Secure Coding mailing list archives
A banner year for software bugs | Tech News on ZDNet
From: c.mccown at intel.com (McCown, Christian M)
Date: Wed, 11 Oct 2006 09:32:00 -0700
It's probably worth mentioning that the statistics are for OTS software. What keeps me awake at night (other than the usual trivialities) is the volume and severity of flaws/bugs in software that companies have developed or customized in-house/internally. It gets more complicated when these apps are public-facing. Yikes. /cm -----Original Message----- From: sc-l-bounces at securecoding.org [mailto:sc-l-bounces at securecoding.org] On Behalf Of Kenneth Van Wyk Sent: Wednesday, October 11, 2006 7:38 AM To: Secure Coding Subject: [SC-L] A banner year for software bugs | Tech News on ZDNet So here's a lovely statistic for the software community to hang its hat on: http://news.zdnet.com/2100-1009_22-6124541.html?tag=zdfd.newsfeed Among other things, the article says, "Atlanta-based ISS, which is being acquired by IBM, predicts there will be a 41 percent increase in confirmed security faults in software compared with 2005. That year, in its own turn, saw a 37 percent rise over 2004." Of course, the real losers in this are the software users, who have to deal with the never ending onslaught of bugs and patches from their vendors. We've just _got_ to do better, IMHO, and automating the patch process is not the answer. Cheers, Ken ----- Kenneth R. van Wyk KRvW Associates, LLC http://www.KRvW.com
Current thread:
- A banner year for software bugs | Tech News on ZDNet Kenneth Van Wyk (Oct 11)
- A banner year for software bugs | Tech News on ZDNet Michael S Hines (Oct 11)
- re-writing college books [was: Re: A banner year for software bugs | Tech News on ZDNet] Gadi Evron (Oct 11)
- <Possible follow-ups>
- A banner year for software bugs | Tech News on ZDNet McCown, Christian M (Oct 11)