Remove Architecture Remove Engineering Remove Whitepaper
article thumbnail

Hoarding, Debt and Threat Modeling

Adam Shostack

That visceral image of looking at mountains of accumulated issues, feeling overwhelmed by where to begin, captures a challenge many engineering leaders face when they first attempt to systematically assess their systems security. This is why I included interpersonal factors in the Jenga whitepaper.)

article thumbnail

Safety and Security in Automated Driving

Adam Shostack

“ Safety First For Automated Driving ” is a big, over-arching whitepaper from a dozen automotive manufacturers and suppliers. I also like Figure 27 & 28 (shown), showing risks associated with a generic architecture.

Risk 140
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

A Spectre proof-of-concept for a Spectre-proof web

Google Security

Posted by Stephen Röttger and Artur Janc, Information Security Engineers Three years ago, Spectre changed the way we think about security boundaries on the web. We've confirmed that this proof-of-concept, or its variants, function across a variety of operating systems, processor architectures, and hardware generations.

article thumbnail

MITRE ATT&CK: The Magic of Application Mitigations

Cisco Security

Today’s application architectures support fast, continuous innovation. Back end architectures use small, independent code modules called microservices. Clearly today’s application architectures use a lot of components, making them more complex, but the benefits run deep. They were simpler, sure, but so are horse-drawn carriages.

article thumbnail

10 Cybersecurity Trends That Emerged in 2023

Security Boulevard

But from the very first days of ChatGPT’s massive initial release, the tinkerers among us anticipated the inevitable question: What’s an engineer going to do when they get their hands on this? Apparently, an employee at Company X used an LLM to help them finish a whitepaper. It’s also a privacy issue.

article thumbnail

Qualities of a Highly Available Cloud

McAfee

Instead, the best of breed functionality was purposefully reconstructed for SSE, using a microservices architecture that can scale elastically, and built on a platform-neutral stack that can run on bare metal and public cloud, equally effectively. From the start, the architecture was designed with zero trust in mind.

article thumbnail

To Achieve Zero Trust Security, Trust The Human Element

Thales Cloud Protection & Licensing

While NIST has developed a blueprint for Zero Trust - you can read about it in this whitepaper - which can serve as a great start for your journey, organizations need to understand that Zero Trust is above all a mindset. Jenny Radcliffe, People Hacker & Social Engineer.