For the last few decades, security professionals have been taught that you can have good security or good usability—not both. At the same time, designers, developers, project managers, and just about everyone else realized the only way to meet deadlines was to avoid security at all costs. That’s created an insular approach to security with debilitating results.
It doesn’t have to be this way.
In fact, when security brings these groups together, the results are impressive. It’s time to end the false choice that security must come at the expense of convenience. A tighter integration of user experience and security can create both more secure and more usable systems. Drawing on real-world examples, Peter Hesse demonstrates how to start the conversations, build the relationships, and get the results and security you need.
Peter Hesse is the chief security officer of 10Pearls, where he focuses on avoiding the common break/fix mentality around security, instead finding ways to architect and build security into systems and products. For nearly two decades, Peter has leveraged his passion for technology and experience in security to develop successful solutions to interesting problems. From an exciting start developing the reference implementation of a standards-based certification authority for the National Institute of Standards and Technology (NIST) to overcoming obstacles and successfully demonstrating the system that formed the basis of the Federal PKI, Peter has built his reputation tackling complex challenges and explaining them to others. Previously, Peter founded and ran the successful information security consulting firm Gemini Security Solutions for over a dozen years.
©2016, O'Reilly Media, Inc. • (800) 889-8969 or (707) 827-7019 • Monday-Friday 7:30am-5pm PT • All trademarks and registered trademarks appearing on oreilly.com are the property of their respective owners. • firstname.lastname@example.org