The crowd. Recently gaining attention again due to some news events that were much ado about nothing, there is still a bit of a mystery with crowdsourcing and how best to secure it. Organizations like Bug Crowd and HackerOne have shown it can be used for specific security tasks, but what about in general? Nicolas Valcarcel joins me on this episode to share his thoughts and experience with security the crowd and what organizations should be aware of when considering using the crowd for their own purposes.
Some links of interest:
- Crowd Security Whitepaper – https://github.com/nxvl/crowd-security
- How to Make the Most of Mechanical Turk
- How We Maintain a Trustworthy Rainforest Tester Network
- The Pros and Cons of Using Crowdsourced Work
- How We Train Rainforest Testers
- AWS re:Invent: Managing Crowdsourced Testing Work with Amazon Mechanical Turk
- Virtual Machine Security: The Key Steps We Take to Keep Rainforest VMs Secure
Want to reach out to the show? There’s a few ways to get in touch!
- Show’s Twitter: @PurpleSquadSec
- John’s Twitter: @JohnsNotHere
- Podcast Website: purplesquadsec.com
- Sign-Up for our Slack community: https://signup.purplesquadsec.com
- John’s Peerlyst Profile: https://www.peerlyst.com/users/john-svazic
Thanks for listening, and I will talk with you all again next time.