Lessons for Cybersecurity from the American Public Health System
An important step towards cyber public health
Shostack + Friends Blog
Who Are 'We?' Power Centers in Threat Modeling
Appsec Roundup - Dec 2024
A virtual feast of appsec!
A Different Hackathon Design?
What should hackathon judges value?
Stocking stuffers for security nerds
You can find nerdier gifts, but you can’t buy them.
Gavle Goat Endures
The goat endures
Human Centered Security
An exciting new book on human-centered security.
Appsec Roundup - Nov 2024
A virtual feast of appsec!
Risk Talk at JPL
My talk at JPL
The Four Question Framework for Threat Modeling
Our latest whitepaper!
Black Friday Sale
Our biggest black friday sale this year!
Is Cybersecurity Awareness Month Worth the Money?
How can we measure the ROI on an awareness month?
Car Safety Factoids
A few thoughts from a clickbait headline
Purple States
The United States is less divided than common maps portray.
Why do we call them trust boundaries?
Why do we call them trust boundaries, anyway?