[SC-L] Economics of Software Vulnerabilities
Steven M. Christey
coley at linus.mitre.org
Wed Mar 21 16:47:19 EST 2007
On Wed, 21 Mar 2007, mudge wrote:
> Sorry, but I couldn't help but be reminded of an old L0pht topic that
> we brought up in January of 1999. Having just re-read it I found it
> still relatively poignant: Cyberspace Underwriters Laboratories[1].
I was thinking about this, too, I should have remembered it in earlier
comments. The fact that such a thing has NOT come to fruition seems to be
symptomatic of the industry, although there have been some partnerships
between commercial and non-commercial entities (e.g. Fortify and the Java
Open Review).
- Steve
More information about the SC-L
mailing list