BSIMM – Top Ten Surprises

In a prior column, I described the results of a survey conducted by Gary McGraw, Sammy Migues and Brian Chess published in the BSIMM (Build Security In Maturity Model) report available at  

Most of the results are intuitively obvious … after the fact, that is. But some of what they found was not. These unusual “surprise” findings are described in an article “Software [In]security: Software Security Top 10 Surprises” available at

Post a Comment

Your email is never published nor shared. Required fields are marked *