Shows
The Elephant in AppSecShould We Fix All Bad Code? with Eitan WorcelToday, I’m joined by Eitan Worcel, CEO and co-founder of Mobb — an AI Security Assistant that fixes vulnerabilities. With over 15 years of experience in the application security field, Eitan has worn many hats, including developer, product management leader, and now startup founder.Eitan has also shared his expertise at events such as Black Hat, BSides Las Vegas, and OWASP chapter meetings, where he discussed the application of AI in security and the relationships between developers and security teams.In today’s episode, we explore whether all bad code should be fixed, the role of AI in...2025-05-0937 min
That DOS Won’t HuntHave We Gone Too Far With AI in Software Development?This episode saw Matt Bishop, principal architect at Bitwarden; Artem Kroupenev, vice president of strategy at Augury; Matias Madou, Secure Code Warrior’s CTO and co-founder; and Joel Carusone, senior vice president of data and AI at NinjaOne come together. They discussed the use of AI in software development, its benefits and risks, and how developers want AI to be implemented in the cycle.2024-12-0233 min
That DOS Won’t HuntThe Impact of AI Skills on Hiring and Career AdvancementIn this episode, Matias Madou, CTO and co-founder of Secure Code Warrior; Anthony Aurigemma, chief revenue officer with Anomali; and Ed Frederici, CTO of Appfire discuss the impact AI has on career skills and professional advancement. Despite the hype, are AI skills actually vital to doing jobs?2024-06-1430 min
Security Weekly Podcast Network (Audio)The Psychology of Training - Matias Madou - ASW VaultCheck out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on May 23, 2022. Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://securityweekly.com/asw for all the latest episodes! Follow us on...2023-07-0535 min
Application Security Weekly (Video)The Psychology of Training - Matias Madou - ASW VaultCheck out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on May 23, 2022. Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://securityweekly.com/asw for all the latest episodes! Follow us on...2023-07-0535 minApplication Security Weekly (Video)The Psychology of Training - Matias Madou - ASW VaultCheck out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on May 23, 2022. Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://securityweekly.com/asw for all the latest episodes! Follow us on...2023-07-0535 min
Application Security Weekly (Audio)The Psychology of Training - Matias Madou - ASW VaultCheck out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on May 23, 2022. Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://securityweekly.com/asw for all the latest episodes! Follow us on...2023-07-0535 min
GroundworkEpisode 12 - Vikram Ghosh and Matias Madou of Secure Code WarriorIn this episode, Vikram Ghosh, SVP, and Matias Madou, Co-founder and CTO of Secure Code Warrior, talk about what you can achieve when partnerships are getting support at a C-level. They also talk to Tai Rattigan about:
- Presenting Partnerships results and getting feedback from executives.
- Bringing perspective of your workflow to other teams.
- How to choose what Partnerships to prioritize
- How to prepare for Partnerships that will take a long time to set-up.
Partnership Leaders is a leading industry association for partnership, channel, and...2022-12-0950 min
Security Weekly Podcast Network (Audio)ASW #198 - Matias MadouDevelopers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. Matias Madou joins to talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. This week in the AppSec News: OWASP Top 10 for Kubernetes, Firefox improves security with process isolation, CNCF releases guidance on Secure Software Factories and Cloud Native Security, & the DOJ clarifies its policy on CFAA! Visit https://www...2022-06-231h 11
Application Security Weekly (Audio)ASW #198 - Matias MadouDevelopers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. Matias Madou joins to talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. This week in the AppSec News: OWASP Top 10 for Kubernetes, Firefox improves security with process isolation, CNCF releases guidance on Secure Software Factories and Cloud Native Security, & the DOJ clarifies its policy on CFAA! Visit https://www...2022-06-231h 11
Application Security Weekly (Video)The Psychology of Training - Matias Madou - ASW #198Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw1982022-06-1536 minApplication Security Weekly (Video)The Psychology of Training - Matias Madou - ASW #198Developers want bug-free code -- it frees up their time and is easier to maintain. They want secure code for the same reasons. We'll talk about how the definition of secure coding varies among developers and appsec teams, why it's important to understand those perspectives, and how training is just one step towards building a security culture. Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw1982022-06-1536 min
Software Security GurusEmbedded systems software development, automotive security, and ASRG's global enthusiasts with Sven SchranIn episode 26 of Software Security Gurus, Matias Madou chats to Sven Schran, Program Manager Security Engineering, at Robert Bosch.
They discuss the rapidly growing embedded systems software industry, including the general security considerations during the development lifecycle. They also go in-depth on automotive security, where technological advancements and global demand shape an ever-evolving threat landscape.
Finally, Sven gives us insight into ASRG, the community of automotive security enthusiasts that are making a splash all over the world.
--
Want to nominate a guru? Get in touch! www.softwaresecuritygurus.com
Vis...2021-10-2729 minSoftware Security Gurus#25: Secure by design, threat modeling, and diversity of thought in security teams with Simon ColeIn episode 25 of Software Security Gurus, Matias Madou chats to Simon Cole, Global Security Architecture & Engineering Director at dentsu. They discuss his multi-faceted experience in security architecture, including his views on what constitutes "secure by design". They also discuss threat modeling and empathy with developers, in addition to welcoming diversity of thought into a team for best results.
Want to nominate a guru? Get in touch! www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-09-3028 minSoftware Security Gurus#24: Self-driving cars, automotive security modeling and integrated software with John HeldrethIn episode 24 of Software Security Gurus, Matias Madou chats to John Heldreth, founder of the automotive security organization, ASRG. They discuss taking the plunge with self-driving cars, the complexities of automotive security modeling, digital twins, and integrated software.
Want to nominate a guru? Get in touch with us! www.softwaresecuritygurus.com
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-09-0934 min
Software Security Gurus#23: Five steps to a better security culture, with Tanvi BaliIn episode 23 of the Software Security Gurus webcast, Matias sits down with Tanvi Bali, a security expert and DevSecOps specialist. They discuss her background in engineering, and the state of DevSecOps in the APAC region (including why it trails behind Europe and US). She also treats us to her personal five steps to building a positive security culture within an organization.
Want to nominate a guru? Get in touch! www.softwaresecuritygurus.com. Don't forget, you can also leave us a voice message: www.anchor.fm/softwaresecuritygurus
---
Send in a voice message: https://podcasters.spotify.com...2021-08-1925 minSoftware Security Gurus#22: Implementing the right internal security structure, with Julie TsaiIn episode 22 of Software Security Gurus, Matias Madou chats to Julie Tsai, Head of Information Security at Roblox.
They discuss how to implement the right internal security structure, how to measure its success and quantify security risk, as well as how DevOps has evolved tactically to expand beyond tooling.
Want to nominate a Guru? Get in touch: www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-07-2925 minSoftware Security Gurus#21: Security culture and adding security champions to enhance your program, with Brian LevineIn episode 21 of Software Security Gurus, Matias Madou chats to Brian Levine, Senior Director, Product & Cloud Security at Axway. They discuss scaling a positive security culture and getting executive buy-in, adding security champions to enhance a program, as well as navigating an SSDLC the right way.
Want to nominate a guru? Get in touch! www.softwaresecuritygurus.com
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-05-2025 minSoftware Security Gurus#20: Why most security tools are not a cure-all for vulnerabilities, with Larry MaccheroneIn episode 20 of the Software Security Gurus webcast, Matias chats to Larry Maccherone, distinguished engineer and DevSecOps transformation lead at Comcast.
They discuss the impact of people and culture on a successful DevSecOps adoption, why more security tools aren't a cure-all for finding and fixing vulnerabilities, as well as a deep dive into Larry's experience in pioneering the Build Security In initiative.
Want to nominate a Guru? Get in touch with us! www.softwaresecuritygurus.com
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-05-0627 minSoftware Security Gurus#19: Experiencing a big data breach, with Bankim TejaniWelcome to Software Security Gurus with Matias Madou.
In episode 19, he chats to Bankim Tejani, Chief Security Architect and Distinguished Engineer at the Charles Schwab Corporation. They discuss his experience with big data breaches, as well as how secure coding can speed up remediation, and drive quality, performance, and scalability.
Want to nominate a guru? Get in touch! www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-04-1631 minSoftware Security Gurus#18: Distributed security culture, with Brad SenetzaWelcome to Software Security Gurus with Matias Madou.
In episode 18, he chats with Brad Senetza, Security Assurance Architect at Oracle.
They discuss his distributed security culture strategy, why it works, and how everyone in the SDLC can and should own security. Want to nominate a guru? Head to www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-03-1821 minSoftware Security Gurus#17: The secret ingredient to a successful "shift left", with Mike ShemaWelcome to episode 17 of the Software Security Gurus webcast.
In this interview, he chats with Mike Shema, Product Security at Square. They discuss his take on proactive security, and the how the relationship between deveopers and the security team impacts this approach. They also unpack the collaborative role these teams can play, and the secret ingredient to a successful shift left.
Have you got a topic idea in mind, or want to nominate a guru? Get in touch! www.softwaresecuritygurus.com
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus...2021-02-1822 minSoftware Security Gurus#14: The OWASP AppSensor Project, with John MeltonWelcome to episode 14 of Software Security Gurus, with Matias Madou.
This episode features a discussion with John Melton, Director of Product Security at NetSuite. He is also the co-leader of the visionary OWASP AppSensor Project.
For more information, or to nominate a guest, please visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-01-2733 minSoftware Security Gurus#16: The "people over tools" approach to security, with Leif DreizlerWelcome to episode 16 of the Software Security Gurus podcast.
In this interview, he chats with Leif Dreizler, Product Security Manager at Segment.
They discuss his "people over tools" security approach, his team structure, as well as the fact that at Segment, cross-site scripting and SQL injection are extinct.
Want to nominate a guru? Check out www.softwaresecuritygurus.com and get in touch.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2021-01-2221 minSoftware Security Gurus#15: Self-service and reducing cyber risk with Astha SinghalWelcome to episode 15 of the Software Security Gurus webcast.
In this episode, Matias chats to Astha Singhal, Director of AppSec at Netflix.
They discuss Netflix's enviable culture of freedom and responsibility, and what this means for application security in her team. They also dive into the world of self-service, and the impact this can have on reducing cyber risk. Finally, Astha talks about her unique experience as the leader of Salesforce's AppSec security program.
Want to nominate a speaker? Get in touch! Visit www.softwaresecuritygurus.com.
---
Send in a voice message: https...2020-12-1716 minSoftware Security Gurus#13: Four CISO tribes, and the changing approach to security training with Florence MottayWelcome to episode 13 of Software Security Gurus, with Matias Madou.
In this interview, he chats with Florence Mottay, security expert and Global CISO at Ahold Delhaize.
They discuss her recent win of a prestigious industry award, and how this could positively influence cybersecurity transparency at the company level, as well as her experience in security training software and how the approach has changed over the years. Finally, Matias quizzes Flo on which of four CISO 'tribes' resonates with her way of working.
Want to hear more? Head to www.softwaresecuritygurus.com.
---
Send...2020-10-1319 minSoftware Security Gurus#12: Inspiring security awareness in developers, with Tanya JancaIn this interview, Matias chats to Tanya Janca, security rockstar and CEO of We Hack Purple.
They talk about how to inspire security awareness in developers, the complexities of the AppSec space, and how we could do a tech industry detox.
For more information, visit www.softwaresecuritygurus.com.
We Hack Purple: https://wehackpurple.com/
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-09-0817 minSoftware Security Gurus#11: Patrick Debois, the Godfather of DevOpsIn episode 11 of Software Security Gurus, Matias chats to Patrick Debois, affectionately referred to as, "the Godfather of DevOps". He is also the creator of the global conference series, DevOpsDays.
For more information, visit www.softwaresecuritygurus.com.
Visit DevOpsDays: https://devopsdays.org/about/
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-08-2527 minSoftware Security Gurus#10: Open source and who should take responsibility for security, with Rami SassIn this interview, he chats with Rami Sass, co-founder and CEO at WhiteSource.
Unsurprisingly, they discuss all things open source security. They reflect on how open source has changed in the past ten years, the compliance implications of using open source components in software, and the disconnect that can often happen between the tech and legal departments. Finally, Rami shares his thoughts on who should take responsibility for open source security.
For more information, check out www.softwaresecuritygurus.com
Visit WhiteSource: www.whitesourcesoftware.com
---
Send in a voice message: https://podcasters...2020-08-1121 minSoftware Security Gurus#9: Security issues at the SVP level, with John StewartIn episode 9 of the Software Security Gurus webcast, Matias sits down with John Stewart, former SVP and Chief Trust & Safety Officer at Cisco.
They discuss security issues at the SVP level of a large organization, as well as the role diversity plays in building an amazing team that drives businesses forward.
For more information, or to nominate a guest, visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-07-2834 minSoftware Security Gurus#8: The rise of the developer in security programs, with Guy PodjarnyHello and welcome to episode 8 of Software Security Gurus, with Matias Madou. In this interview, he chats with Guy Podjarny, Co-Founder and President at Snyk Security.
They discuss scanning tools, and the rise of the developer in security programs. He also reveals his experiences in startup, and what he looks for in a great company.
For more information, visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-07-1428 minSoftware Security Gurus#7: Key takeaways from attending 50 (!) conference talks, with Clint GiblerHello and welcome to episode 7 of Software Security Gurus, with Matias Madou. In this interview, he chats with Clint Gibler, security consultant, and owner of the TL;DR Sec blog.
They discuss his love/hate relationship with static analysis and the available solutions, as well as what he learned from attending 50 conference talks. Also tune in for deep dives into threat modeling as code, and good examples of security defaults.
For more information, visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-06-3024 minSoftware Security Gurus#6: Lessons learned in the SDLC with Steve LipnerHello and welcome to episode 6 of Software Security Gurus, with Matias Madou. In this interview, he chats with Steve Lipner, software security expert, and founder of SAFEcode.org.
They discuss his influential book, Security Development Lifecycle, and the changes seen in the fifteen years since its release. With diversity in programming languages a key change, Steve reveals the lessons learned in this period of rapid transformation.
For more information, please visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-06-1627 minSoftware Security Gurus#5: The pitfalls on the quest to a thriving AppSec environment, with Fredrick "Flee" LeeWelcome to the Software Security Gurus webcast with Matias Madou. In episode 5, Matias interviews Fredrick "Flee" Lee, a long-time cybersecurity expert and Chief Security Officer at Gusto.
They discuss the potential pitfalls of a thriving AppSec environment, including efficient training, best practices, and the lack of focus on custom rule-writing. We also hear his advice on building a super team, as well as a robust security program within an organization.
For more information, visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-06-0231 minSoftware Security Gurus#4: Adopting more resilient security processes with Aaron BedraWelcome to episode 4 of Software Security Gurus with Matias Madou. In this interview, he chats with Aaron Bedra, senior software engineer and security industry expert.
Aaron discusses his background in regulated industries, as well as his insights on protecting data from some overzealous regulators that attempt to legislate weakened encryption processes. Together, they also talk about how development teams can adopt more resilient, secure processes that can adapt and pivot to changing requirements while reducing bugs and vulnerabilities.
www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus...2020-05-2623 minSoftware Security Gurus#3: Nurturing software engineering teams, and the future of security tooling with Dr. Brian ChessIn this interview, he chats with Dr. Brian Chess, cybersecurity expert and former Chief Scientist at Fortify Software.
Together, they discuss industry shifts with Agile and DevOps, as well as the future of scanning tools and static analysis in the software development lifecycle. Dr. Chess also discusses his process when it comes to nurturing software engineering teams, including mentorship and training, in addition to communication tools in the fast-paced world of tech startups.
For more information, visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-05-1921 minSoftware Security Gurus#2: Future movements and investment trends in cybersecurity, with Dr. Chenxi WangWelcome to the Software Security Gurus webcast with Matias Madou. In this episode, Matias interviews Dr. Chenxi Wang, cybersecurity expert and founder of Rain Capital, a venture capital firm with a focus on cyber-related startups. They discuss everything from their shared academic backgrounds, to future movements in the security industry, including investment trends.
For more information, please visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-05-1225 min
Seamless Podcast with Darin AndersenMatias Madou, Co-Founder & CTO at Secure Code Warrior | Seamless Podcast: FutureCON CyberSecurity SeriesDarin and Kim are joined by Matias Madou, co-founder and CTO of Secure Code Warrior. SCW provides a fully hands-on gamified experience with metrics, leaderboards and badging enabling developers to master secure coding in different development languages and frameworks. Matias has over a decade of hands-on software security experience. He is responsible for over a dozen patents and several papers have resulted from his research eventually leading to a hand full of commercial developed products. Find out more about Secure Code Warrior by visiting https://securecodewarrior.com/.2020-05-0836 minSoftware Security Gurus#1: The history, present, and future of software security with Dr. Gary McGrawWelcome to the Software Security Gurus webcast with Matias Madou. In this inaugural episode, Matias interviews Dr. Gary McGraw, one of the godfathers of software security and founder of the Berryville Institute of Machine Learning. They discuss the history, present, and future of software security, as well as how these principles may apply to the new frontier of machine learning and AI.
For more information, please visit www.softwaresecuritygurus.com.
---
Send in a voice message: https://podcasters.spotify.com/pod/show/softwaresecuritygurus/message2020-05-0427 min
Absolute AppSecEpisode 81: Matias Madou - Application Security TrainingKen and Seth are joined by Matias Madou, CTO of Secure Code Warrior. Discussion of current state of application security training, static analysis tools, and just-in-time-training.2020-01-2100 min
Application Security Weekly (Audio)The Doctor's Here - Application Security Weekly #03This week, Keith is joined by Doug White, host of Secure Digital Life! Matias Madou of Secure Code Warrior joins us for an interview! In the news, Red Hat has now reverted CPU patches for Spectre, Russian Twitterbots are blaming the US shutdown on Democrats, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Visit https://www.securityweekly.com/ for all the latest episodes!2018-01-2759 min
Application Security Weekly (Video)Matias Madou, Secure Code Warrior - Application Security Weekly #03Matias Madou is the CTO of Secure Code Warrior where he is responsible for leading the company’s technology vision and overseeing the engineering team. He joins Keith this week for the feature interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly2018-01-2729 minApplication Security Weekly (Video)Matias Madou, Secure Code Warrior - Application Security Weekly #03Matias Madou is the CTO of Secure Code Warrior where he is responsible for leading the company’s technology vision and overseeing the engineering team. He joins Keith this week for the feature interview! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Subscribe to our YouTube channel: https://www.youtube.com/securityweekly Visit our website: http://securityweekly.com Follow us on Twitter: https://www.twitter.comsecurityweekly2018-01-2729 min
Application Security Weekly (Audio)The Doctor's Here - Application Security Weekly #03This week, Keith is joined by Doug White, host of Secure Digital Life! Matias Madou of Secure Code Warrior joins us for an interview! In the news, Red Hat has now reverted CPU patches for Spectre, Russian Twitterbots are blaming the US shutdown on Democrats, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Visit https://www.securityweekly.com/ for all the latest episodes!2018-01-2759 minPaul's Security WeeklyThe Doctor's Here - Application Security Weekly #03This week, Keith is joined by Doug White, host of Secure Digital Life! Matias Madou of Secure Code Warrior joins us for an interview! In the news, Red Hat has now reverted CPU patches for Spectre, Russian Twitterbots are blaming the US shutdown on Democrats, and more on this episode of Application Security Weekly! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode03 Visit https://www.securityweekly.com/ for all the latest episodes!2018-01-2759 min![DEF CON 18 [Video] Speeches from the Hacker Convention.](http://www.defcon.org/podcast/dc-18-itunes-logo-video.jpg){kind=logo}
DEF CON 18 [Video] Speeches from the Hacker Convention.Matias Madou & Jacob West - Repelling the Wily InsiderWorking with more than 50 malicious backdoors written over the last 10 years we show how insiders who write code, whether they are developers working for an enterprise or contributors to an open source project, have an almost unlimited number of ways to put chinks in the armor of their software. These holes are often put in place for seemingly good reasons to facilitate easy debugging, make working from home easier, or as a failsafe in case other mechanisms for interfacing with the system fail. However, we'll consider what happens when insiders aren't so pure of heart, including logic bombs and backdoors...2010-10-0850 min