Thursday, May 29, 2008

Some Good Ideas on Adapting Agile Dev to Security Needs

Writing in Reg Developer, Jeff Williams explains some useful routes around the waterfall mindset of traditional security analysts and the agile development methods actually in use to write code.

Short on details, and I dunno how you get from unit-level security testing to integration testing; after all, the security holes tend to lurk in the seams between systems to an even greater extent than "regular" bugs do -- but thought-provoking.

Sunday, May 25, 2008

Run, Hillary, Run

I did not vote for Hillary Clinton in our Democratic primary.

Were it to be held today, I still would not.

But I think those calling for her to concede the nomination do us, and her, a disservice. So does she, and in an eloquent and gracious op-ed in the New York Daily News, she says why.

I don't think she should be President, but even if you don't think so either, you owe her a read. And if you're all in a flutter about her infamous Robert Kennedy remark, you're way off base -- can we get back to the issues now?