Jerry 🦙💝🦙I get to speak to a masters in cyber security class at a major university on Monday. They are learning about interacting with senior leadership/BoD on topics of cyber risk. I have many stories to share with them, but curious if y’all have any ideas on what you thank that group should know
Simple Nomad@jerry Let them know that despite there being plenty of anti-AI sentiment out in the world, it is not only NOT going away but it is up to the security community to fix it. Just like we did with PHP when that came out spawning hundreds of vulnerable websites from non-HTML programmers. Just like we did when we moved from server rooms to the cloud. Before HTTPS. And on and on. Whether we like it or not, security pros have to fix things.
Josh Bressers@simplenomad @jerry I just make all my prompts end with “and be sure you make it secure” and everything is fine
@joshbressers @jerry I take a step further, repost the LLM’s code in a separate chat, and say “I wrote this code but strongly suspect it is insecure, please show me the flaws and give me a diff to fix things.”
@simplenomad @jerry it’s amusing to me that LLMs are better then the average security bug hunter
But they also can’t write secure code