Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Kelsey Gilmore-Innis - Seriously Strong Securit...
Search
PyCon 2016
June 01, 2016
Programming
6
920
Kelsey Gilmore-Innis - Seriously Strong Security on a Shoestring
PyCon 2016
June 01, 2016
Tweet
Share
More Decks by PyCon 2016
See All by PyCon 2016
Manuel Ebert - Putting 1 million new words into the dictionary
pycon2016
6
910
Brett Slatkin - Refactoring Python: Why and how to restructure your code
pycon2016
17
5.6k
Mike Graham - The Life Cycle of a Python Class
pycon2016
7
8.8k
Nathaniel Manista, Augie Fackler - Code Unto Others
pycon2016
0
500
Alex Gaynor - The cobbler's children have no shoes, or building better tools for ourselves
pycon2016
0
750
Adrienne Lowe - Bake the Cookies, Wear the Dress: Connecting with Confident Authenticity
pycon2016
0
340
Jake Vanderplas - Statistics for Hackers
pycon2016
17
4.9k
Daniele Procida - Documentation-driven development - lessons from the Django Project
pycon2016
4
840
Shannon Quinn - Python for Public Health: Building Statistical Models of Ciliary Motion
pycon2016
0
520
Other Decks in Programming
See All in Programming
大LLM時代にこの先生きのこるには-ITエンジニア編
fumiyakume
7
3.1k
これだけは知っておきたいクラス設計の基礎知識 version 2
masuda220
PRO
24
6.5k
PHPで書いたAPIをGoに書き換えてみた 〜パフォーマンス改善の可能性を探る実験レポート〜
koguuum
0
170
生成AIを使ったQAアプリケーションの作成 - ハンズオン補足資料
oracle4engineer
PRO
3
250
Lambda(Python)の リファクタリングが好きなんです
komakichi
3
220
[NG India] Event-Based State Management with NgRx SignalStore
markostanimirovic
1
170
PHPバージョンアップから始めるOSSコントリビュート / how2oss-contribute
dmnlk
1
1.1k
Bedrock×MCPで社内ブログ執筆文化を育てたい!
har1101
6
1.1k
Amazon CloudWatchの地味だけど強力な機能紹介!
itotsum
0
180
Unlock the Potential of Swift Code Generation
rockname
0
260
Sharing features among Android applications: experience feedback
jbvincey
0
110
fieldalignmentから見るGoの構造体
kuro_kurorrr
0
110
Featured
See All Featured
Raft: Consensus for Rubyists
vanstee
137
6.9k
jQuery: Nuts, Bolts and Bling
dougneiner
63
7.7k
The Cult of Friendly URLs
andyhume
78
6.3k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
32
5.4k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
30
2k
Cheating the UX When There Is Nothing More to Optimize - PixelPioneers
stephaniewalter
280
13k
A designer walks into a library…
pauljervisheath
205
24k
Docker and Python
trallard
44
3.3k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
45
7.2k
How GitHub (no longer) Works
holman
314
140k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
160
15k
Save Time (by Creating Custom Rails Generators)
garrettdimon
PRO
31
1.1k
Transcript
SERIOUSLY STRONG SECURITY ON A SHOESTRING content warning: sexual assault
SERIOUSLY STRONG SECURITY ON A SHOESTRING Kelsey Gilmore-Innis @_K_E_L_S_E_Y nerd.kelseyinnis.com
Callisto www.projectcallisto.org
IT DOESN’T TAKE AN ARMY
YOU CAN’T SECURE DATA ON THE INTERNET
YOU CAN SECURE DATA ON THE INTERNET
START FROM SOLID FOUNDATIONS
KNOW YOUR STRENGTHS
KNOW YOUR STRENGTHS •CLOUD HOSTING •PLATFORM AS A SERVICE •CONTENT
DISTRIBUTION NETWORKS
KNOW YOUR THREATS
SECURITY REQUIRES EMPATHY
YOUR BIGGEST THREAT IS IN THIS ROOM
YOUR SECOND BIGGEST THREAT IS WHO YOU’RE TRYING TO PROTECT
TELL ME YOUR CAT’S NAME AND I CAN ACCESS YOUR
WHOLE WORLD • ZXCVBN • CMU’s USABLE PRIVACY & SECURITY LAB • RATE LIMITING
“COMPUTER” CAN MEAN MANY THINGS
BOUNDARIES ARE HARD
DON’T GET CUTE
BE LAZY BUT NOT COMPLACENT
PAY SOMEONE SMARTER
THANKS! www.projectcallisto.org nerd.kelseyinnis.com
pycon2016
fumiyakume
masuda220
koguuum
oracle4engineer
komakichi
markostanimirovic
dmnlk
har1101
itotsum
rockname
jbvincey
kuro_kurorrr
vanstee
dougneiner
andyhume
kevinliebholz
marcduiker
stephaniewalter
pauljervisheath
trallard
eileencodes
holman
sstephenson
garrettdimon
