From the course: CSSLP Cert Prep: 1 Secure Software Concepts
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Psychological acceptability
From the course: CSSLP Cert Prep: 1 Secure Software Concepts
Psychological acceptability
- [Speaker] The more you learn about application security, the more tempted you may be to rush out and implement each and every security control in your toolkit. Don't please like, bet you're thinking wait a minute, Jared, I thought the whole point behind learning this stuff was so that we could start using it. That's true, but too much security will frustrate your users, which can also have a negative impact on the security of your app. You should approach security, with psychological accessibility in mind. Look at your app from an end user's point of view, they may not fully understand why you put a certain control in place, in their eyes, that one control might be slowing them down, it's just making it harder for them to do their job, and what do you think your user will do when they bump up against an obstacle like this? Right, they'll try to find a way around it. In the medical profession, the Hippocratic Oath is…
Contents
-
-
-
-
-
-
(Locked)
Defense in depth4m 45s
-
(Locked)
Resiliency4m 14s
-
(Locked)
Open design5m 17s
-
(Locked)
Least common mechanism4m 18s
-
(Locked)
Psychological acceptability6m 3s
-
(Locked)
Leveraging existing components4m 30s
-
(Locked)
Eliminate single point of failure4m 23s
-
(Locked)
Diversity of defense3m 19s
-
(Locked)
-