Re: "Design it to be secure from the start."
>"Design it to be secure from the start."
The laugh is that you can't design something to be secure from the start!
You first have to solve the real problem then you can evaluate how that solution can be made secure, this may take several iterations before you arrive at a solution that hopefully satisfies most of the requirements.