« Boundaries | Main | Analysis on data breaches and stock prices »



One thing I find fascinating about this post is that secure coding is in itself a process change.


@Daniel - great point, secure coding was the first thing that came to mind for me on this as well. Security in the SDLC is something that is easy to say, but hard to do. The hard to do part is not that people want insecure code or even that we do not know hot to find and close out bugs , its hard to do mostly because its a process change.

The comments to this entry are closed.