Secure Coding mailing list archives
InformIT: budgeting for software security
From: stephencraig.evans at gmail.com (Stephen Craig Evans)
Date: Sun, 13 Apr 2008 18:23:42 +0800
Hi Jim, Wow, that's a flimsy connect-the-dots if I've ever seen one :-) We could have fun with this but I don't want to stray 100% off-topic (if we not there already). Very coincidentally, I watched South Park Season 10 Episode 6 after my first post. I rest my case. I'm sure Al Gore's appearance was a pure Left Coast feel-good kumbaya "we're doing something to help because we care" type of deal. I hope you don't take my criticism too serially.
As Gary pointed out, there is a 1000-1 "Marketer vs attendee" ratio
I guess the bright side is that the female to male ratio was a bit more even :-) Cheers, Stephen On Sat, Apr 12, 2008 at 3:53 AM, Jim Manico <jim at manico.net> wrote:
No, there is not a direct connection but Green and InfoSec do have a few degrees of connection. InfoSec -> Is a part of -> IT -> manages -> Datacenters -> suck up 3% of word power -> is becoming more expensive - > Green - > Al GoreRSA conferences *were *focused on infosec, and on cryptography inparticular RSA is a Marketing/Fluff event - As Gary pointed out, there is a 1000-1 "Marketer vs attendee" ratio. Case and point: SANS is teaching there now! :D - Jim Jim, In response to Stephen's question, you wrote... What does 'green technology' have to do with infosec? Data centerers worldwide use at least 3% of all global electricity. With the growing cost of oil/power - most large corporations are looking for ways to reduce power consumption at their data centers. Google is building new database centers near cheap power, cheap land, and cheap water. Sun has "bet the farm" on Green issues. IBM and Intel have green/sustainability departments as well. http://www.baselinemag.com/c/a/Infrastructure/Disruptive-Forces-Sun-Microsystems/ Maybe I need someone to connect the dots for me, but IMO, your response _still_ doesn't adequately answer Stephen's question. You addressed why 'green technology' is good in general and why businesses are pursuing it, but not what it has to do w/ information security. Certainly, if there is a connection here, is is not a direct one. I don't want to speak for Stephen (but will anyways ;-), but I think it's unfair to interpret his remark as implying that green technology is bad or some sort of voodoo. In the context, I think his concern was that in the past, the RSA conferences were focused on infosec, and on cryptography in particular. Apparently, based on Stephen and gem's comments, it seems to have lost its focus. I think that's all that was being implied here. -kevin --- Kevin W. Wall Qwest Information Technology, Inc.Kevin.Wall at qwest.com Phone: 614.215.4788 "The reason you have people breaking into your software all over the place is because your software sucks..." -- Former White House cyber-security adviser, Richard Clarke, at eWeek Security Summit This communication is the property of Qwest and may contain confidential or privileged information. Unauthorized use of this communication is strictly prohibited and may be unlawful. If you have received this communication in error, please immediately notify the sender by reply e-mail and destroy all copies of the communication and any attachments. -- Jim Manico, Senior Application Security Engineer jim.manico at aspectsecurity.com | jim at manico.net (301) 604-4882 (work) (808) 652-3805 (cell) Aspect Security? Securing your applications at the sourcehttp://www.aspectsecurity.com
-------------- next part -------------- An HTML attachment was scrubbed... URL: http://krvw.com/pipermail/sc-l/attachments/20080413/2468f03a/attachment.html
Current thread:
- InformIT: budgeting for software security Gary McGraw (Apr 08)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 09)
- InformIT: budgeting for software security Jim Manico (Apr 10)
- InformIT: budgeting for software security Wall, Kevin (Apr 11)
- InformIT: budgeting for software security ljknews (Apr 11)
- InformIT: budgeting for software security Jim Manico (Apr 11)
- InformIT: budgeting for software security Dave Aronson (Apr 12)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 13)
- InformIT: budgeting for software security Kenneth Van Wyk (Apr 13)
- InformIT: budgeting for software security Jim Manico (Apr 10)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 09)
- InformIT: budgeting for software security Stephen Craig Evans (Apr 11)
- <Possible follow-ups>
- InformIT: budgeting for software security Gary McGraw (Apr 11)