AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Software Engineering Radio - the podcast for professional software developers
SE Radio 658: Tanya Janca on Secure Coding
Mar 6, 2025
In this discussion, Tanya Janca, author of 'Alice and Bob Learn Secure Coding' and a leading voice in application security, shares her insights on integrating security throughout the software development lifecycle. She emphasizes the importance of defining security requirements early and using threat modeling in design. Tanya details secure coding practices, effective testing strategies like SAST and DAST, and the necessity of continuous security monitoring post-deployment. With a focus on practical techniques and real-world examples, she guides developers on enhancing software security.
01:11:40
Episode guests
AI Summary
AI Chapters
Episode notes
Podcast summary created with Snipd AI
Quick takeaways
- Integrating security into every phase of the software development life cycle is crucial for preventing vulnerabilities before production deployment.
- The principle of least privilege is essential for minimizing potential security risks by limiting user permissions to only what is necessary.
Deep dives
Fundamental Security Concepts for Developers
Every developer should understand the principle of least privilege, which emphasizes granting users only the permissions necessary to perform their tasks. This concept helps minimize potential vulnerabilities in systems by restricting access for users and services, thereby reducing the attack surface. Usable security is another critical aspect, which ensures that security mechanisms are user-friendly and engaging, encouraging adherence rather than evasion by users. When security features are designed with the user experience in mind, developers can achieve more effective compliance and create secure applications.
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode