Secure Development Lifecycle (SDL)
FEAR: False Evidence Appearing Real
Thursday, February 26th, 2009Here is some positive and prescriptive ideas for all of us tired of hearing how bad the economy is, how bad the world is. Here are some postive action items that can improve your frame of mind. It is a longer post, and well worth the time reading.
Success Tips Newsletter
In this issue: The dirty little secret of [...]
Microsoft’s Mea Culpa regarding CVE-2008-4844
Friday, January 9th, 2009As most of us know, the vulnerability in mshtml.dll in Microsoft Internet Explorer 5.01, 6, and 7 on Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 was as bad as it gets. It allowed remote attackers to execute arbitrary code via a crafted XML document to [...]
We need a “Secure Software” Seal of Approval
Wednesday, December 10th, 2008The author of Geekonomics, David Rice has written a thought provoking submission to the Commission on Cyber Security for the 44th President regarding software and application security. Basically, Rice is proposing that software security should not be the burden of consumers or end users. He is proposing that the security of computer applications should be [...]