Skip to Main Content
Security & Privacy

Universal SSO and our security approach

January 19, 2017 Cat Kamireddy

At Clever, it’s important we always use a “privacy by design” approach when releasing new features. In other words, we want to design our products with privacy in mind from day one—and on equal footing with core considerations like usability.

Alex Smolen, our lead security engineer, talked about this process at Mozilla’s series of SF Privacy Labs last year and how we used it with Clever Badges. It’s a great example of privacy by design, but we wanted to share how we approached it for something a bit trickier in its own way: our new universal SSO solution.

Read Alex’s post about how the team used threat modeling, along with code reviews and other secure software development practices, to identify threats, reduce risk, and ensure the overall security of the resulting system.

 

 

More to read

Clever is Secure by Design: Roadmap for 2024
Company District

February 29, 2024

Clever is Secure by Design: Roadmap for 2024

Read Clever’s detailed Secure by Design product roadmap – a critical aspect of fulfilling the Secure by Design Pledge. In August 2023, I had the privilege of joining the Back to School Safely Cybersecurity event hosted by First Lady Dr. Jill Biden at the White House. In partnership with the U.S. Cybersecurity and Infrastructure Security […]

Former teacher launches her second career as an engineer
Company Uncategorized

February 12, 2024

Former teacher launches her second career as an engineer

Learn about Sophia's experiences, challenges, and triumphs in her transition from teaching to engineering, and find out why she chose Clever as a launchpad for her second career.

Year in review: Diversity, equity, and inclusion in 2023
Company

December 18, 2023

Year in review: Diversity, equity, and inclusion in 2023

Explore how we evolved our diversity, equity and inclusion efforts in 2023 and learn more about our journey.

Subscribe to receive news and updates from Clever.

This field is for validation purposes and should be left unchanged.