Secure Coding mailing list archives

"Bumper sticker" definition of secure software

From: gem at cigital.com (Gary McGraw)
Date: Sun, 16 Jul 2006 22:17:24 -0400

I wrote a book with viega a few years ago called "building secure software"...it was not about that company (at all).

Software security: building security in.

gem

P.s. I actually like ivan's quip as reported by crispy.

 -----Original Message-----
From:   Dave Aronson [mailto:secureCoding2dave at davearonson.com]
Sent:   Sun Jul 16 15:58:08 2006
To:     SC-L at securecoding.org
Subject:        Re: [SC-L] "Bumper sticker" definition of secure software

Goertzel Karen wrote:

Secure software is software that remains dependable despite efforts
to compromise its dependability.


If you really want to compress that to bumper-sticker size, how about

  "Secure Software:  Does what it's meant to.  Period."

This encompasses both "can't be forced NOT to do what it's meant to do", 
and "can't be forced to do what it's NOT meant to do".

Also note, however, that "Secure Software" is the name of a company 
(which I used to work for).  Dunno how picky they may get about possible 
trademark (service mark?) infringement, though IMHO they'd probably just 
love the free publicity.  ;-)

-Dave
_______________________________________________
Secure Coding mailing list (SC-L)
SC-L at securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php




----------------------------------------------------------------------------
This electronic message transmission contains information that may be
confidential or privileged.  The information contained herein is intended
solely for the recipient and use by any other party is not authorized.  If
you are not the intended recipient (or otherwise authorized to receive this
message by the intended recipient), any disclosure, copying, distribution or
use of the contents of the information is prohibited.  If you have received
this electronic message transmission in error, please contact the sender by
reply email and delete all copies of this message.  Cigital, Inc. accepts no
responsibility for any loss or damage resulting directly or indirectly from
the use of this email or its contents.
Thank You.
----------------------------------------------------------------------------

Current thread:

"Bumper sticker" definition of secure software Gary McGraw (Jul 16)
- <Possible follow-ups>
- "Bumper sticker" definition of secure software Holger.Peine at iese.fraunhofer.de (Jul 16)
- "Bumper sticker" definition of secure software Wall, Kevin (Jul 17)
- "Bumper sticker" definition of secure software Jeremy Epstein (Jul 17)
  - "Bumper sticker" definition of secure software Shea, Brian A (Jul 17)
    - "Bumper sticker" definition of secure software Florian Weimer (Jul 20)
    - "Bumper sticker" definition of secure software mikeiscool (Jul 20)
    - "Bumper sticker" definition of secure software Crispin Cowan (Jul 23)
    - "Bumper sticker" definition of secure software mikeiscool (Jul 23)
    - "Bumper sticker" definition of secure software Andrew van der Stock (Jul 24)
- "Bumper sticker" definition of secure software Goertzel Karen (Jul 17)

(Thread continues...)