Tag Archives: application security
The (Sorry) State of Application Security
April 30, 2012 – 6:00 am
–
In January 2011, research firm Forrester Consulting published a report, which was commissioned by Microsoft, with the title “State of Application Security: Immature Practices Fuel Inefficiencies, But Positive ROI Is Attainable.” The report is available for download at…
So-so SASO … So What?
September 26, 2011 – 6:00 am
–
A couple of days ago, I happened across Oracle CISO Mary Ann Davidson’s August 24, 2011 blog, “Those Who Can’t Do, Audit” at http://blogs.oracle.com/maryanndavidson/entry/those_who_can_t_do and began writing a column about Davidson’s blog. Then I was pointed to Veracode’s Chris…
Application Security and Quantum Mechanics
May 17, 2011 – 6:00 am
–
It’s funny how analogies pop up in the strangest of places. There is an “Annals of Science” article by Rivka Galchen in The New Yorker of May 2, 2011 about physicist David Deutsch with the title “Dream Machine: The mind-expanding world of quantum computing.” It describes the weird…
Are We Busy Doing Nothing?
January 3, 2011 – 6:00 am
–
You must read the hair-raising article by Greg Shipley in the October 11, 2010 issue of InformationWeek titled “Epic Fail.” The article is featured on the cover of the magazine with the words “The Wrong Protection: We’ve spent billions on security products, so why are we so ill-prepared…
