Secure Coding mailing list archives

Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading

From: michaelslists at gmail.com (silky)
Date: Mon, 3 Dec 2007 08:34:18 +1100

On Dec 1, 2007 7:59 AM, Steven M. Christey <coley at linus.mitre.org> wrote:


On Fri, 30 Nov 2007, silky wrote:

i still think all these ideas are wrong and the model is simple: don't
employ people who write and generate insecure code. it's just part of
programming. you wouldn't hire a doctor to be a gardener. don't hire
an idiot to program your apps.


How does a manager who hasn't written code in the last 10 years (if ever)
know how to distinguish the idiots from the experts?  Secure programming
certification and education is, at best, in its infancy.


how does anyone know how to hire anyone for a job that they themselves
aren't qualified for? well, you pay professionals to do it.
recruitment agents. this should be part of their role. and absolutely
agreed; most certification is useless, secure programming is no
different.

- Steve


-- 
mike
http://lets.coozi.com.au/

Current thread:

Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading, (continued)
- - - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andre Gironda (Dec 01)
  - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Kenneth Van Wyk (Nov 30)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andre Gironda (Dec 01)
- Insecure Software Costs US $180B per Year - Application and robert at webappsec.org (Nov 29)
- Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andy Steingruebl (Nov 29)
  - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Blue Boar (Nov 29)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andy Steingruebl (Nov 29)
  - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading silky (Nov 29)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Steven M. Christey (Nov 30)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andre Gironda (Dec 01)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading silky (Dec 02)
    - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Pete Werner (Dec 04)
  - Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andre Gironda (Dec 01)
- Insecure Software Costs US $180B per Year - Application and Perimeter Security News Analysis - Dark Reading Andre Gironda (Dec 01)