Search Results for 'security'

Episode 467: Kim Carter on Dynamic Application Security Testing

Filed in Episodes by on July 7, 2021 3 Comments
Episode 467: Kim Carter on Dynamic Application Security Testing

Kim Carter of BinaryMist discusses dynamic application security testing (DAST) and how the OWASP purpleteam project can improve early defect detection. Host Justin Beyer spoke with Carter about how DAST can provide meaningful feedback loops to developers to improve code quality and push penetration testing to the detection of higher-level vulnerabilities. They also discussed how […]

Continue Reading »

Episode 453: Aaron Rinehart on Security Chaos Engineering

Filed in Episodes by on March 31, 2021 0 Comments
Episode 453: Aaron Rinehart on Security Chaos Engineering

Aaron Rinehard, CTO of Verica and author, discusses security chaos engineering (SCE) and how it can be used to enhance security in modern application architectures. Host Justin Beyer spoke with Rinehard about how SCE fits into the overall chaos engineering discipline, examining how SCE compares to traditional security approaches, how it can benefit compliance, and […]

Continue Reading »

Episode 427: Sven Schleier and Jeroen Willemsen on Mobile Application Security

Filed in Episodes by on September 24, 2020 0 Comments
Episode 427: Sven Schleier and Jeroen Willemsen on Mobile Application Security

Sven Schleier and Jeroen Willemsen from the OWASP Mobile Application Security Verification Standard (MASVS) and Testing Guide (MSTG) project discuss mobile application security and how the verification standard and testing guide can be used to improve your app’s security.  Host Justin Beyer spoke with Schleier and Willemsen on webviews, certificate pinning, anti-reverse engineering technology, and […]

Continue Reading »

Episode 404: Bert Hubert on DNS Security

Filed in Episodes by on March 26, 2020 0 Comments
Episode 404: Bert Hubert on DNS Security

Bert Hubert, author of the open source PowerDNS nameserver discusses DNS security and all aspects of the Domain Name System with its flaws and history. Host Gavin Henry spoke with Hubert about what DNS is, DNS history, DNS attacks, DNS flaws, DNS privacy, DNS Encryption, DNS integrity, how DNS is used against your privacy, how […]

Continue Reading »

Episode 395: Katharine Jarmul on Security and Privacy in Machine Learning

Filed in Episodes by on January 10, 2020 0 Comments
Episode 395: Katharine Jarmul on Security and Privacy in Machine Learning

Katharine Jarmul of DropoutLabs discusses security and privacy concerns as they relate to Machine Learning. Host Justin Beyer spoke with Jarmul about attacks that can be leveraged against data pipelines and machine learning models; attack types – adversarial example, model inference, deanonymization; and how they can be utilized to manipulate model outcomes; the dangers of […]

Continue Reading »