Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
BSidesSanFrancisco2011 - Misdirection: The Rise...
Search
Brett Hardin
February 14, 2011
Technology
1
240
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Brett Hardin
February 14, 2011
Tweet
Share
More Decks by Brett Hardin
See All by Brett Hardin
Penetration Testing is Stupid - BsidesSF 2013
bretthardin
2
2.3k
Building Your House on Sand
bretthardin
2
1.5k
Bad Version of Builders vs. Breakers
bretthardin
1
84
Builders vs. Breakers - AppSec 2012
bretthardin
2
1.5k
Security the Wrong Way
bretthardin
2
260
Security? Who Cares! - Privacy is Dead
bretthardin
1
200
OWASP - Top 10
bretthardin
0
1.1k
Other Decks in Technology
See All in Technology
大規模ECサイトのあるバッチのパフォーマンスを改善するために僕たちのチームがしてきたこと
panda_program
1
390
新規事業×QAの挑戦:不確実性を乗りこなす!フェーズごとに求められるQAの役割変革
hacomono
PRO
0
180
Phase03_ドキュメント管理
overflowinc
0
2.4k
SaaSに宿る21g
kanyamaguc
2
160
韓非子に学ぶAI活用術
tomfook
2
510
JEDAI認定プログラム JEDAI Order 2026 受賞者一覧 / JEDAI Order 2026 Winners
databricksjapan
0
320
「お金で解決」が全てではない!大規模WebアプリのCI高速化 #phperkaigi
stefafafan
5
2.3k
Laravelで学ぶOAuthとOpenID Connectの基礎と実装
kyoshidaxx
4
1.8k
夢の無限スパゲッティ製造機 #phperkaigi
o0h
PRO
0
360
事例から紐解くSHIFT流QA支援 ~大規模プロジェクトの品質管理支援、QA組織立ち上げ~ / 20260320 Nozomu Koketsu
shift_evolve
PRO
0
140
SSoT(Single Source of Truth)で「壊して再生」する設計
kawauso
2
330
Kubernetesの「隠れメモリ消費」によるNode共倒れと、Request適正化という処方箋
g0xu
0
110
Featured
See All Featured
Facilitating Awesome Meetings
lara
57
6.8k
Digital Ethics as a Driver of Design Innovation
axbom
PRO
1
230
Making Projects Easy
brettharned
120
6.6k
How to build an LLM SEO readiness audit: a practical framework
nmsamuel
1
690
The Straight Up "How To Draw Better" Workshop
denniskardys
239
140k
Getting science done with accelerated Python computing platforms
jacobtomlinson
2
150
Money Talks: Using Revenue to Get Sh*t Done
nikkihalliwell
0
190
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
64
54k
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
tomoyanonymous
2
590
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
signer
PRO
0
3.3k
svc-hook: hooking system calls on ARM64 by binary rewriting
retrage
2
180
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
390
Transcript
Being Sneaky About Security and Regulations - OR - "Misdirection:
The Rise and Fall and Rise of Regulatory Compliance" Brett Hardin and Mike Dahn
Who the Hell Are you Two? Mike Dahn @MikD Payment
Security Guy Brett Hardin @MiscSecurity Application Fixer Author: • Hacking: The Next Generation • SpotTheVuln.com • MiscSecurity.com
None
How Do Regulatory Rules Get Made and The Goals of
Compliance
Stop Hitting Yourself
None
None
None
Immunization
None
None
Transition.
Black Swans & Data Breaches
None
Real Costs The Placebo Effect of Fear VS.
None
None
Don't make Compliance the End Goal
Transition.
None
Do not focus on the finger or you will miss
all that heavenly glory [of Regulatory Compliance] Lee (Bruce Lee) Enter the Dragon
None
None
None
None
CISSP
None
Compliance != Security
Out of the Box
THE END
bretthardin
panda_program
hacomono
overflowinc
kanyamaguc
tomfook
databricksjapan
stefafafan
kyoshidaxx
o0h
shift_evolve
kawauso
g0xu
lara
axbom
brettharned
nmsamuel
denniskardys
jacobtomlinson
nikkihalliwell
nwiizo
tomoyanonymous
signer
retrage
konakalab
