Like Geer, Gary has a unique
view of the security world, one that is informed by his background in
cognitive science and philosophy. He just doesn’t come at questions or
problems the way that most people do, and that makes for interesting
conversations. Gary’s among the top experts on software security, but
he’s just as happy to steer the conversation to philosophy,
barn-building or music, and then bring it all back to security and tie
it up in a package. That is non-trivial.
Browsing Author: Chris Brook
Like Geer, Gary has a unique
Where to start with Hoff? Best
known for his evangelism and criticism on virtualization and cloud
security topics, Hoff is among the more entertaining and educationcal
speakers on the security circuit. And, more importantly as it pertains
to this list, he can fill up a notebook. Hoff has ideas and opinions to
spare, and unlike a lot of vendor security folks, he says exactly what
he thinks. He also isn’t much interested in letting people get away
with opinions that have no thought or reasoning behind them.
Anyone who has ever had a single
conversation with Dan, or even seen him speak, will understand
immediately why he’s on this list. Dan’s as smart as they come (he has
a Ph.D. in biostatistics!) and his widely varied background gives him a
truly unique perspective on security issues. His talks and answers to
questions rarely even mention technology, and his advocacy of better
application of the scientific method to the practice of security has
helped spawn an entire movement inside the industry.
fascinated by people who are prodigies in their field, and I think Dino
probably falls into that category. He’s been in the top tier of
offensive security researchers for several years, having worked at both
@stake and Matasano, is known as one of the top Apple hackers in the
game, has two books to his credit so far and is really just getting
started. Dino is one of the few researchers who focuses mainly on the
Mac and he’s known to be measured in both his praise and criticism of
Apple security and has the chops to back his statements up.
I’m not sure there are too
many people around who put more serious thought into their answers in
an interview than Ivan does. He doesn’t just throw out a flip sound
bite that he knows will make good copy. Instead, he’s much more
interested in having a discussion, explaining the reasoning behind his
answers and asking just as many of his own questions. That’s a rare
thing, believe me. And so is Ivan’s ability to bring context to debates
or conversations that often have none, like the full disclosure
wormhole. Ask him his thoughts on that. Go ahead.
Dave is one of the four or five smartest people I’ve ever interviewed,
and not just on matters related to security or technology in general.
His posts on the Daily Dave mailing list are always thoughtful and
often funny and he has a knack for explaining insanely complex
exploitation techniques, concepts and theories in simple language. Dave
has the hacker’s mindset, knows how the attackers think and is always
looking several steps down the road to see where they might be going
It occurred to me recently that I’ve been covering the security
industry for just about 10 years. That’s a long time to be doing
anything, and especially to be writing about one topic. But it’s hard
to think of something that would have been much more interesting to
cover this decade, given the huge change in the amount of attention
paid to security and the fascinating cast of characters this industry
Dennis Fisher and Ryan Naraine discuss the latest iPhone attack, the upcoming Patch Tuesday and the never-ending fallout from the Google attack.
Ryan Naraine and Dennis Fisher discuss the Google attack, the Internet Explorer vulnerability used in the attack and the continuing weakness of client security.
Ryan Naraine and Dennis Fisher discuss all of the news and
criticism concerning Adobe this week, including their release of a silent
updater and the company becoming a top target for attackers.