//
sign in
Profile
by @danabra.mov
Profile
by @dansshadow.bsky.social
Profile
by @jimpick.com
AviHandle
by @danabra.mov
AviHandle
by @dansshadow.bsky.social
AviHandle
by @katherine.computer
EventsList
by @katherine.computer
ProfileHeader
by @dansshadow.bsky.social
ProfileHeader
by @danabra.mov
ProfileMedia
by @danabra.mov
ProfilePlays
by @danabra.mov
ProfilePosts
by @danabra.mov
ProfilePosts
by @dansshadow.bsky.social
ProfileReplies
by @danabra.mov
Record
by @atsui.org
Skircle
by @danabra.mov
StreamPlacePlaylist
by @katherine.computer
+ new component
Profile
Loading...
Loading...
Co-leader OWASP Cornucopia. If you like what we do for open source, visit our code repository https://github.com/OWASP/cornucopia and give us a star ⭐ 🌈 «Difference is of the essence of humanity» 🦄 – John Hume #appsec #owasp #cornucopia #threatmodeling
Uncle Joe
This game is now available at copi.owasp.org! Read more at: dev.to/owasp/dbd-co... (6/6) #threatmodeling #appsec #security #welfare #benefits #disbenefits #cornucopia #games
13h
Uncle Joe
That Fable was turned off outside US is a joke. It has no larger impact on national security than any of the other LLMs out there. If LLM was a matter of national security, then all LLM access should be restricted. Anthropic has become a victim for their own lies. www.youtube.com/watch?v=_Jsy...
The research's scope was digitisation of social protection cash payments (in the UK called “welfare benefits”) and those working-age citizens who apply for, and possibly receive, the support payments (in the UK known as “benefit claimants”). (3/6) #threatmodeling #security #welfare #benefits
In recent years, Colin Watson, who created OWASP Cornucopia in 2012, undertook a PhD at Newcastle University, UK. This examined how the digital implementation of e-government services impacts citizens. (2/6) #threatmodeling #appsec #security #welfare #benefits #disbenefits #cornucopia #games
These harms have now also been converted into a Cornucopia deck of cards, to help teams identify negative impacts on the service users, and thus to provide requirements which avoid or minimise such harms. The deck is called “Digital Benefits and Disbenefits Cornucopia” and uses the same game method.
2d
Assessments of threats can be seen from different perspectives. Developers may come across privacy impact assessments (PIAs), where threats to users' data and the impact on those users are paramount. PIAs may additionally examine harms to organisations, third parties and wider society. (1/6) #games
Following completion of the PhD, Colin Watson gathered together harms identified that can arise through the choices made during the software development for these e-government services. These are far broader and deeper than the few accessibility matters (constrained to concerns about the UI). (4/6)
13h
13h
13h
And If someone wants to become a sponsor: cornucopia.owasp.org/news/2026052...
13h
13h
I want to give a big thank you to Adarsh Kumar for implementing the game.
7h
Uncle Joe
This is hreat! Really looking forward to this? #appsec #games #threatmodeling #security www.linkedin.com/video/event/...
Uncle Joe
12h
Uncle Joe
Uncle Joe