[Full-disclosure] [WEB SECURITY] comparing information security to other industries
Jason Muskat, GCFA, GCUX, de VE3TSJ
Jason at TechDude.Ca
Thu Dec 21 05:38:25 GMT 2006
Hello,
People, programmers, computers, software, design patterns, systems, and
infrastructure are constantly changing, often being reinvented. As such,
will never be stable.
Concrete of a type is always the same and therefore predictable. One can
state with certainly that a concrete slab will perform to design. This will
ever be possible in IT.
Many commercially produced software products don¹t have any warranty. Many
even state that the software is not warranted for any function or purpose.
... The fact that the software does something that one thinks it should do
is incidental.
Regards,
--
Jason Muskat | GCFA, GCUX - de VE3TSJ
____________________________
TechDude
e. Jason at TechDude.Ca
m. 416 .414 .9934
http://TechDude.Ca/
From: KT <ktriv3di at msn.com>
Date: Tue, 19 Dec 2006 12:16:29 -0800
To: <full-disclosure at lists.grok.org.uk>, <websecurity at webappsec.org>
Subject: [WEB SECURITY] comparing information security to other industries
So we have been dealing with information security from last 20 years and
still the world is at large lost. We still see banks vulnerable to trivial
XSS attacks and software broken by buffer overflows. How do we compare to
other industries like construction, engineering, finance? What I am trying
to figure out is how mature we are and how long will it take for to get
stable?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20061221/e1941be5/attachment.html
Full-Disclosure is hosted and sponsored by Secunia.