"Going back to the aircraft analogy, if that industry managed risk and vulnerability the way we do in cyber security, there would be planes literally falling out of the sky."
This is an excellent exposé about the present unsatisfactory state of software/cyber security and its unresolved problems by Ian Levy—and it ought to be given his now former position. It ought to be read by everyone in the game.
His quote about the way the industry manages cyber security if applied to the aircraft industry would have planes falling from the sky supports my long-held belief that software development is not yet a real engineering profession.
It is clear to me that until we solve the underlying problems as to why the profession hasn't yet reached this status we are not going to solve the security problem to any reasonable degree of satisfaction.
This is an excellent exposé about the present unsatisfactory state of software/cyber security and its unresolved problems by Ian Levy—and it ought to be given his now former position. It ought to be read by everyone in the game.
His quote about the way the industry manages cyber security if applied to the aircraft industry would have planes falling from the sky supports my long-held belief that software development is not yet a real engineering profession.
It is clear to me that until we solve the underlying problems as to why the profession hasn't yet reached this status we are not going to solve the security problem to any reasonable degree of satisfaction.