Disclaimer: The opinions of the columnists are their own and not necessarily those of their employer.

Tag Archives: Common Criteria

Heartbleed, Open Source, and Internet Security

– On page A5 of the April 24, 2014 issue of The Wall Street Journal, there is a full page “Paid Advertisement” with the title “Internet Security and Heartbleed.” The ad, which is in the form of a letter from Klaus Brandstätter, CEO of software company HOB, touts HOB-SSL as a replacement for…

Are Mainframes Really More Secure?

– Some two decades ago, I wrote a column in the Fall 1993 edition of the long-since departed magazine, Securities Industry Management, with the title “Two Cheers for Mainframes—The future may lie in distributed technology, but don’t junk your old iron just yet.” I made statements in the…

The Quest for Secure and Resilient Software

– Secure and Resilient Software Development (CRC Press, 2010) by Mark Merkow and Laksh Raghavan is a really good book. It addresses a key security area that is generally given short shrift, even though purportedly more than 70 percent of breaches result from attacks on the application layer. The…