(Ab)user Experience: The Dark Side of Product and Security

Explore the intersection of product development and security in this 29-minute DevSecCon talk. Delve into the concept of "threat agents" - the unintended users of a product - and learn how to engage security teams in the product process. Discover threat modeling techniques that can help transform abstract security non-functional requirements into concrete examples of potential product misuse. Gain insights on bridging the gap between security and product teams, demystifying security concerns, and creating more robust digital products by anticipating and addressing potential vulnerabilities from the design phase.

(Ab)user Experience: The dark side of Product and Security with Lianne Potter & Jeff Watkins