At 1:10 PM -0400 6/8/04, Jose Nazario wrote:
>thought some of you may find this editorial from the May 04 ACM Queue
>worth a read. ACM Queue is an interesting magazine and has a website at
>acmqueue.org.
>
>Buffer Overrun Madness
>
>ACM Queue vol. 2, no. 3 - May 2004
>by Rodney Bates, Wichita State
Integrating security activities into the software development lifecycle is
going to be a major theme at OWASP AppSec 2004 (June 19/20 in NYC). The
talks will cover a broad range of topics that web application and web
service developers must address, including metrics, training, standards, and
best
thought some of you may find this editorial from the May 04 ACM Queue
worth a read. ACM Queue is an interesting magazine and has a website at
acmqueue.org.
Buffer Overrun Madness
ACM Queue vol. 2, no. 3 - May 2004
by Rodney Bates, Wichita State University
Why do good programmers follow bad prac
There's an interesting article out on Net-Security.org (see the full article
at http://www.net-security.org/article.php?id=697) that addresses why
software development organizations adopt (or do not adopt) a Software
Security development methodology. Check it out -- it's a good read, IMHO.
Amo
Kenneth R. van Wyk wrote:
Although the Immunix suite was briefly described here earlier, the Determina
product wasn't. Has anyone here looked at these tools and care to share
their experience with either or both?
I had never heard of Determina before today. Notably google has no
high-ranking