My blog has moved and can now be found at http://blog.aniljohn.com

No action is needed on your part if you are already subscribed to this blog via e-mail or its syndication feed.

Wednesday, May 26, 2004
« Principle of least privilege | Main | Securing Wireless LANs with PEAP and Pas... »

The May/June issue of the IEEE Security & Privacy magazine is out and that means another issue of the "Building Security In" column, which is edited by Gary McGraw.  This month's column actually has been released free to the web, so go check it out...

Misuse and Abuse Cases: Getting Past the Positive
Paco Hope, Gary McGraw, and Annie I. Antón
http://www.computer.org/security/v2n3/bsi.htm

Software development is all about making software do something: when software vendors sell their products, they talk about what the particular products do to make customer's lives easier, such as improving business processes or something similarly positive. Following this trend, most systems for designing software also tend to describe positive features.

 

Tags:: Security
5/26/2004 9:10 PM Eastern Daylight Time  |  Comments [0]  |  Disclaimer  |  Permalink   
Comments are closed.