Product security: barking up the wrong tree
AppSec is fine. We're not paying enough attention to corporate infrastructure risks.
Hasnain says:
“In the end, product security is a red herring; it’s enterprise security that urgently needs a paradigm shift. I know that we’ll end up with more regulation for software development: the narratives of “market failures” are unfalsifiable and it’s the nature of all bureaucracies to amass influence and expand. But I think we’re barking up the wrong tree.”
Posted on 2024-03-14T06:20:58+0000