BROADCASTS.com

The 26th episode of The Silver Bullet Security Podcast features Adam Shostack, a security expert on Microsoft\u2019s Secure Development Lifecycle team who has also worked for Zero Knowledge and Reflective. Gary and Adam discuss how Adam got started in computer security, how art/literature informs Adam\u2019s current work, and the main ideas behind Adam\u2019s new book The New School of Information Security. They go on to chat about Adam\u2019s aversion to the term \u201cbest practices,\u201d the role IEEE Security & Privacy magazine plays in bringing the science of security to a practical level, and whether the biggest problem of the CardSystems breach was following the letter, rather than the spirit, of PCI. Also on the agenda, duck-billed platypuses, Kandinski, and books by Pynchon.\n(Beginning with this episode, Silver Bullet will be available as a 192k MP3.)\n\nEmergent Chaos blog\nThe New School of Information Security\nMicrosoft\u2019s SDL\nWassily Kandinsky\nThe CardSystems breach (2005)\nThomas Pynchon\n\nThe post Show 026 \u2013 An Interview with Adam Shostack appeared first on Cigital \xbb The Silver Bullet Security Podcast with Gary McGraw.\nThe post Show 026 \u2013 An Interview with Adam Shostack appeared first on Cigital \xbb The Silver Bullet Security Podcast with Gary McGraw.