
Nathaniel Manista, Augie Fackler - Code Unto Others
pycon2016
0
490
Alex Gaynor - The cobbler's children have no shoes, or building better tools for ourselves
pycon2016
0
710
Adrienne Lowe - Bake the Cookies, Wear the Dress: Connecting with Confident Authenticity
pycon2016
0
320
Jake Vanderplas - Statistics for Hackers
pycon2016
17
4.7k
Daniele Procida - Documentation-driven development - lessons from the Django Project
pycon2016
4
820
Shannon Quinn - Python for Public Health: Building Statistical Models of Ciliary Motion
pycon2016
0
490
Other Decks in Programming
See All in Programming
はじめてみよう量子プログラミング
itokoichi01
0
210
開発を加速する共有Swift Package実践
elmetal
PRO
0
420
Developer Joy == Developer Productivity (really!)
hollycummins
1
220
エンジニア1年目で複雑なコードの改善に取り組んだ話
mtnmr
3
2k
事業フェーズの変化に対応する 開発生産性向上のゼロイチ
masaygggg
0
200
意外とフォントが大事だった話 / Font Issues on Internationalization
fumi23
0
110
Why Prism?
kddnewton
4
1.7k
長期運用プロダクトの開発速度を維持し続けるためのリファクタリング実践例
wataruss
8
2.7k
Findy - エンジニア向け会社紹介 / Findy Letter for Engineers
findyinc
4
90k
ECMAScript、Web標準の型はどう管理されているか / How ECMAScript and Web standards types are maintained
petamoriken
3
390
Prompt Cachingは本当に効果的なのか検証してみた.pdf
ttnyt8701
0
530
Hono・Prisma・AWSでGeoなAPI開発
nokonoko1203
5
680
Featured
See All Featured
Put a Button on it: Removing Barriers to Going Fast.
kastner
58
3.4k
Teambox: Starting and Learning
jrom
131
8.7k
Designing for humans not robots
tammielis
248
25k
The Invisible Customer
myddelton
119
13k
Facilitating Awesome Meetings
lara
49
5.9k
Principles of Awesome APIs and How to Build Them.
keavy
125
16k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
1
53
GraphQLとの向き合い方2022年版
quramy
43
13k
In The Pink: A Labor of Love
frogandcode
139
22k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.2k
Making the Leap to Tech Lead
cromwellryan
128
8.8k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
230
17k
Transcript
SERIOUSLY STRONG SECURITY ON A SHOESTRING content warning: sexual assault
SERIOUSLY STRONG SECURITY ON A SHOESTRING Kelsey Gilmore-Innis @_K_E_L_S_E_Y nerd.kelseyinnis.com
Callisto www.projectcallisto.org
IT DOESN’T TAKE AN ARMY
YOU CAN’T SECURE DATA ON THE INTERNET
YOU CAN SECURE DATA ON THE INTERNET
START FROM SOLID FOUNDATIONS
KNOW YOUR STRENGTHS
KNOW YOUR STRENGTHS •CLOUD HOSTING •PLATFORM AS A SERVICE •CONTENT
DISTRIBUTION NETWORKS
KNOW YOUR THREATS
SECURITY REQUIRES EMPATHY
YOUR BIGGEST THREAT IS IN THIS ROOM
YOUR SECOND BIGGEST THREAT IS WHO YOU’RE TRYING TO PROTECT
TELL ME YOUR CAT’S NAME AND I CAN ACCESS YOUR
WHOLE WORLD • ZXCVBN • CMU’s USABLE PRIVACY & SECURITY LAB • RATE LIMITING
“COMPUTER” CAN MEAN MANY THINGS
BOUNDARIES ARE HARD
DON’T GET CUTE
BE LAZY BUT NOT COMPLACENT
PAY SOMEONE SMARTER
THANKS! www.projectcallisto.org nerd.kelseyinnis.com