Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

The Flaws in Hordes, The Security in Crowds - Crowdsourced Security Models

OWASP Foundation via YouTube

Overview

Explore the complexities of crowdsourced security models and bug bounty programs in this 40-minute conference talk from AppSec EU 2017. Examine the intended benefits of these programs in discovering and resolving vulnerabilities in production applications, while critically analyzing their potential drawbacks and deviations from effective security development lifecycles. Learn strategies for maintaining a focused, risk-based approach that contributes positively to development, and avoid common pitfalls that can turn these programs into distractions. Delve into the implications of bounty programs on appsec automation trends and identify remaining gaps in the field. Gain insights into the broader challenges of building a useful appsec program, including budgeting and communication aspects, beyond mere bug identification. This talk, presented by Mike Shema and managed by the official OWASP Media Project, offers a comprehensive look at the flaws and strengths of crowd-based security approaches.

Syllabus

AppSec EU 2017 The Flaws In Hordes, The Security In Crowds by Mike Shema

Taught by

OWASP Foundation

Reviews

Start your review of The Flaws in Hordes, The Security in Crowds - Crowdsourced Security Models

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.