hi sc-l, For the third anniversary (!) edition of Silver Bullet, that is episode 36, we do something different. James McGovern, OWASP maven, and Enterprise Architect for The Hartford Financial Services Group, interviews me. You may recall that James responded to the OWASP podcast posting here with a set of question he would have asked. Well, that got me thinking, and here you have it. James in charge.
We talk about many aspects of software security, including: * BSIMM * the UML cloud of utter nonsense * outsourced/offshore software and security * a geographic analysis of software security maturity * the analysts (Gartner/Forrester) * whether the IDE will take over source code analysis * RATS and ITS4 * OWASP, SANS, education, and web app myopia * Microsoft * Metrics for software security * why PCI is utterly useless http://www.cigital.com/silverbullet/show-036/ As always, your feedback on the podcast is welcome. gem http://www.cigital.com/~gem _______________________________________________ Secure Coding mailing list (SC-L) SC-L@securecoding.org List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l List charter available at - http://www.securecoding.org/list/charter.php SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com) as a free, non-commercial service to the software security community. _______________________________________________
