Secure Coding mailing list archives
InformIT: budgeting for software security
From: jim at manico.net (Jim Manico)
Date: Fri, 11 Apr 2008 09:53:33 -1000
No, there is not a direct connection but Green and InfoSec do have a few degrees of connection. InfoSec -> Is a part of -> IT -> manages -> Datacenters -> suck up 3% of word power -> is becoming more expensive - > Green - > Al Gore
RSA conferences *were *focused on infosec, and on cryptography in
particular RSA is a Marketing/Fluff event - As Gary pointed out, there is a 1000-1 "Marketer vs attendee" ratio. Case and point: SANS is teaching there now! :D - Jim
Jim, In response to Stephen's question, you wrote...What does 'green technology' have to do with infosec?Data centerers worldwide use at least 3% of all global electricity. With the growing cost of oil/power - most large corporations are looking for ways to reduce power consumption at their data centers. Google is building new database centers near cheap power, cheap land, and cheap water. Sun has "bet the farm" on Green issues. IBM and Intel have green/sustainability departments as well. http://www.baselinemag.com/c/a/Infrastructure/Disruptive-Forces-Sun-Microsystems/Maybe I need someone to connect the dots for me, but IMO, your response _still_ doesn't adequately answer Stephen's question. You addressed why 'green technology' is good in general and why businesses are pursuing it, but not what it has to do w/ information security. Certainly, if there is a connection here, is is not a direct one. I don't want to speak for Stephen (but will anyways ;-), but I think it's unfair to interpret his remark as implying that green technology is bad or some sort of voodoo. In the context, I think his concern was that in the past, the RSA conferences were focused on infosec, and on cryptography in particular. Apparently, based on Stephen and gem's comments, it seems to have lost its focus. I think that's all that was being implied here. -kevin --- Kevin W. Wall Qwest Information Technology, Inc. Kevin.Wall at qwest.com Phone: 614.215.4788 "The reason you have people breaking into your software all over the place is because your software sucks..." -- Former White House cyber-security adviser, Richard Clarke, at eWeek Security Summit This communication is the property of Qwest and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments.
-- Jim Manico, Senior Application Security Engineer jim.manico at aspectsecurity.com | jim at manico.net (301) 604-4882 (work) (808) 652-3805 (cell) Aspect Security? Securing your applications at the source http://www.aspectsecurity.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://krvw.com/pipermail/sc-l/attachments/20080411/d3aa9f15/attachment.html
Current thread:
- InformIT: budgeting for software security Gary McGraw (Apr 08)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 09)
- InformIT: budgeting for software security Jim Manico (Apr 10)
- InformIT: budgeting for software security Wall, Kevin (Apr 11)
- InformIT: budgeting for software security ljknews (Apr 11)
- InformIT: budgeting for software security Jim Manico (Apr 11)
- InformIT: budgeting for software security Dave Aronson (Apr 12)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 13)
- InformIT: budgeting for software security Kenneth Van Wyk (Apr 13)
- InformIT: budgeting for software security Jim Manico (Apr 10)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 09)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 11)
- <Possible follow-ups>
- InformIT: budgeting for software security Gary McGraw (Apr 11)