Code as Risk • Kevlin Henney • GOTO 2017

preview_player
Показать описание
This presentation was recorded at GOTO Amsterdam 2017. #GOTOcon #GOTOams

Kevlin Henney - Independent Consultant, Speaker, Writer & Trainer @KevlinHenney

ABSTRACT
What is risk? Many people aren't sure, but it's not just uncertainty: risk is exposure to uncertainty.
Instead of just plastering over the cracks, security should also involve reducing the size and number of cracks, reducing the opportunities for cracks to appear, reducing the class of errors and [...]

Download slides and read the full abstract here:

RECOMMENDED BOOKS

#CodeAsRisk #Security #Encryption #KevlinHenney

CHANNEL MEMBERSHIP BONUS
Join this channel to get early access to videos & other perks:

Looking for a unique learning experience?

SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily.
  1. GOTO Conferences
  2. GOTO
  3. GOTOcon
  4. GOTO Conference
  5. GOTO (Software Conference)
  6. Videos for Developers
Рекомендации по теме
Code as Risk 0:50:26

Code as Risk • Kevlin Henney • GOTO 2017

Kevlin Henney - 0:42:17

Kevlin Henney - Code as Risk

JAVA developer Kevin 0:02:22

JAVA developer Kevin Henney op het Code as Risk Event

Clean Coders Hate 1:11:23

Clean Coders Hate What Happens to Your Code When You Use These Enterprise Programming Tricks

Giving code a 1:41:36

Giving code a good name Kevlin Henney

The Forgotten Art 1:29:27

The Forgotten Art of Structured Programming - Kevlin Henney [C++ on Sea 2019]

Kevin Bates, Group 0:01:05

Kevin Bates, Group Head of Risk and Insurance, Lend Lease Corporation

Kevlin Henney - 1:32:57

Kevlin Henney - Lean Code

GNU Hurd: Let's 1:13:12

GNU Hurd: Let's read the code!

Devin just came 0:05:13

Devin just came to take your software job… will code for $8/hr

code::dive 2016 conference 0:59:22

code::dive 2016 conference – Kevlin Henney – Clean Coders Hate (…) When You Use These (…) Tricks...

The problem with 0:03:43

The problem with comments - Kevlin Henney

Honesty: Kevin could 0:00:43

Honesty: Kevin could not sign MEF code of conduct as he had gray traffic, like others who signed it

Keynote: It Depends.. 1:31:56

Keynote: It Depends.. - Kevlin Henney [ ACCU 2021 ]

Kevlin Henney - 1:15:35

Kevlin Henney - Refactoring Is Not Just Clickbait

A risk framework 0:01:42

A risk framework PODCLIP Kelvin Genn

The Architecture of 1:00:38

The Architecture of Uncertainty, with Kevlin Henney

Beauty in Code 0:56:42

Beauty in Code 2018, 4 of 7 — Kevlin Henney: '1968'

The Forgotten Art 1:02:16

The Forgotten Art of Structured Programming - Kevlin Henney

Talk Six Impossible 1:04:54

Talk Six Impossible Things by Kevlin Henney

🚀 Lean Code 1:05:02

🚀 Lean Code (Kevlin Henney)

Mobiconf 2016, Kevlin 1:03:11

Mobiconf 2016, Kevlin Henney & 'The programmer'

Kevlin Henney - 1:01:49

Kevlin Henney - Functional C++

Kevlin Henney — 1:13:12

Kevlin Henney — What we talk about when we talk about unit testing

Комментарии
Автор

about 26:00. I worked at a company once that required every line of code be commented. The comments were extracted later and became the documentation for the code.

greenboy
Автор

Pretty stellar presentation. First exposure to Kelvin, but I suspect not the last.

JaysonSunshine
Автор

31:09 i might have said this before, but at this point it becomes increasingly simpler to write straight assembly

GeorgeTsiros
Автор

interesting upload GOTO Conferences. I killed the thumbs up on your video. Keep on up the superb work.

KeyserTheRedBeard
Автор

Now I want to go back in time to capture all the cool failures I saw.

curiosull
Автор

'We do that in English, we do in Dutch... But not in Java' hahaha

RafaelMilewski
Автор

You don't code if you gaven't had to deal with a "Thing controller manager proxy factory".

maxc
Автор

Why not just this... ?

var PadL = (str, len) => " ".repeat(Math.max(0, len - str.length)) + str;

maxc
Автор

12:13, 'goto' keyword would had save the day. Another way to bureaucratically prevent that would be to adopt a practice of write a checking at the beginning of each f(), according to a debug compilation. For instance:

some_type_in_return use_modes_pointer () {
#ifndef NDEBUG
/* Check pointers. */
#endif
/* ... */
}
49:30, '4. Keep it simple': functional programming is simpler, but I use OO in most cases, because '3. Design for security policies'.
The "const correctness principle" (all const by default) is a '5. Deny by default' and keeps the '6. least privileges'. However, it seems, by examples I've been seeing, that languages other than C++ fail to achieve the 6, regarding to hiding data changing, or keeping the '6. least privileges' of who has the right to change data.

MrAbrazildo
Автор

Does Java have the concept of pointers exposed to the programmer? I know that in C# everything is a pointer, but that fact is hidden from the programmer.

johnmcleodvii
visit shbcf.ru