Reinvigorating the Appsec Zombie
Hello Protocols, Packets, and Programs,
This week’s appsec inspiration comes from the 20th anniversary of the horror movie 28 Days Later.
Not because 28 days sounds like an SLA for patching vulns. Most severe vulns still aren’t patched 28 weeks later, which is the movie’s sequel by the way.
Not because the discourse it spawned around fast vs. slow zombies was about as useful as shifting left vs. right.
Not because it’s one of my favorite movies.
But because it reinvigorated the zombie genre.
And appsec has a bit of a stale zombie feel to it.
So, what should appsec be doing to reinvigorate secure software in order to leave a lasting impression 20 years from now?