QODS ec

Friday, June 11, 2004

/. : Is Finding Security Holes a Good Idea?

Slashdot | Is Finding Security Holes a Good Idea?: "Posted by michael on Friday June 11, @12:35PM from the dare-not-speak-its-name dept.ekr writes 'A lot of effort goes into finding vulnerabilities in software, but there's no re"

Posted by michael on Friday June 11, @12:35PM
from the dare-not-speak-its-name dept.
ekr writes "A lot of effort goes into finding vulnerabilities in software, but there's no real evidence that it actually improves security. I've been trying to study this problem and the results (pdf) aren't very encouraging. It doesn't look like we're making much of a dent in the overall number of vulnerabilities in the software we use. The paper was presented at the Workshop on Economics and Information Security 2004 and the slides can be found here (pdf)."

0 Comments:

Post a Comment

<< Home


Get Firefox!