Trained Open Source Security « Vincent Gable’s Blog

July 25, 2008

Trained Open Source Security

Filed under: Design,Programming,Quotes,Security | Open Source, Training
― Vincent Gable on July 25, 2008

So it’s a matter of training. And that’s pretty much true of Open Source security models. Think of Open Source software. Having a bunch of random people look at the code to tell you if it’s secure won’t work. If you have well-trained people who look at the code, that will work! Open Source just means you can see it, it doesn’t guarantee that the right people will see it.

—Bruce Schneier

The interview is much broader, and worth reading.

No Comments »

No comments yet.

RSS feed for comments on this post.

Leave a comment

About This Blog

I'm on Twitter

Interesting Links
Search for:
Selected Posts
Popular Posts
Stuff I Read
- [RSS] /dev/why!?!
- [RSS] a glob of nerdishness
- [RSS] Ask E.T
- [RSS] bbum's weblog-o-mat
- [RSS] Better Elevation
- [RSS] Big Contrarian
- [RSS] Big Nerd Ranch Weblog
- [RSS] cabel.name
- [RSS] Call Me Fishmeal.
- [RSS] Chad Weider
- [RSS] Chris Hanson
- [RSS] Clarkcox.com
- [RSS] Clarkcox.com
- [RSS] Clay Shirky
- [RSS] American Drink
- [RSS] MiXed Company
- [RSS] The Cocktail Chronicles
- [RSS] Underhill-Lounge
- [RSS] Cocoa Is My Girlfriend
- [RSS] Cocoa with Love
- [RSS] Coding Horror
- [RSS] cwbowron
- [RSS] Dan Wood: The Eponymous Weblog
- [RSS] Dangerous Ideas | Big Think
- [RSS] Daring Fireball
- [RSS] Dolores Labs Blog
- [RSS] Hunch Blog
- [RSS] Last.fm – the Blog
- [RSS] OkTrends
- [RSS] Dave Dribin's Blog
- [RSS] David Weiss
- [RSS] Delicious/network/VTPG
- [RSS] Delicious/tjayluke/must_read
- [RSS] Delicious/VTPG/toread
- [RSS] Devour
- [RSS] dive into mark
- [RSS] Domain of the Bored
- [RSS] Eschatology
- [RSS] evand.org
- [RSS] Extremely Satisfactory Totalitarianism
- [RSS] Best of Wikipedia
- [RSS] Mesofacts: slowly changing facts - Blog
- [RSS] Uploads by CollegeBinary
- [RSS] feed/http://www.rall.com/rallblog/feed
- [RSS] Fiery Robot!
- [RSS] Five Whys
- [RSS] Fun Script
- [RSS] Fun with Objective-C
- [RSS] furbo.org
- [RSS] Good Math, Bad Math
- [RSS] Covered
- [RSS] Curved White
- [RSS] Delicious Ghost
- [RSS] lamouche
- [RSS] Letterheady
- [RSS] Photo Synthesis
- [RSS] PicoCool / Popular items
- [RSS] riot rite right clit clip click
- [RSS] Gus's weblog, adventures in Flying Meat.
- [RSS] Hamster Emporium
- [RSS] active questions tagged haskell - Stack Overflow
- [RSS] Learn You a Haskell for Great Good!
- [RSS] Modern Mechanix
- [RSS] Paleo-Future Blog
- [RSS] Sunday Magazine
- [RSS] Wired Reread
- [RSS] Dinosaur Comics
- [RSS] Explosm.net
- [RSS] garfield minus garfield
- [RSS] http://www.kickingbear.com/blog/
- [RSS] I Love Charts
- [RSS] Joe Mathlete Will Draw Anything You Ask Him To On An Index Card
- [RSS] MARMADUKE EXPLAINED
- [RSS] Nedroid Picture Diary
- [RSS] NEW MATH by CRAIG DAMRAUER
- [RSS] Santa, NO!
- [RSS] Saturday Morning Breakfast Cereal (updated daily)
- [RSS] Sharing cheap yet deep knowledge since a couple weeks ago
- [RSS] So Awesome It Hurts
- [RSS] The Comics Curmudgeon
- [RSS] Toby, Dave & Ian Explain XKCD
- [RSS] Urban Prankster
- [RSS] xkcd.com
- [RSS] Idle Words
- [RSS] Important Shock
- [RSS] inessential.com
- [RSS] Interesting Feeds
- [RSS] app.itize.us
- [RSS] app.itize.us
- [RSS] Application Submission Feedback
- [RSS] Clickable Bliss Blog
- [RSS] iPhone & iPad UX Reviews
- [RSS] iPhone Developer News
- [RSS] More than meets the eye
- [RSS] tap tap tap
- [RSS] Tapity
- [RSS] The FutureBlog
- [RSS] Jeff Plaisance
- [RSS] Joel on Software
- [RSS] KATI
- [RSS] kottke.org
- [RSS] Lambda the Ultimate - Programming Languages Weblog
- [RSS] MacRumors : Mac News and Rumors
- [RSS] Matt Legend Gemmell
- [RSS] metablog
- [RSS] Michael Tsai's Weblog
- [RSS] Non-obvious solutions
- [RSS] NSBlog
- [RSS] ObjColumnist
- [RSS] On Ruby
- [RSS] ongoing
- [RSS] Open Kosmaczewski
- [RSS] The Frontal Cortex
- [RSS] You Are Not So Smart
- [RSS] ranchero.com
- [RSS] Rands In Repose
- [RSS] Red Sweater Blog
- [RSS] rentzsch.tumblr.com
- [RSS] ridiculous_fish
- [RSS] Safe from the Losing Fight
- [RSS] Sci-Fi Hi-Fi: Weblog
- [RSS] Secure Mac Programming
- [RSS] ExpandMyWealth.com
- [RSS] Freedom to Tinker
- [RSS] Schneier on Security
- [RSS] Sentient Developments
- [RSS] SIGPIPE 13
- [RSS] Slife Labs Blog
- [RSS] Steve Nygard's Weblog
- [RSS] stevenf
- [RSS] Stevey's Blog Rants
- [RSS] Successful Software
- [RSS] The Reinvigorated Programmer
- [RSS] Theobroma Cacao
- [RSS] Thought Palace
- [RSS] Three Letter Acronym
- [RSS] tiara.org
- [RSS] Toluju - Toby Jungen
- [RSS] Uli's most useless blog in the World
- [RSS] Under The Microscope
- [RSS] chartjunk
- [RSS] Design Your Life - BLOG
- [RSS] Dubroy.com/blog
- [RSS] ignore the code
- [RSS] The BUI* Gallery
- [RSS] The Russians Used a Pencil
- [RSS] UI and us
- [RSS] UX Myths
- [RSS] Visual Languages
- [RSS] Waxy.org Links
- [RSS] Browser Bits
- [RSS] Surfin' Safari
- [RSS] Why does everything suck?
- [RSS] xkcd

Powered by WordPress