Matt and Alan discuss the work that he and Marc Stiegler have been doing over the past ten years to improve usability by adding security.  Alan unpacks that seemingly paradoxical statement and explains not only why this is important, but how it can actually be implemented.

Summary

Intro

Requirements and Principles for Usable Security — Make the secure way the easy way.

The state of usable security today (Authentication separated from Authorization, OAuth, Least Authority, chrome, JavaScript and ECMAScript5, Authorization Tokens, Capabilities – designation + permission to use)

Quantum Computers and the breaking of Factoring Based Cryptography

Plotting a new way to give out your phone number

Full Interview (42 Minutes)

links:

Intro to Capabilities Based Security

Erights

Condor