{"podcast":{"title":"Application Security Weekly (Audio)","slug":"application-security-weekly-audio-436682","podcast_index_feed_id":436682,"rss_url":"https://aswaudio.libsyn.com/rss","website_url":"https://securityweekly.com/asw","image_url":"https://static.libsyn.com/p/assets/0/a/1/5/0a15d1d27c1a4bbc27a2322813b393ee/ASW_Cover_1920x1920-20240930-x3a3ohx73b.png","author":"Security Weekly Productions","episode_count":398,"summary":"About all things AppSec, DevOps, and DevSecOps. Hosted by Mike Shema and John Kinsella, the podcast focuses on helping its audience find and fix software flaws effectively.","last_synced_at":null,"page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682"},"episode":{"title":"Secure By Design Is Better Than Secure By Myth - Bob Lord - ASW #365","slug":"secure-by-design-is-better-than-secure-by-myth-bob-lord-asw-365","published_at":"2026-01-13T10:00:00+00:00","page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/secure-by-design-is-better-than-secure-by-myth-bob-lord-asw-365","show_page_url":"https://stenobird.com/podcast/application-security-weekly-audio-436682","url":"https://aswaudio.libsyn.com/secure-by-design-is-better-than-secure-by-myth-bob-lord-asw-365","audio_url":"https://dts.podtrac.com/redirect.mp3/traffic.libsyn.com/secure/aswaudio/ASW_365_1--ff8665cf-010b-4919-af4a-8d032a0dd72b--audio-converted--54697c33-5f65-43d0-858c-67ae07ffb637.mp3?dest-id=626765","summary":"Not all infosec advice is helpful. Bad advice wastes time, makes people less secure, and takes focus away from making software more secure. Bob Lord talks about his efforts to tamp down hacklore -- the security myths and mistakes that crop up in news stories and advice to users. He talks about how these myths come about, why they're harmful, and how they're related to the necessity of building software that's secure by design. Segment Resources: https://www.hacklore.org/ https://medium.com/@boblord/lets-stop-hacklore-d5c86a0fdad8 https://www.cisa.gov/securebydesign https://medium.com/@boblord/recurring-classes-of-software-weaknesses-2007-vs-2025-c2cd56125e1a https://www.ncsc.gov.uk/report/a-method-to-assess-forgivable-vs-unforgivable-vulnerabilities https://99percentinvisible.org/episode/nut-behind-wheel/ https://timharford.com/2022/05/cautionary-tales-short-a-screw-loose-at-17000ft/ Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-365","meta_description":"Not all infosec advice is helpful. Bad advice wastes time, makes people less secure, and takes focus away from making software more secure. Bob Lord talks…","key_points":[],"chapters":[],"topics":[],"duration_seconds":3213,"processing_state":"not_requested","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/application-security-weekly-audio-436682/episodes/secure-by-design-is-better-than-secure-by-myth-bob-lord-asw-365/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/application-security-weekly-audio-436682/secure-by-design-is-better-than-secure-by-myth-bob-lord-asw-365.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}