IEEE Computer: Software Assurance

[Gary McGraw <gem () cigital com>]

hi sc-l,

The September issue of IEEE Computer is a special issue on Software Assurance.  Miami University Professor Ann Sobel is 
the guest editor.  Ann interviewed me for the issue resulting in an article called "Software Security in the Real 
World."  We put a copy of the article up on the net where you can snag it for yourself:
http://www.cigital.com/papers/download/r9int.pdf

I think it important to make sure that academic approaches to software security are cross-pollinated with lessons from 
the real world.  The fact that many universities are teaching *something* about software security (as opposed to, say, 
1999 when there were less than a handful) is important to making progress in the field.  Then again, we certainly can't 
rely on universities to teach software security or really even how to develop code!

After over 15 years in this field, I remain optimistic that we're making solid forward progress in software security.

gem

company www.cigital.com
podcast www.cigital.com/silverbullet
blog www.cigital.com/justiceleague
book www.swsec.com

_______________________________________________
Secure Coding mailing list (SC-L) SC-L () securecoding org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
Follow KRvW Associates on Twitter at: http://twitter.com/KRvW_Associates
_______________________________________________