|
|
|
|
|
|
by blazespin
3695 days ago
|
|
|
Im sure threat modelling is something everyone does implicitly. As someone who practices security, I found the keywords you can pull from the slide reasonable in their suggestions to follow up on. There were a couple of places he went into the weeds, and I think he probably could have talked up iOS security a bit more instead of smart cards which are a bit overkill relative to his other suggestions. But, this is just a slide deck. Try not to rush to judgement considering we didn't hear the talk that came with it. |
|
|
You may work somewhere that this is the case, but I can't count the number of times I have tested an application where someone has equated security to having an A+ HTTPS rating.
> This is a slide deck
Understood, and something I didn't consider before. That said, I think my comments will still be useful to those here who have also not seen the original talk.