James and I host legitimate Polynesian
royalty (a princess....) really!
Katie gives us the skinny on Microsoft's 10 year progression to
get to a bug bounty program
We discuss the merits of bug bounties and execution in a very
Katie gives us as many details as she can about the recent
Much... much ... more!
Katie Moussouris ( @k8em0 ) -
Katie runs the Security Community Outreach and Strategy team for
Microsoft as part of the Microsoft Security Response Center (MSRC)
team to help drive crucial elements of our security community
strategy effort. She is a Senior Security Strategist Lead, and
let's not sell her short - she is royalty!
She created and drove the first ever Microsoft security bounty
programs (www.microsoft.com/bountyprograms). Which received 18
vulnerabilities and a new attack technique that will help Microsoft
build stronger defenses that will protect the entire platform from
this new class of attack.
She serves as lead subject matter expert in the US National Body
for the ISO work item 29147 "Vulnerability Disclosure", scheduled
for publication in 2013, and does countless other efforts
associated with the ISO standards body and various other industry
Security. Some assembly required.
Security is HARD, and 'real security' is a compromise between usability and security while knowing you're still accepting risk.
This podcast alternates between interesting interviews and news analysis every other week - tune in, subscribe and join the conversation on REAL security issues relevant to your enterprise.
Follow us on Twitter: @DtSR_Podcast
Check out Rafal's SecurityWeek column: http://www.securityweek.com/authors/rafal-los