Questions to Ask your (Security) Vendor

Posted on 01/12/2009 by Roger

You know that I am a big fan of Security Development Lifecycles as we run it internally to build code which is more resilient against attacks. And I recently blogged on Security – A Feature Discussion? Some Thoughts on Google’s Chrome OS as I am convinced that it is much more important to look into the process how software is engineered rather than the features of the products – they come second in my opinion.

This morning I read an article called Questions to Ask Your Security Vendor. Well, I am not clear why you should only ask the questions to your security vendor as they are completely process related – ask them to all your vendors and think about the answers when you use publically available code as well to run your business on.

I think the questions in the article are great and absolutely to the point! Read them and ask them

Roger

Related posts:

  1. Security – A Feature Discussion? Some Thoughts on Google’s Chrome OS
  2. 0-Day-Patch – An new Metric for Security?
  3. We Need Solid and Strong Transparent Processes for the Cloud
  4. Security Risks of VoIP
  5. Service Oriented Architecture and the Security Implications
This entry was posted in General, Process, Trends. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>