Phil Venables Blogging
It's not LinkedIn posts or Tweets, but a real live blog.
Shostack + Friends Blog
Recent Blog Posts, Page 24
The Uber CSO indictment
Thoughts on Mark Rasch's essay, Conceal and Fail to Report - The Uber CSO Indictment
Podcast with Sidney Dekker
This is a really interesting podcast interview with Sidney Dekker, who's one of the most important thinkers in safety.
Elevation of Privilege In The Time of Cholera
How to play in person games while maintaining safe distances.
Worthwhile Books Q2 2020
These are the books that I read in Q2 2020 that I think are worth your time.
Better Taught Than Caught!
Informal training may work in some cases, but Threat Modeling skills should be passed on through more formal means.
Information Disclosure In Depth
I have something to disclose...
MDIC Annual Public Forum
I'll be speaking at the MDIC's Annual Public Forum today, discussing how threat modeling helps bring maturity to the medtech sector.
When to Threat Model
A talk from the Biohacking Village at DefCon brought up a good point.
Maximizing the Value of Virtual Security Conferences
A few tips on getting the most out of attending a virtual security conference.
Sociotechnical Approach to Cyber Security
A recent post from Helen L. of the UK’s NCSC, A sociotechnical approach to cyber security, shares the context of socio-technical approaches.
Video Series
Not usually one for the video format, I'm expanding my horizons thanks to 2020 being what it is.
Software Engineering Radio
I enjoyed being a guest on Software Engineering Radio in this in depth interview.
Amicus Brief on CFAA
I recently signed onto the amicus brief on the Van Buren/Computer Fraud and Abuse Act filed by the Electronic Frontier Foundation.
Internet Society Opposition to LAED Act
The Internet Society Open Letter Against Lawful Access to Encrypted Data Act was published this morning.