The world “security”

In a conversation with a colleague today – who was wondering about the source for a question we had about web application security – I remarked to him that unless it was a banking site, or an e-commerce site (if even then) – anyone that uses the word security was most certainly an IT person.

IT people care about security, users care about privacy – and web applications should be written for users, not IT people.