Je n’ai fait celle-ci plus longue que parce que je n’ai pas eu le loisir de la faire plus courte. — Blaise Pascal
A while back, Dan Boneh asked me if I’d like to give a talk at the Stanford Security Seminar, so of course I said yes. Here are the slides as a Google doc, and here are the slides as a PDF.
It’s an over-long tale of how crucial it is to use languages — of all kinds — as well as possible, in order to achieve safe software that people can really use. Software engineering generally, and security in particular, is still very much in its infancy, and so I think there is still a ton of low-hanging fruit for us to pick. The good use of natural languages, UX languages and metaphors, ceremony design, programming languages, APIs, and language-theoretic security are rich areas for continuing improvements.