Try 2: The Joining (or "Why metrics are important")

[dave <dave () immunityinc com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Interesting briefs are linked here:
http://outerdnn.outer.jhuapl.edu/rethinking/VideoArchives/tabid/94/Default.aspx

For example, this one is good, especially slides 11,23.
ftp://ftp.jhuapl.edu/nsadrethink/030409/goslerbrief.pdf

One thing I notice as missing from all these types of presentations is
that although they say "Join defence and office" they rarely explain
what it would take to do that. In order to truly join defence and
offence you need a single metric that can take newly discovered
vulnerabilities from all parts of your organization, and tell you when
to go to a vendor with it or go public with it, or use it offensively,
or use it on only targeted offensive missions. Without that metric there
is no joining of teams on this sort of thing. You are forever split down
the middle, which is bad for both offence and defence.

Dave Aitel
Chief Metrician
Immunity, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org

iEYEARECAAYFAkn7LIoACgkQtehAhL0gherZVACfZUlvFN196DKOjUTB4HNMB+Qd
EwUAn3P18Z/w9j+OYA8hiE928Fn1tBzy
=768h
-----END PGP SIGNATURE-----
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave