Return to the Circus: A Retrospective on Software Security
Security issues seem to be all over the news—if it’s not another leak of millions of people’s personal data, it’s how hackers are subverting elections, company intel, and just maybe critical infrastructure. We’re encouraged to look back and perform retrospectives after delivering products, so how about we look back at the early days of security? Mike Andrews will review his past STAREAST presentations on security to see how they—and the testing techniques prescribed—held up. Through examples of server misconfigurations, SQL injection, and simple logic attacks, we’ll time-travel through application security to find some answers to our modern questions. How and where has the landscape changed? Are the “builders” or the “breakers” winning? What has evolved in the last decade? We’ll look into the current state of security and what we can potentially look forward to in the future. Mike will cover topics from the cloud to containers, mobile apps to machine learning, bounties, and ransoms, and we will discover if we are we living in a brave new world or returning to the circus.