In 2000, the internationally renowned security technologist Bruce Schneier wrote: “Security is a process, not a product”. In the same essay, he wondered: “Will we ever learn?”. Apparently not.
How many times have you considered your WordPress application security only once completed? How many times have you installed a security plugin and thought it was enough? Securing a web application doesn’t mean installing a plugin just before deployment. Not at all.
I’m very passionate about security and I’d like to share my thoughts with you. My focus will be the security awareness related to web applications. Is WordPress secure? I will answer this question very clearly. And you’re not gonna like it!
37. “Every day, every hour, this very minute perhaps…
Dark forces attempt to penetrate our castle’s walls.
But in the end, their greatest weapon… is you!
Just something to think about.”
Albus Dumbledore
39. RESOURCES
SECURITY & SOFTWARE
▸ The Process of Security (Bruce Schneier)
▸ The Basics of Web Application Security (Cade Cairns, Daniel Somerfield)
▸ Secure Coding Patterns (Andreas Hallberg)
▸ OWASP Top 10 Most Critical Web Application Security Risks - 2017
▸ Software Security: Building Security In, Gary McGraw
▸ Building Secure Software: How to Avoid Security Problems the Right Way,
John Viega and Gary McGraw
41. SECURITY IS A
PROCESS,
NOT A PLUGIN
Thomas Vitale |@vitalethomas | #wctrn
This work is licensed under a Creative Commons Attribution 4.0 International License.
Images source: Pexels