[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] [WEB SECURITY] comparing information security to other industries
- To: KT <ktriv3di@xxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>, <websecurity@xxxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] [WEB SECURITY] comparing information security to other industries
- From: "Jason Muskat, GCFA, GCUX, de VE3TSJ" <Jason@xxxxxxxxxxx>
- Date: Thu, 21 Dec 2006 00:38:25 -0500
Hello,
People, programmers, computers, software, design patterns, systems, and
infrastructure are constantly changing, often being reinvented. As such,
will never be stable.
Concrete of a type is always the same and therefore predictable. One can
state with certainly that a concrete slab will perform to design. This will
ever be possible in IT.
Many commercially produced software products don¹t have any warranty. Many
even state that the software is not warranted for any function or purpose.
... The fact that the software does something that one thinks it should do
is incidental.
Regards,
--
Jason Muskat | GCFA, GCUX - de VE3TSJ
____________________________
TechDude
e. Jason@xxxxxxxxxxx
m. 416 .414 .9934
http://TechDude.Ca/
From: KT <ktriv3di@xxxxxxx>
Date: Tue, 19 Dec 2006 12:16:29 -0800
To: <full-disclosure@xxxxxxxxxxxxxxxxx>, <websecurity@xxxxxxxxxxxxx>
Subject: [WEB SECURITY] comparing information security to other industries
So we have been dealing with information security from last 20 years and
still the world is at large lost. We still see banks vulnerable to trivial
XSS attacks and software broken by buffer overflows. How do we compare to
other industries like construction, engineering, finance? What I am trying
to figure out is how mature we are and how long will it take for to get
stable?
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/