Security Requires Traveling the Unhappy Path - A Conversation with Robert Hurlbut

May 1, 2024

Robert Hurlbut, a Principal Application Security Architect, discusses the challenges of ensuring security in software development, emphasizing the importance of threat modeling, error handling, and making conscious security decisions. He also explores the satisfaction and challenges of architecture, preferred technologies, and career shifts in the field.

Ask episode

Chapters

Transcript

Episode notes

Introduction

00:00 • 4min

Exploring the Roles of Developers and Architects in Software Development

03:41 • 21min

Uncovering Security Vulnerabilities in Software Development

24:30 • 4min

Balancing Data Integrity and User Experience in Error Handling

28:05 • 2min

Exploring Unhappy Paths and Making Conscious Security Decisions

29:35 • 19min

Reflections on the Fulfillment and Challenges of Architecture

48:20 • 2min

Exploring Preferred Technologies, Architecture Appreciation, and Disdain for Brittle Architectures

50:13 • 3min

Exploring Career Shifts and Architectural Impact

53:18 • 2min

In this podcast Michael Stiefel spoke to Robert Hurlbut about what it means to make an application, not just the code, secure. Robert is a Principal Application Security Architect and Threat Modeling Lead at Aquia, a PhD student at Cap TechU and co-host of the Application Security Podcast. Read a transcript of this interview: https://bit.ly/4dha4yx Subscribe to the Software Architects’ Newsletter for your monthly guide to the essential news and experience from industry peers on emerging patterns and technologies: www.infoq.com/software-architects-newsletter Upcoming Events: InfoQ Dev Summit Boston (June 24-25, 2024) Actionable insights on today’s critical dev priorities. devsummit.infoq.com/conference/boston2024 InfoQ Dev Summit Munich (Sept 26-27, 2024) Practical learnings from senior software practitioners navigating Generative AI, security, modern web applications, and more. devsummit.infoq.com/conference/munich2024 QCon San Francisco (November 18-22, 2024) Get practical inspiration and best practices on emerging software trends directly from senior software developers at early adopter companies. qconsf.com/ QCon London (April 7-9, 2025) Discover new ideas and insights from senior practitioners driving change and innovation in software development. qconlondon.com/ The InfoQ Podcasts: Weekly inspiration to drive innovation and build great teams from senior software leaders. Listen to all our podcasts and read interview transcripts: - The InfoQ Podcast www.infoq.com/podcasts/ - Engineering Culture Podcast by InfoQ www.infoq.com/podcasts/#engineering_culture - Generally AI Follow InfoQ: - Mastodon: techhub.social/@infoq - Twitter: twitter.com/InfoQ - LinkedIn: www.linkedin.com/company/infoq - Facebook: bit.ly/2jmlyG8 - Instagram: @infoqdotcom - Youtube: www.youtube.com/infoq Write for InfoQ: Learn and share the changes and innovations in professional software development. - Join a community of experts. - Increase your visibility. - Grow your career. www.infoq.com/write-for-infoq