[Fwd: COTS isn't getting better :-)]

Subject: [Fwd: COTS isn't getting better :-)]
From: Gary Stoneburner <stoneburner@nist.gov>
Date: Wed, 15 Nov 2000 10:32:23 -0500
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="------------msCCD1779DC2A6CEF4482A0714"

-------- Original Message --------
Subject: COTS isn't getting better :-)
From: Gary Stoneburner <gary.stoneburner@nist.gov>
To: sec-info

re:http://news.cnet.com/news/0-1003-200-1568072.html

"There is little evidence of improvement in the security features of
most products,'' said Rich Pethia, director of a federally funded
computer emergency response operation at Carnegie Mellon University in
Pittsburgh. ``Developers are not devoting sufficient effort to apply
lessons learned about the sources of vulnerabilities."

...

"He said his organization responded to more than 8,000 computer security
incidents last year, up from 132 in its first full year of operation 10
years earlier. The group found the same types of security defects in
newer versions of products as in earlier ones, he maintained."

Cheers,
Gary

S/MIME Cryptographic Signature

Prev by Date: [Fwd: Magic packets]
Next by Date: [Fwd: load Trojan thru Clipart!]
Prev by thread: [Fwd: load Trojan thru Clipart!]
Next by thread: [Fwd: Magic packets]

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov