July bookmarks: let's start with security

Along about July I thought I'd try to get a handle on the many bookmarks I was accumulating without blogging them, so I ended up with a bunch of categorized bookmarks that still never got posted.  Oy. And I should warn you, as I'm getting caught up with the summer's bookmarks I've been accumulating lots and lots more on various topics up here in November. Fortunately they group a little better, so they'll probably fit into bulk posts better.

To get July started off well, let's post a big bunch of security-related stuff that caught my eye in the first half of the year:

• A little primer on breaking Web security
• A book on security engineering from Ross Anderson ("Security engineering is about building systems to remain dependable in the face of malice, error, or mischance." I like it.)
• Secure your REST API ... the right way.
• How the Syrian Electronic Army hacked the Onion's Twitter account. Social engineering is pretty cool, actually.
• Are hackers a step ahead? A kind of overview blog post about Web security.
• Mesh networking to protect against NSA eavesdropping (Mother Jones, so more of a political article than a technical one, obviously).