« Dr. Geer goes to Washington | Main | Upcoming Training and Talks »


Jon Robinson

"The security industry has little strategic cohesiveness, instead the market is comprised of vendors selling an aggregation of tactical one off point solutions."

This is exactly what I have perceived, but lacked the experience to express it as succinctly as you have. Thanks for publishing. I'm reading your paper right now.

Walter Williams

While I can certainly see deriving risk management from stake holder's goals, policy and security architecture are both better derived from your risk assessment.

Steve Bakewell

Haven't spoken in a while Gunnar! Always some interesting posts here though. In terms of this paper, there seems to be overlap with the SABSA methodology for Enterprise Security Architecture. That says to me there are more than a few of us heading in the same direction. That can only be a good thing.


The comments to this entry are closed.