A New Open Source Approach to Weakness

[gem at cigital.com (Gary McGraw)]

Also note that there is a chapter in "software security" about the pernicious kingdoms...www.swsec.com.

gem

company www.cigital.com
podcast www.cigital.com/silverbullet
book www.swsec.com

 -----Original Message-----
From:   Gergely Buday [mailto:gbuday at gmail.com]
Sent:   Wed Aug 09 10:53:52 2006
To:     Secure Coding
Subject:        Re: [SC-L] A New Open Source Approach to Weakness

On 09/08/06, Kenneth Van Wyk <ken at krvw.com> wrote:
> FYI, here's an article about Fortify's pernicious kingdom taxonomy of common
> coding defects that I thought would be of interest here:
>
> http://www.internetnews.com/dev-news/article.php/3623751

The link to the original paper is:

http://vulncat.fortifysoftware.com/docs/tcm_taxonomy_submission.pdf

Cheers

- Gergely
_______________________________________________
Secure Coding mailing list (SC-L)
SC-L at securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php




----------------------------------------------------------------------------
This electronic message transmission contains information that may be
confidential or privileged.  The information contained herein is intended
solely for the recipient and use by any other party is not authorized.  If
you are not the intended recipient (or otherwise authorized to receive this
message by the intended recipient), any disclosure, copying, distribution or
use of the contents of the information is prohibited.  If you have received
this electronic message transmission in error, please contact the sender by
reply email and delete all copies of this message.  Cigital, Inc. accepts no
responsibility for any loss or damage resulting directly or indirectly from
the use of this email or its contents.
Thank You.
----------------------------------------------------------------------------