In last week's column, I talked to Bruce Schneier about complexity, one of the main reasons it will be hard for computer security to improve in the future. As software becomes more complex, in terms ...
As a reporter for a publication focused on software development two years ago, I wrote a couple stories about how first software was developed so it did what it was designed to do, then they’d worry ...
For all the scary talk about cyberattacks from vendors and industry experts, relatively few attacks are actually devastating. But the Jaguar Land Rover (JLR) attack was. The JLR breach wasn’t some ...
“Fun” isn’t usually the first word that comes to mind when the topic of cybersecurity comes up. But the techniques of gamification—applying game design elements and principles in non-game settings to ...
A new, free 22-page report from SAFECode discussses best practices across the secure development lifecycle in a pithy, pragmatic way. A new 22-page report, “Fundamental Practices for Secure Software ...
CodeSecure, a leading global provider of application security testing (AST) solutions, and FOSSA, the complete software supply chain platform, are partnering to provide native product integration that ...
While all of the recent Microsoft buzz centers on Windows 7, the company made a small but important announcement this week. At TechEd Europe in Germany, Microsoft announced that it has adapted its SDL ...
A comprehensive audit of AI-assisted software development gives CISOs the visibility needed to quantify risk, strengthen ...
Microsoft on Wednesday offered a progress report on its "Secure Future Initiative" (SFI). The announcement by Bret Arsenault, Microsoft's corporate vice president and chief cybersecurity advisor, ...
As software becomes more complex, security only becomes more difficult. More lines of code, indeed, bring greater potential for bugs. At least, that’s one side of the debate. “In general, I wholly ...