Secure Coding mailing list archives
Re: Change of position
From: "Peter G. Neumann" <neumann () csl sri com>
Date: Fri, 02 Apr 2004 16:56:40 +0100
Security is an end-to-end problem. As I have said before, but not here, some folks like to talk about Strength in Depth, whereas what we have is really Weakness in Depth. There are vulnerabilities everywhere. Gary is indeed quite correct, even on April Fool's Day. If the underlying computer infrastructures are not secure AND reliable, anything you build on top of them is suspect. Don't forget denials of service, which are particularly nasty and most often ignored.
Current thread:
- Change of position Gary McGraw (Apr 01)
- Re: Change of position Dana Epp (Apr 01)
- Re: Change of position ljknews (Apr 01)
- <Possible follow-ups>
- RE: Change of position Gary McGraw (Apr 01)
- RE: Change of position Dave Paris (Apr 02)
- Re: Change of position Peter G. Neumann (Apr 02)