Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Data Security @ the personal level
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Arnon Rotem-Gal-Oz
PRO
April 20, 2017
Technology
0
28
Data Security @ the personal level
personal security briefing to employees (e.g for ISO 27001 compliance)
Arnon Rotem-Gal-Oz
PRO
April 20, 2017
Tweet
Share
More Decks by Arnon Rotem-Gal-Oz
See All by Arnon Rotem-Gal-Oz
Coding with AI
arnonrgo
PRO
0
3
Brownfield Architecture transformations
arnonrgo
PRO
0
140
Software architecture 101
arnonrgo
PRO
0
1.7k
Apache Spark - Overview
arnonrgo
PRO
0
46
Taking ML to production - a journey
arnonrgo
PRO
0
120
Topics in Distributed Systems
arnonrgo
PRO
0
33
Docker & Kubernetes
arnonrgo
PRO
0
27
Microservices it's deja vu all over again
arnonrgo
PRO
0
26
Big Data in the Cloud - Welcome to cost oriented design
arnonrgo
PRO
0
23
Other Decks in Technology
See All in Technology
Introduction to Sansan, inc / Sansan Global Development Center, Inc.
sansan33
PRO
0
3k
15 years with Rails and DDD (AI Edition)
andrzejkrzywda
0
190
名刺メーカーDevグループ 紹介資料
sansan33
PRO
0
1k
予期せぬコストの急増を障害のように扱う――「コスト版ポストモーテム」の導入とその後の改善
muziyoshiz
1
1.9k
Frontier Agents (Kiro autonomous agent / AWS Security Agent / AWS DevOps Agent) の紹介
msysh
3
170
こんなところでも(地味に)活躍するImage Modeさんを知ってるかい?- Image Mode for OpenShift -
tsukaman
0
140
会社紹介資料 / Sansan Company Profile
sansan33
PRO
15
400k
20260208_第66回 コンピュータビジョン勉強会
keiichiito1978
0
130
AIエージェントを開発しよう!-AgentCore活用の勘所-
yukiogawa
0
170
プロダクト成長を支える開発基盤とスケールに伴う課題
yuu26
4
1.3k
Digitization部 紹介資料
sansan33
PRO
1
6.8k
Data Hubグループ 紹介資料
sansan33
PRO
0
2.7k
Featured
See All Featured
The Illustrated Guide to Node.js - THAT Conference 2024
reverentgeek
0
260
From Legacy to Launchpad: Building Startup-Ready Communities
dugsong
0
140
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
61k
Ten Tips & Tricks for a 🌱 transition
stuffmc
0
69
Facilitating Awesome Meetings
lara
57
6.8k
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.6k
世界の人気アプリ100個を分析して見えたペイウォール設計の心得
akihiro_kokubo
PRO
66
37k
The browser strikes back
jonoalderson
0
370
Neural Spatial Audio Processing for Sound Field Analysis and Control
skoyamalab
0
170
Faster Mobile Websites
deanohume
310
31k
A Modern Web Designer's Workflow
chriscoyier
698
190k
Designing for Performance
lara
610
70k
Transcript
Data Security (@ the personal level) Arnon Rotem-Gal-Oz
So what’s so important about “information security”?
Security is a real problem www.informationisbeautiful.net/visualizations/worlds-biggest-data-breaches-hacks/
Information security? Not MY problem - IT should figure
it out
We’ve met the enemy and he is us
• Hardware • Software • People • Procedur es •
Data
Formal threat analysis The STRIDE model
Also see • OWASP https://www.owasp.org/ • https://www.owasp.org/index.php/Threat_Risk_Modeling#STRIDE • Common Criteria https://www.commoncriteriaportal.org/
Spoofing (of user identity) Tampering Repudiation Information
disclosure Denial of service Elevation of privilege
None
None
On the other hand…
None
None
Passwords
None
2016 is just as bad
None
None
Physical theft/loss
Protect your assets
Pay attention to email/text recipient address
Malware
It is up to you!
•Be mindful •Be careful who you trust •Secure your devices
•Report problems
arnonrgo
sansan33
andrzejkrzywda
muziyoshiz
msysh
tsukaman
keiichiito1978
yukiogawa
yuu26
reverentgeek
dugsong
lemiorhan
stuffmc
lara
thoeni
akihiro_kokubo
jonoalderson
skoyamalab
deanohume
chriscoyier
