May 2007 - Posts

Oil Change or Culture Change
31 May 07 09:09 PM
Dave Ladd has just posted a very interesting and thought provoking post over on the SDL blog: http://blogs.msdn.com/sdl/archive/2007/05/31/oil-change-or-culture-change.aspx Read More...
Postedby michael_HOWARD | 0 Comments    
Filed under:
Half Of Windows Vista Adoption Driven By Security
22 May 07 11:06 PM
I think I earned my paycheck this week :) http://www.informationweek.com/news/showArticle.jhtml?articleID=199701141 Read More...
Postedby michael_HOWARD | 16 Comments    
Filed under: ,
Secure coding lessons from Microsoft
22 May 07 04:24 PM
Last week we had some tech journalists visit Redmond to discuss security products and, in my case, security engineering. One of the attendees, Mari-Len De Guzman, wrote a really balanced, non-alarmist analysis of the talk. It's a good read (IMHO!) Read More...
Postedby michael_HOWARD | 0 Comments    
Filed under:
Windows Vista ISV Security Paper Available
04 May 07 02:31 PM
Matt Thomlinson and I wrote a document explaining how to take advantage of some of the buffer overrun defenses in Windows Vista. The document is now available here . Enjoy :) Read More...
Postedby michael_HOWARD | 2 Comments    
Filed under: ,
More on security education, or lack of...
04 May 07 11:54 AM
Following on from my blog post yesterday about Dave Ladd's education vs training comments over on the SDL blog, Michael Desmon of Redmond Developer News has posted an interview we had on this subject, and asks for some input: "Tell us what your company Read More...
Postedby michael_HOWARD | 1 Comments    
Filed under:
Security Education v. Security Training
03 May 07 08:49 PM
David Ladd, a partner in crime, has just made a post on the SDL blog about Security Education. He starts: "There has been a lot of hoopla lately around "secure programming skills" – with not-so-thinly veiled condemnations of academicians and the role Read More...
Postedby michael_HOWARD | 2 Comments    
Filed under: ,
Page view tracker