Episode 253 – Defenders only need to be right once

Josh and Kurt talk about this idea that seems to exist in security of “attackers only need to be right once” which is silly. The reality is attackers have to get everything right, defenders really only need to get it right once. But “defenders only need to be right once” isn’t going to sell any products.

Show Notes

Episode 252 – Is open source dangerous? Open source won, who cares, shut up!

Josh and Kurt talk about a report on open source security from the Canadian Centre for Cyber Security. The title pretty much sums it up.

Show Notes

Episode 251 – Communication is hard, security communication is more hard

Josh and Kurt talk about communication. It’s really hard to talk about a lot of what we do. How do we know if a device is secure? How do we know our knowledge is correct?

Show Notes