Top 10 Security Mistakes In Software

Presented at DeepSec 2013 „Secrets, Failures, and Visions“, Unknown date/time (Unknown duration)

What are the most common mistakes made during the software development process which lead to security problems in the finished product? In this talk, Peter af Geijerstam will present the top 10 issues leading to insecure software systems. This talk is NOT about the technical aspects of buffer overflows, shell code or use-after-free vulnerabilities. It is about language- and OS-independent security-aspects such as design decisions, concepts, mistakes and bad luck. If you are looking for in-depth technical security, this is not your talk. If you are a developer, curious about what you need to know about security, you should definitely attend. What to learn: What should you as developer be aware of? When should the alarm bells go off inside your head, saying "We need to think this over really carefully" or "I need to get an expert opinion on this"? How can you become an even better developer?

Presenters:

• Peter af Geijerstam - Factor10
  Peter af Geijerstam is a software developer who specializes in computer security. He has been doing software development for over 15 years and has experience from small businesses, large-scale telecom and computer security for government agencies. Peter believes in solving problems, not using any particular technology. He currently works as a software consultant for factor10 where he works to bring security-awareness to software developers. Peter is on twitter as @p4fg and blogs on http://www.shellcode.se

Links:

• https://deepsec.net/archive/2013.deepsec.net/speaker.html#PSLOT120

Similar Presentations:

• DeepSec 2019 „Internet of Facts and Fears“ / IoT/Embedded Development - Attack and Defense
• AppSec USA 2015 / Ah mom, why do I need to eat my vegetables?
• ToorCon San Diego 17 (2015) / How not to infosec