Bugtraq mailing list archives
Re: How secure is software X?
From: Fabian Becker <neonomicus () gmx de>
Date: Fri, 12 May 2006 21:12:32 +0200
Dear David in my opinion a software can either be secure or not secure. I think it's a bit like a woman cannot be "a bit pregnant". But the protocol you are talking about can be used to tell the secure from the insecure pieces of software. By applying a test for these rules against systems, security will definitely be enhanced since software brandmarked with "insecure" will simply loose it's value. Another question is how to verify that authors check their own software? If they do not do it by now, why then? The only reason I could imagine would be a raise in value by beeing able to say "My software is a tested 'secure' one". My 2cts :) Bye Fabian Becker
Current thread:
- How secure is software X? David Litchfield (May 12)
- Re: How secure is software X? Adam Shostack (May 12)
- Re: How secure is software X? Tim Newsham (May 12)
- Re: [Full-disclosure] How secure is software X? Michael Silk (May 12)
- Re: [Full-disclosure] How secure is software X? David Litchfield (May 12)
- Re: How secure is software X? Paul B. Saitta (May 15)
- Re: How secure is software X? Fabian Becker (May 15)
- Re: How secure is software X? Matt . Carpenter (May 15)
- Re: How secure is software X? Duncan Simpson (May 24)
- Re: How secure is software X? Crispin Cowan (May 23)
- Re: How secure is software X? Matt . Carpenter (May 15)
- <Possible follow-ups>
- RE: How secure is software X? Ferguson, Justin (IARC) (May 13)
- Re: How secure is software X? David Litchfield (May 13)