Secure Coding mailing list archives

"Bumper sticker" definition of secure software

From: michaelslists at gmail.com (mikeiscool)
Date: Fri, 21 Jul 2006 08:26:13 +1000

On 7/21/06, Florian Weimer <fw at deneb.enyo.de> wrote:

* Brian A. Shea:

My slogan:

Unsecured Applications = Unsecured Business


Which is completely acceptable if you and your business partners are
aware of the risk level at which your are running your company.

Secure software costs more, requires more user training, and fails in
hard-to-understand patterns.  If you really need it, you lose.


Really secure software should require _less_ user training, not more.

-- mic

Current thread:

"Bumper sticker" definition of secure software Gary McGraw (Jul 16)
- <Possible follow-ups>
- "Bumper sticker" definition of secure software Holger.Peine at iese.fraunhofer.de (Jul 16)
- "Bumper sticker" definition of secure software Wall, Kevin (Jul 17)
- "Bumper sticker" definition of secure software Jeremy Epstein (Jul 17)
  - "Bumper sticker" definition of secure software Shea, Brian A (Jul 17)
    - "Bumper sticker" definition of secure software Florian Weimer (Jul 20)
    - "Bumper sticker" definition of secure software mikeiscool (Jul 20)
    - "Bumper sticker" definition of secure software Crispin Cowan (Jul 23)
    - "Bumper sticker" definition of secure software mikeiscool (Jul 23)
    - "Bumper sticker" definition of secure software Andrew van der Stock (Jul 24)
- "Bumper sticker" definition of secure software Goertzel Karen (Jul 17)
  - "Bumper sticker" definition of secure software Gadi Evron (Jul 17)
  - "Bumper sticker" definition of secure software mikeiscool (Jul 17)
- "Bumper sticker" definition of secure software mark at markgraff.com (Jul 17)
- "Bumper sticker" definition of secure software Peter G. Neumann (Jul 17)
  - "Bumper sticker" definition of secure software Gadi Evron (Jul 17)
  - "Bumper sticker" definition of secure software Rajeev Gopalakrishna (Jul 17)

(Thread continues...)