The Changelog: Software Development, Open Source

Schneier on security for tomorrow’s software (Interview)

23 snips

May 20, 2022

Bruce Schneier, a renowned cryptographer and privacy advocate, shares his deep expertise on the evolving landscape of cybersecurity. He discusses the challenges posed by cryptocurrencies in facilitating cybercrime and emphasizes the importance of bridging technology with policy. The conversation also tackles improving security designs beyond user responsibility, addressing the complexities of social engineering. Lastly, Schneier advocates for collaborative efforts to enhance open source security and the need for responsible data management to empower individuals.

Ask episode

AI Snips

Chapters

Books

Transcript

Episode notes

INSIGHT

Public Interest Tech

Public interest tech bridges technology and policy, two traditionally separate fields.
It addresses societal problems requiring combined technical and policy understanding.

INSIGHT

Bridging the Gap

Both lawyers learning tech and technologists learning law are needed.
A viable career path for public interest tech is crucial for attracting talent.

ANECDOTE

Secrets and Lies Impact

Jerod Santo read Bruce Schneier's Secrets and Lies in college.
The book made technical nuances of security tangible and applicable to the real world.

Get the Snipd Podcast app to discover more snips from this episode

Get the app

This week we’re talking with Bruce Schneier — cryptographer, computer security professional, privacy specialist, and writer (of many books). He calls himself a “public-interest technologist”, a term he coined himself, and works at the intersection of security, technology, and people.

Bruce has been writing about security issues on his blog since 2004, his monthly newsletter has been going since 1998, he’s a fellow and lecturer at Harvard’s Kennedy School, a board member of the EFF, and the Chief of Security Architecture at Inrupt. Long story short, Bruce has credentials to back up his opinions and on today’s show we dig into the state of cyber-security, security and privacy best practices, his thoughts on Bitcoin (and other crypto-currencies), Tim Berners-Lee’s Solid project, and of course we asked Bruce to share his advice for today’s developers building the software systems of tomorrow.

Join the discussion

Changelog++ members get a bonus 27 minutes at the end of this episode and zero ads. Join today!

Sponsors:

InfluxData – The time series platform for building and operating time series applications — InfluxDB empowers developers to build IoT, analytics, and monitoring software. It’s purpose-built to handle massive volumes and countless sources of time-stamped data produced by sensors, applications, and infrastructure. Learn more at influxdata.com/changelog
Sentry – Working code means happy customers. That’s exactly why teams choose Sentry. From error tracking to performance monitoring, Sentry helps teams see what actually matters, resolve problems quicker, and learn continuously about their applications - from the frontend to the backend. Use the code CHANGELOG and get the team plan free for three months.
FireHydrant – The reliability platform for every developer. Incidents impact everyone, not just SREs. FireHydrant gives teams the tools to maintain service catalogs, respond to incidents, communicate through status pages, and learn with retrospectives. Small teams up to 10 people can get started for free with all FireHydrant features included. No credit card required to sign up. Learn more at firehydrant.io
Sourcegraph – Transform your code into a queryable database to create customizable visual dashboards in seconds. Sourcegraph recently launched Code Insights — now you can track what really matters to you and your team in your codebase. See how other teams are using this awesome feature at about.sourcegraph.com/code-insights

Featuring:

Bruce Schneier – Website, X
Adam Stacoviak – Website, GitHub, LinkedIn, Mastodon, X
Jerod Santo – GitHub, LinkedIn, Mastodon, X

Show Notes:

Schneier on Security
Public-Interest Technology Resources - maintained by Bruce Schneier
WannaCry, Petya, NotPetya: how ransomware hit the big time in 2017
The Tinder Swindler (official trailer)
Trust No One: The Hunt for the Crypto King (official trailer)

Something missing or broken? PRs welcome!