A positive side effect of many vendors being US-based is that the US market
takes most of the buzzword marketing hit. :)
On a more serious note, I think there really are APTs out there, state-driven
and all. The problem is when organizations use the term to get away with
sub-standard security
will be there. The authors of (my) favorite
appsec books will be there. Best thing of all? You are most welcome to join!
http://www.owasp.org/index.php/OWASP_Summit_2011
Get going with the Challenge – http://makeXORbreak.com
Best regards, John Wilander
--
John Wilander, https://twitter.com/johnwilander
Chapter
Christoph Kern, Google
Sergio Maffeis, Imperial College London
Organizing Committee
John Wilander, chapter leader Sweden (chair)
Mattias Bergling (vice chair)
Alan Davidson, Stockholm University/Royal Institute of Technology
(co-host)
Ulf Munkedal, chapter leader Denmark
wrong please tell me what to do. I'd really like to deploy
maintainable security policies. Mark Petrovic has written some good things
on this issue
(http://www.onjava.com/pub/a/onjava/2007/01/03/discovering-java-security-req
uirements.html).
Regards, John Wilander
--
John Wilander, Security
are all about exposing functionality to offer interoperability.
Have any of you had discussions on the seemingly obvious conflict
between these things? I would be very happy to hear your conclusions and
opinions!
Regards, John
John Wilander, PhD student
Computer
precise. But it's short and does the trick for me---it separates
adding security functions from trying to secure all functions in the
system (during all phases).
Regards, John
John Wilander, PhD Student
Computer and Information Sc.
Linkoping University, Sweden
http