The world “security”

In a conversation with a colleague today — who was wondering about the source for a question we had about web application security — I remarked to him that unless it was a banking site, or an e-commerce site (if even then) — anyone that uses the word security was most certainly an IT person.

IT people care about security, users care about privacy — and web applications should be written for users, not IT people.