charles weir's security presentation for code cumbria, january 2014

13
Security in Software Presentation for Code Cumbria

Upload: charles-weir

Post on 15-Jan-2015

94 views

Category:

Technology


1 download

DESCRIPTION

Pictures illustrating a short talk on what are software security threats, and how a secure development process can help deal with them.

TRANSCRIPT

Page 1: Charles Weir's Security presentation for Code Cumbria, January 2014

Security in Software

Presentation for Code Cumbria

Page 2: Charles Weir's Security presentation for Code Cumbria, January 2014

• What’s a Secure Project?• What are threats?• 5 different types of security• Help: OWASP, PCI …• A security process

Page 3: Charles Weir's Security presentation for Code Cumbria, January 2014

Baddy

Page 4: Charles Weir's Security presentation for Code Cumbria, January 2014

Attackers

UsersBank

App

How?

Page 5: Charles Weir's Security presentation for Code Cumbria, January 2014

Confidentiality:

Page 6: Charles Weir's Security presentation for Code Cumbria, January 2014

Integrity:

£ 1000 0

John Jones

21 April 2013

X

Page 7: Charles Weir's Security presentation for Code Cumbria, January 2014

Availability:

X

Page 8: Charles Weir's Security presentation for Code Cumbria, January 2014

Authenticity:

X

Page 9: Charles Weir's Security presentation for Code Cumbria, January 2014

Non-repudiation:

X

Page 11: Charles Weir's Security presentation for Code Cumbria, January 2014

Penrillian Secure development process

Page 12: Charles Weir's Security presentation for Code Cumbria, January 2014

Thank you.

Page 13: Charles Weir's Security presentation for Code Cumbria, January 2014

Questions?