A single tool, suite or framework to manage all aspects for security aspects is in practice impossible. There are far too many aspects that require specialist tools and expertise that creating and maintaining such a tool is impossible. Also the code-base will be insecure by design, since security maintenance of large complex code bases is in practice impossible. | NO Complexity
Business IT Complexity is a present and growing obstacle for any company. IT Complexity is hard to solve and to prevent. But managing and developing complex IT systems is a required competency to successfully run and grow any business. | nocomplexity.com
Good measurements for cyber security do not have to be technical. From a defence in depth principle it is recommended to have a mix of various technical and non technical measurements. A healthy distrust in security means never trust software and hardware and take as many measurements to mitigate cyber risks to acceptable levels. | NO Complexity
AI/ML for Cyber security#| nocomplexity.com
Python Codeaudit – A modern Python source code analyser based on distrust.| NO Complexity
Python is for one of the most used programming language to date. Especially in the AI/ML world ecosystem, most tools are based on Python programs. Large and small businesses use and trust Python to run their business. Python is from security perspective a safe choice. However even when using Python the risk on security issues […]| NO Complexity
As humans, we try to simplify the world around us. We love to think in simple casual relationships, like “A caused B which caused C”, because we are able to understand cause and effects without much energy spent on thinking and analysing. But the world is not simple. The world is non-linear. There is seldom […]| NO Complexity
What happened with blockchain technology is also happening with AI technology. Too many people believe that it is a solution for all hard and complex problems. I still love this flowchart that helps you to determine if blockchain is an appropriate technology for your use case. Spoiler: Blockchain is seldom a solution.| NO Complexity
Too many Python programs use assert statements to check for conditions, even in widely used modules like Pydantic. Using assert can be problematic from a security perspective. The Python assert statement itself isn’t insecure, but its misuse can lead to vulnerabilities. Rationale When using `Python -O` the Python interpreter removes all assert statements from the […]| NO Complexity
If you want to keep complexity low and minimize security risks, you always need to decide whether using an external Python library is the right choice. Practising 0Complexity design principles is never easy. But when it comes to security and minimising dependencies, you should weigh the advantages and disadvantages of using any external Python library. […]| NO Complexity
Python is for one of the most used programming language to date. Especially in the AI/ML world and the cyber security world, most tools are based on Python programs. Large and small businesses use and trust Python to run their business. However even when using Python the risk on security issues is never zero. Static application security testing (SAST) tools , like Python Codeaudit program should be used to prevent security risks or to be aware of potential risks that comes with running the s...| NO Complexity
Cyber security is complex. But effective cyber solutions do not need to be complex and very expensive.Simplifying your security landscape is not simple, it means rethinking your strategy and re prioritizing objectives. The perfect solution to reduce security risks to zero does not exist. But using and creating a security architecture helps with reducing and managing your risks. A good way to really speed up creating your solution architecture is to use this reference architecture as the basis.| NO Complexity
Solving IT problems is solving business problems. Information Technology (IT) is never an end goal. Simple IT solutions make dreams reality and can have a positive impact on the quality of our lives. However complex IT solutions are the de facto standard for too many solutions. Complex IT solutions have a large negative impact. But solving and preventing IT complexity is hard. | NO Complexity
On the Technical Dutch Open Source Event 2025 (t-dose), I gave a talk on ‘Simplifying Security’| NO Complexity