Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313 - podcast episode cover

Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313

Application Security Weekly (Audio)
Jan 14, 20251 hr 8 min
--:--
--:--
Listen in podcast apps:
Metacast
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

There's a pernicious myth that developers don't care about security. In practice, they care about code quality. What developers don't care for is ambiguous requirements. Ixchel Ruiz shares her experience is discussing software designs, the challenges in prioritizing dev efforts, and how to help open source project maintainers with their issue backlog.

Segment resources:

Design lessons from PyPI's Quarantine capability, effective ways for appsec to approach phishing, why fishshell is moving to Rust component by component (and why that's a good thing!), what behaviors the Cyber Trust Mark might influence, and more!

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw-313

For the best experience, listen in Metacast app for iOS or Android
Open in Metacast
Discussing Useful Security Requirements with Developers - Ixchel Ruiz - ASW #313 | Application Security Weekly (Audio) podcast - Listen or read transcript on Metacast