#175 Tanya Janca, Secure Coding
Summary
Tanya Janca talks about her new book and how to write secure code.
Details
Tanya’s new book, why she is writing for the developer. Including code for multiple languages. What makes her book different. Starting with how to defend against vulnerabilities. Validation and sanitization. What zero trust is. Balancing too much security vs other needs. Supply chain attacks and accidents. Backing up and losing code. Excess security and workarounds. Sharing information about security breaches, making it ok to fail. Re-running security tests when code changes, using analysis tools. Testing legacy applications with compromised libraries, network segmentation, web application firewall. Where to get the book.
Links