Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Is developer education a lost cause?

From: "Gary McGraw" <gem () cigital com>
Date: Fri, 23 Jan 2004 21:25:43 +0000
With regard to Andy Briney's little ditty of an article (stir that
pot!), I participated in a published debate on this issue (presented as
Application Security versus Software Security) in 2002.

Here's the cite:

Gary McGraw (2002) Building Secure Software: Better than Protecting Bad
Software. IEEE Software, Volume 19, Number 6, pages 57-59.
(Point/Counterpoint with Greg Hoglund.) 

URL to the paper:
http://www.cigital.com/papers/download/appsec-vs-ss.pdf

gem

Gary McGraw, Ph.D.
CTO, Cigital
http://www.cigital.com


----------------------------------------------------------------------------
This electronic message transmission contains information that may be
confidential or privileged.  The information contained herein is intended
solely for the recipient and use by any other party is not authorized.  If
you are not the intended recipient (or otherwise authorized to receive this
message by the intended recipient), any disclosure, copying, distribution or
use of the contents of the information is prohibited.  If you have received
this electronic message transmission in error, please contact the sender by
reply email and delete all copies of this message.  Cigital, Inc. accepts no
responsibility for any loss or damage resulting directly or indirectly from
the use of this email or its contents.
Thank You.
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: