I have recently completed the review of the book “Architecting Secure Software Systems” for IACR (International Association for Cryptologic Research) book review program.

The review can be summarized as follows:

This book focuses on both theoretical and practical aspects of designing secure software systems. While its theory part is quite well-written, its practical part is not well-structured. I would strongly recommend it to people who need to get only an overview of secure software design, but not for security experts who want to study a specific topic in detail.

You can download the review from the Publications section as well.

I will now continue reviewing the book “Secure and Resilient Software Development” as the next one.

There is a series of security reportages organized by Turkish network security community and published within their security bulletins.

For the 25th issue, I have given my comments for the following questions in the reportage:

• Can you introduce yourself?
• How did you start working on security?
• How do you see information security in Turkey?
• What are your opinions and suggestions for developing security products in Turkey?
• What do you suggest improving IT security in Turkey?
• Is an official institution required for managing Cyber Security in Turkey?
• What do you suggest for beginners of IT Security?
• Which security topics would we discuss in 2015 in the world?
• What do you think about security certificates?
• What is the most critical security problem that you have experienced?
• Which is the last security book you read? Which books do you suggest reading?
• Who is your hero in IT security and why?
• Which security tool/software do you use the most?
• Which websites/blogs do you suggest following?
• Would you choose security as your working subject again if you had one more chance to choose?

You can read my comments to these questions in this link (in Turkish).