Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Velocity Conference Santa Clara 2014 Ignite

Bea Hughes
June 24, 2014
Technology
2
1.2k

Velocity Conference Santa Clara 2014 Ignite

Security - go do this.

Video at https://www.youtube.com/watch?v=8GMIm_Pcxuw

I have a version with notes, which may or may not be more useful. Email/message me if you want them!

Bea Hughes

June 24, 2014
Tweet

More Decks by Bea Hughes

See All by Bea Hughes
"Is security even important?" and other clickbait titles
barnbarn
1
330
Osquery, He Knows Me
barnbarn
0
570
Layer 2 person spoofing and impostor syndrome
barnbarn
2
750
MacOS security, hardening and forensics 101 workshop
barnbarn
2
1.5k
How you a actually get hacked!
barnbarn
7
5.1k
Why won’t my DevOps team talk to my Security team?
barnbarn
3
340
Impostor Syndrome in tech
barnbarn
4
530
SecDevOps: Creating cultural change to bridge between security and DevOps?
barnbarn
3
640
Security for non-Unicorns!
barnbarn
5
1.7k

Other Decks in Technology

See All in Technology
AWS Lambdaと歩んだ“サーバーレス”と今後 #lambda_10years
yoshidashingo
1
170
B2B SaaSから見た最近のC#/.NETの進化
sansantech
PRO
0
680
SSMRunbook作成の勘所_20241120
koichiotomo
2
130
スクラム成熟度セルフチェックツールを作って得た学びとその活用法
coincheck_recruit
1
140
フルカイテン株式会社 採用資料
fullkaiten
0
40k
iOS/Androidで同じUI体験をネ イティブで作成する際に気をつ けたい落とし穴
fumiyasac0921
1
110
BLADE: An Attempt to Automate Penetration Testing Using Autonomous AI Agents
bbrbbq
0
290
障害対応指揮の意思決定と情報共有における価値観 / Waroom Meetup #2
arthur1
5
470
Application Development WG Intro at AppDeveloperCon
salaboy
0
180
VideoMamba: State Space Model for Efficient Video Understanding
chou500
0
190
RubyのWebアプリケーションを50倍速くする方法 / How to Make a Ruby Web Application 50 Times Faster
hogelog
3
940
Amplify Gen2 Deep Dive / バックエンドの型をいかにしてフロントエンドへ伝えるか #TSKaigi #TSKaigiKansai #AWSAmplifyJP
tacck
PRO
0
370

Featured

See All Featured
[RailsConf 2023] Rails as a piece of cake
palkan
52
4.9k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
169
50k
The World Runs on Bad Software
bkeepers
PRO
65
11k
For a Future-Friendly Web
brad_frost
175
9.4k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
26
1.4k
BBQ
matthewcrist
85
9.3k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
229
52k
Music & Morning Musume
bryan
46
6.2k
Learning to Love Humans: Emotional Interface Design
aarron
273
40k
Designing on Purpose - Digital PM Summit 2013
jponch
115
7k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.3k
The Invisible Side of Design
smashingmag
298
50k

Transcript

  1. Security: I Have 5 minutes, You Have a Lifetime Ben

    Hughes, Etsy, obviously, just look at this slide.

  2. These are real graphs of *something*

  3. Mean Time to PasteBin™

  4. ` photo by https://secure.flickr.com/photos/asjaboros/

  5. https://secure.flickr.com/photos/izik/ SSL* *(TLS really)

  6. https://secure.flickr.com/photos/refractedmoments/

  7. https://secure.flickr.com/photos/gaby1

  8. https://isTLSfastyet.com/ Ummm, yeah, fast enough. big shout out to the

    design of this slide.
  9. None

  10. Password hashing: Just use bcrypt.

  11. BUT WHAT ABOUT scrypt/ PBKDF2/SpecialThing?

  12. Cross Site Request Forgery

  13. And you were worried HTTPS would slow things down…

  14. Multi factor authentication Awesome taken apart SecureID token by https://www.flickr.com/photos/travisgoodspeed

  15. None

  16. Responsible disclosure is pretty cool!

  17. The winner takes it all!

  18. Bounty Hunters You may want to consider their kind of

    scum.
  19. None

  20. https://github.com/etsy http://codeascraft.com/ @benjammingh [email protected]